Combining ID’s, Attributes, and Policies in Hyperledger Fabric

Daan Gordijn; Roland Kromes; Thanassis Giannetsos; Kaitai Liang

doi:10.1007/978-3-031-31420-9_3

Combining ID’s, Attributes, and Policies in Hyperledger Fabric

Daan Gordijn, Roland Kromes^*, Thanassis Giannetsos, Kaitai Liang

^*Corresponding author for this work

Cyber Security

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

32 Downloads (Pure)

Abstract

This work aims to provide a more secure access control in Hyperledger Fabric blockchain by combining multiple ID’s, attributes, and policies with the components that regulate access control. The access control system currently used by Hyperledger Fabric is first completely analyzed. Next, a new implementation is proposed that builds upon the existing solution but provides users and developers with easier ways to make access control decisions based on combinations of multiple ID’s, attributes, and policies. Our proposed implementation encapsulates the Fabric CA client to facilitate attribute addition and simplify the process of registering and enrolling a newly created certificate (corresponding to a new user). This research, concludes that it is possible to combine multiple ID’s, attributes, and policies with the help of Hyperledger Fabric’s smart contract technology. Furthermore, it could be seen that the performance impact for real-world applications is negligible compared to the insecure case of always providing access to a resource without performing access control.

Original language	English
Title of host publication	Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings
Editors	Weizhi Meng, Wenjuan Li
Publisher	Springer
Pages	32-48
Number of pages	17
ISBN (Print)	9783031314193
DOIs	https://doi.org/10.1007/978-3-031-31420-9_3
Publication status	Published - 2023
Event	2nd EAI International Conference on Blockchain Technology and Emerging Technologies, BlockTEA 2022 - Virtual, online Duration: 21 Nov 2022 → 22 Nov 2022

Publication series

Name	Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST
Volume	498 LNICST
ISSN (Print)	1867-8211
ISSN (Electronic)	1867-822X

Conference

Conference	2nd EAI International Conference on Blockchain Technology and Emerging Technologies, BlockTEA 2022
City	Virtual, online
Period	21/11/22 → 22/11/22

Bibliographical note

Green Open Access added to TU Delft Institutional Repository ‘You share, we take care!’ – Taverne project https://www.openaccess.nl/en/you-share-we-take-care
Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

Keywords

Blockchain
IPFS
Privacy
Security

Access to Document

10.1007/978-3-031-31420-9_3

978-3-031-31420-9_3Final published version, 909 KB

Cite this

Gordijn, D., Kromes, R., Giannetsos, T., & Liang, K. (2023). Combining ID’s, Attributes, and Policies in Hyperledger Fabric. In W. Meng, & W. Li (Eds.), Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings (pp. 32-48). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 498 LNICST). Springer. https://doi.org/10.1007/978-3-031-31420-9_3

Gordijn, Daan ; Kromes, Roland ; Giannetsos, Thanassis et al. / Combining ID’s, Attributes, and Policies in Hyperledger Fabric. Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings. editor / Weizhi Meng ; Wenjuan Li. Springer, 2023. pp. 32-48 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST).

@inproceedings{40e7c4d025414480ba576419711eb3cc,

title = "Combining ID{\textquoteright}s, Attributes, and Policies in Hyperledger Fabric",

abstract = "This work aims to provide a more secure access control in Hyperledger Fabric blockchain by combining multiple ID{\textquoteright}s, attributes, and policies with the components that regulate access control. The access control system currently used by Hyperledger Fabric is first completely analyzed. Next, a new implementation is proposed that builds upon the existing solution but provides users and developers with easier ways to make access control decisions based on combinations of multiple ID{\textquoteright}s, attributes, and policies. Our proposed implementation encapsulates the Fabric CA client to facilitate attribute addition and simplify the process of registering and enrolling a newly created certificate (corresponding to a new user). This research, concludes that it is possible to combine multiple ID{\textquoteright}s, attributes, and policies with the help of Hyperledger Fabric{\textquoteright}s smart contract technology. Furthermore, it could be seen that the performance impact for real-world applications is negligible compared to the insecure case of always providing access to a resource without performing access control.",

keywords = "Blockchain, IPFS, Privacy, Security",

author = "Daan Gordijn and Roland Kromes and Thanassis Giannetsos and Kaitai Liang",

note = "Green Open Access added to TU Delft Institutional Repository {\textquoteleft}You share, we take care!{\textquoteright} – Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public. ; 2nd EAI International Conference on Blockchain Technology and Emerging Technologies, BlockTEA 2022 ; Conference date: 21-11-2022 Through 22-11-2022",

year = "2023",

doi = "10.1007/978-3-031-31420-9_3",

language = "English",

isbn = "9783031314193",

series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST",

publisher = "Springer",

pages = "32--48",

editor = "Weizhi Meng and Wenjuan Li",

booktitle = "Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings",

}

Gordijn, D, Kromes, R, Giannetsos, T & Liang, K 2023, Combining ID’s, Attributes, and Policies in Hyperledger Fabric. in W Meng & W Li (eds), Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST, vol. 498 LNICST, Springer, pp. 32-48, 2nd EAI International Conference on Blockchain Technology and Emerging Technologies, BlockTEA 2022, Virtual, online, 21/11/22. https://doi.org/10.1007/978-3-031-31420-9_3

Combining ID’s, Attributes, and Policies in Hyperledger Fabric. / Gordijn, Daan; Kromes, Roland; Giannetsos, Thanassis et al.
Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings. ed. / Weizhi Meng; Wenjuan Li. Springer, 2023. p. 32-48 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST; Vol. 498 LNICST).

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

TY - GEN

T1 - Combining ID’s, Attributes, and Policies in Hyperledger Fabric

AU - Gordijn, Daan

AU - Kromes, Roland

AU - Giannetsos, Thanassis

AU - Liang, Kaitai

N1 - Green Open Access added to TU Delft Institutional Repository ‘You share, we take care!’ – Taverne project https://www.openaccess.nl/en/you-share-we-take-care Otherwise as indicated in the copyright section: the publisher is the copyright holder of this work and the author uses the Dutch legislation to make this work public.

PY - 2023

Y1 - 2023

N2 - This work aims to provide a more secure access control in Hyperledger Fabric blockchain by combining multiple ID’s, attributes, and policies with the components that regulate access control. The access control system currently used by Hyperledger Fabric is first completely analyzed. Next, a new implementation is proposed that builds upon the existing solution but provides users and developers with easier ways to make access control decisions based on combinations of multiple ID’s, attributes, and policies. Our proposed implementation encapsulates the Fabric CA client to facilitate attribute addition and simplify the process of registering and enrolling a newly created certificate (corresponding to a new user). This research, concludes that it is possible to combine multiple ID’s, attributes, and policies with the help of Hyperledger Fabric’s smart contract technology. Furthermore, it could be seen that the performance impact for real-world applications is negligible compared to the insecure case of always providing access to a resource without performing access control.

AB - This work aims to provide a more secure access control in Hyperledger Fabric blockchain by combining multiple ID’s, attributes, and policies with the components that regulate access control. The access control system currently used by Hyperledger Fabric is first completely analyzed. Next, a new implementation is proposed that builds upon the existing solution but provides users and developers with easier ways to make access control decisions based on combinations of multiple ID’s, attributes, and policies. Our proposed implementation encapsulates the Fabric CA client to facilitate attribute addition and simplify the process of registering and enrolling a newly created certificate (corresponding to a new user). This research, concludes that it is possible to combine multiple ID’s, attributes, and policies with the help of Hyperledger Fabric’s smart contract technology. Furthermore, it could be seen that the performance impact for real-world applications is negligible compared to the insecure case of always providing access to a resource without performing access control.

KW - Blockchain

KW - IPFS

KW - Privacy

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=85161364041&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-31420-9_3

DO - 10.1007/978-3-031-31420-9_3

M3 - Conference contribution

AN - SCOPUS:85161364041

SN - 9783031314193

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST

SP - 32

EP - 48

BT - Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings

A2 - Meng, Weizhi

A2 - Li, Wenjuan

PB - Springer

T2 - 2nd EAI International Conference on Blockchain Technology and Emerging Technologies, BlockTEA 2022

Y2 - 21 November 2022 through 22 November 2022

ER -

Gordijn D, Kromes R, Giannetsos T, Liang K. Combining ID’s, Attributes, and Policies in Hyperledger Fabric. In Meng W, Li W, editors, Blockchain Technology and Emerging Technologies - 2nd EAI International Conference, BlockTEA 2022, Proceedings. Springer. 2023. p. 32-48. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, LNICST). doi: 10.1007/978-3-031-31420-9_3