A decentralized framework for device authentication and data security in the next generation internet of medical things

“…These problems are major challenges that hinder optimum access control [7]. Researchers in [44], [45,46], [47] proposed the development of design and standards to secure communication protocols that are capable of interfacing existing systems, collecting data generated by IoT resources and exchanging data to solve trust issues among devices.…”

“…The proposed methods include a hybrid cryptographic algorithm technique capable of substituting conventional cryptographic algorithms. The same level of security can be simultaneously maintained, leading to additional cost and time for completing encryption and decryption processes [44,47]. However, these techniques are not feasible since the IoT environment has resource constraints such as high computational power and energy consumption of IoT actuators and sensors.…”

“…Lack of trust and fairness in nodes [48], [17], [20], [23], [28], [29], [30] Information leak due to un-restricted access control [14], [15] IoT low performance for conventional access control [31] Privacy leak risk [29] Lack of strong encryption enforcement [47], [32] Lack of standardised communication protocol [47] Malicious attacks and cyberattacks (including identity spoofing, message eavesdropping, message tampering, content poisoning, physical and cloning attacks) [11], [45], [46], [14], [49], [50], [20], [25], [33], [34] Lack of authentication mechanism [45], [52], [50], [19], [22], [27], [34], [36] , [37], [35] Resource constrained IoT actuators and sensors [51] Security weaknesses and vulnerabilities [46], [49], [55], [33], [38], [39], [56] Access control founded on blockchain technology related issues in IoT environment: higher cost, increased transaction delays and scalability [53],…”

“…Thus, the trade-off between the techniques and transactions performance must be researched to find the optimum level. From the extraction of this SLR, four frameworks were found to develop an access control that focuses on communication control between various entities such as IoT device, gateway, cloud and users [4], [68], [69], [47]. To accomplish the objective of the proposed framework, researchers have adopted blockchain technology to design control communication between various entities by validating data flows before attempting to communicate with other entities.…”

“…To obtain authorisation, users require a valid token or credentials to gain network access. To develop access control in various entities and communication control frameworks for cloud-enabled IoT in terms of data flow from one end to another in CE-IoT services/applications [47] To secure data communication and sharing in IoT networks using generated cryptographic keys by providing authenticated device using PUFs and blockchain technology [71] To improve the system's security capabilities in classic cloudcentric blockchain-based H-CPS [70] To secure and create tamper-resistant massive IoT transactions by improving scalability and the performance of massive IoT networks by utilising blockchain-based secure micro-services in Virtualised Network Functions [68] To generate reliable communication IoT eco-systems with reliable information integration between users by validating nodes based on inter-operable structures [72] To improve the transaction delay among IoT applications by using blockchain based in SDN architecture [15] To allow authorised entities (such as healthcare providers) to effectively retrieve EHRs on cloud, while preventing unauthorised access to EHRs resources [24] To enable secure and transparent collaborations for connected IoT actuators and sensors trust-based automation to recognise, authenticate and access control of devices in the perception layer [28] To achieve a lightweight, scalable, adaptive key management scheme and authorisation assignment mode by verifying the access query transaction based on logical topology in the IoT system [69] To enhance access control traditional development model with features that primarily support intra-blockchain interactions within smart contracts as well as enable inter-blockchain communication to other nodes and resources in the IoT network V. EVALUATION FOR DECENTRALIZED ACCESS CONTROL USING BLOCKCHAIN How the evaluation was done to determine the effectiveness of methods/techniques/approaches in previous studies, is addressed in RQ3. Each reviewed study had been evaluated based on their proposed techniques, approaches and frameworks as the baseline for future investigations.…”

Decentralized Access Control using Blockchain Technology for Application in Smart Farming

“…These problems are major challenges that hinder optimum access control [7]. Researchers in [44], [45,46], [47] proposed the development of design and standards to secure communication protocols that are capable of interfacing existing systems, collecting data generated by IoT resources and exchanging data to solve trust issues among devices.…”

“…The proposed methods include a hybrid cryptographic algorithm technique capable of substituting conventional cryptographic algorithms. The same level of security can be simultaneously maintained, leading to additional cost and time for completing encryption and decryption processes [44,47]. However, these techniques are not feasible since the IoT environment has resource constraints such as high computational power and energy consumption of IoT actuators and sensors.…”

“…Lack of trust and fairness in nodes [48], [17], [20], [23], [28], [29], [30] Information leak due to un-restricted access control [14], [15] IoT low performance for conventional access control [31] Privacy leak risk [29] Lack of strong encryption enforcement [47], [32] Lack of standardised communication protocol [47] Malicious attacks and cyberattacks (including identity spoofing, message eavesdropping, message tampering, content poisoning, physical and cloning attacks) [11], [45], [46], [14], [49], [50], [20], [25], [33], [34] Lack of authentication mechanism [45], [52], [50], [19], [22], [27], [34], [36] , [37], [35] Resource constrained IoT actuators and sensors [51] Security weaknesses and vulnerabilities [46], [49], [55], [33], [38], [39], [56] Access control founded on blockchain technology related issues in IoT environment: higher cost, increased transaction delays and scalability [53],…”

“…Thus, the trade-off between the techniques and transactions performance must be researched to find the optimum level. From the extraction of this SLR, four frameworks were found to develop an access control that focuses on communication control between various entities such as IoT device, gateway, cloud and users [4], [68], [69], [47]. To accomplish the objective of the proposed framework, researchers have adopted blockchain technology to design control communication between various entities by validating data flows before attempting to communicate with other entities.…”

“…To obtain authorisation, users require a valid token or credentials to gain network access. To develop access control in various entities and communication control frameworks for cloud-enabled IoT in terms of data flow from one end to another in CE-IoT services/applications [47] To secure data communication and sharing in IoT networks using generated cryptographic keys by providing authenticated device using PUFs and blockchain technology [71] To improve the system's security capabilities in classic cloudcentric blockchain-based H-CPS [70] To secure and create tamper-resistant massive IoT transactions by improving scalability and the performance of massive IoT networks by utilising blockchain-based secure micro-services in Virtualised Network Functions [68] To generate reliable communication IoT eco-systems with reliable information integration between users by validating nodes based on inter-operable structures [72] To improve the transaction delay among IoT applications by using blockchain based in SDN architecture [15] To allow authorised entities (such as healthcare providers) to effectively retrieve EHRs on cloud, while preventing unauthorised access to EHRs resources [24] To enable secure and transparent collaborations for connected IoT actuators and sensors trust-based automation to recognise, authenticate and access control of devices in the perception layer [28] To achieve a lightweight, scalable, adaptive key management scheme and authorisation assignment mode by verifying the access query transaction based on logical topology in the IoT system [69] To enhance access control traditional development model with features that primarily support intra-blockchain interactions within smart contracts as well as enable inter-blockchain communication to other nodes and resources in the IoT network V. EVALUATION FOR DECENTRALIZED ACCESS CONTROL USING BLOCKCHAIN How the evaluation was done to determine the effectiveness of methods/techniques/approaches in previous studies, is addressed in RQ3. Each reviewed study had been evaluated based on their proposed techniques, approaches and frameworks as the baseline for future investigations.…”

Decentralized Access Control using Blockchain Technology for Application in Smart Farming

A survey analysis of quantum computing adoption and the paradigm of privacy engineering

Uses of Blockchain in Internet of Medical Things: A Systematic Review