Distributed access control with blockchain

Paillissé Vilanova, Jordi; Subirà Nieto, Jordi; López Brescó, Albert; Rodríguez Natal, Alberto; Ermagan, Vina; Maino, Fabio; Cabellos Aparicio, Alberto

doi:10.1109/ICC.2019.8761995

View/Open

08761995.pdf (557,2Kb) (Restricted access) Request copy

View UPCommons Usage Statistics

LA Referencia / Recolecta stats

Cita com:

Show full item record

Paillissé Vilanova, Jordi

Subirà Nieto, Jordi

López Brescó, Albert

Rodríguez Natal, Alberto

Ermagan, Vina

Maino, Fabio

Cabellos Aparicio, Alberto

Document typeConference report

Defense date2019

Rights accessRestricted access - publisher's policy

All rights reserved. This work is protected by the corresponding intellectual and industrial property rights. Without prejudice to any existing legal exemptions, reproduction, distribution, public communication or transformation of this work are prohibited without permission of the copyright holder

ProjectDISEÑANDO UNA INFRAESTRUCTURA DE RED 5G DEFINIDA MEDIANTE CONOCIMIENTO HACIA LA PROXIMA SOCIEDAD DIGITAL (AEI-TEC2017-90034-C2-1-R)

Abstract

The specification and enforcement of network-wide policies in a single administrative domain is common in today's networks and considered as already resolved. However, this is not the case for multi-administrative domains, e.g. among different enterprises. In such situation, new problems arise that challenge classical solutions such as PKIs, which suffer from scalability and granularity concerns. In this paper, we present an extension to Group-Based Policy -a widely used network policy languagefor the aforementioned scenario. To do so, we take advantage of a permissioned blockchain implementation (Hyperledger Fabric) to distribute access control policies in a secure and auditable manner, preserving at the same time the independence of each organization. Network administrators specify polices that are rendered into blockchain transactions. A LISP control plane (RFC 6830) allows routers performing the access control to query the blockchain for authorizations. We have implemented an end-to-end experimental prototype and evaluated it in terms of scalability and network latency.

CitationPaillisse, J. [et al.]. Distributed access control with blockchain. A: IEEE International Conference on Communications. "ICC 2019: 2019 IEEE International Conference on Communications (ICC 2019): Shanghai, China: 20-24 May 2019". 2019, p. 1-6. ISBN 978-1-5386-8089-6. DOI 10.1109/ICC.2019.8761995.

URIhttp://hdl.handle.net/2117/329906

DOI10.1109/ICC.2019.8761995

ISBN978-1-5386-8089-6

Publisher versionhttps://ieeexplore.ieee.org/abstract/document/8761995

Other identifiershttps://arxiv.org/abs/1901.03568

Collections

View UPCommons Usage Statistics

Show full item record

Files	Description	Size	Format	View
08761995.pdf		557,2Kb	PDF	Restricted access

UPCommons. Global access to UPC knowledge

Distributed access control with blockchain

View/Open

Browse