Distributed security and trust management in multi-authority and multi-domain environments based on blockchain. Case studies in healthcare and supply chain management systems
Κατανεμημένη ασφάλεια και διαχείριση εμπιστοσύνης σε περιβάλλοντα πολλαπλών αρχών και πολλαπλών τομέων βασισμένα στο blockchain. Μελέτες περίπτωσης σε συστήματα διαχείρισης δεδομένων υγείας και εφοδιαστικής αλυσίδας
View/
Keywords
Distributed security ; Trust management ; Access control ; Multi-blockchain ; Multi-authority ; Healthcare ; Supply chainAbstract
Today, our digital lives are increasingly governed by decentralized systems that manage massive amounts of sensitive and non-sensitive data. The vast diffusion of IoT is shaping networks of multiple interconnected devices that provide services and collect data by interacting with each other. This technology has paved the way for increased efficiency, automation and data-driven decision-making in manufacturing, healthcare, and supply chain, among other industries. Multi-authority and multi-domain ecosystems are becoming increasingly common in these decentralized systems, as different organizations and domains collaborate to provide more comprehensive and efficient services. The integration of multiple authorities and domains in decentralized systems presents significant security and trust challenges. With data and services distributed across several nodes and domains, these systems are vulnerable to security and trust threats, including unauthorized access, data breaches, identity theft, ransomware exploits. Cybercriminals find the management of large amounts of personal and business information lucrative, making these systems a prime target for attacks. Furthermore, the requirement for greater interoperability and fine-grained information sharing among participants further multiplies these risks. Therefore, Trust Management (TM) is essential to ensure trustworthy data fusion and mining, certified services, and improved user privacy and information security in such complex ecosystems. However, traditional TM infrastructures are unable to resolve issues such as the need for fine-grained access control based on automated enforcement of defined policies due to the cyber-physical and decentralized nature of these systems. As a result, novel TM solutions that take advantage of techniques such as blockchain are necessary to enable automated and trustworthy interactions between participants while incorporating privacy-preserving mechanisms. The shift from centralized to decentralized multi-authority and multi-domain environments presents unique challenges that must be addressed. To facilitate secure and reliable communication and information exchange, it is crucial to have a distributed trust management system in place. This system must be capable of managing trust between multiple domains, each with its own set of authorities, policies, and security requirements. As the digital landscape becomes increasingly complex, and the threat of cyber attacks continues to rise, it is imperative to have a robust and secure trust management system that can protect against malicious actors and prevent unauthorized access to sensitive data. Using the principles of distributed systems, a trust management system can provide a higher level of security, scalability, and dependability, making it an indispensable component of modern digital infrastructures. The main research goal of this Ph.D. thesis is to contribute to the understanding of the security requirements of multi-authority and multi-domain ecosystems and also propose novel security mechanisms that support trust among the participants.
The Thesis has four sections, each of which includes several chapters. In Section I the introduction (Chapter 1) and the review of the relevant literature (Chapter 2) are introduced, in order to present the current state-of-the-art and the open research challenges related to the distributed Trust Management for multi-authority and multi-domain ecosystems. Section II (Chapters 3-4-5-6) presents the novel hierarchical multi-blockchain solution for trust management and access control for multi-authority and multi-domain environments. In particular, in Chapter 3 we describe the Hierarchical Multi-Blockchain Access Control (HMBAC) model, in Chapter 4 we present the system design, in Chapter 5 we dive deeper into the implementation aspects of HMBAC presented in the previous chapter by introducing the Janus framework. In Chapter 6, we present the security and performance analysis of Janus. In Section III, we describe two additional security features for the Janus framework, which extend the novel solution presented in Section II. Specifically, in Chapter 7 we propose a distributed self-sovereign identity (SSI) infrastructure for device authentication. In Chapter 8, we present an extension to connect the proposed framework with legacy ERP systems. Section IV (Chapter 9), summarizes the results of this thesis that are related to the solutions presented in Sections II and III and their validation, along with open research challenges that require additional future work, respectively.
Department
Σχολή Τεχνολογιών Πληροφορικής και Επικοινωνιών. Τμήμα ΠληροφορικήςNumber of pages
148Language
EnglishCollections
Except where otherwise noted, this item's license is described as
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα