Show simple item record

dc.contributor.authorPaillissé Vilanova, Jordi
dc.contributor.authorSubirà Nieto, Jordi
dc.contributor.authorLópez Brescó, Albert
dc.contributor.authorRodríguez Natal, Alberto
dc.contributor.authorErmagan, Vina
dc.contributor.authorMaino, Fabio
dc.contributor.authorCabellos Aparicio, Alberto
dc.contributor.otherUniversitat Politècnica de Catalunya. Doctorat en Arquitectura de Computadors
dc.contributor.otherUniversitat Politècnica de Catalunya. Departament d'Arquitectura de Computadors
dc.date.accessioned2020-10-06T14:56:26Z
dc.date.issued2019
dc.identifier.citationPaillisse, J. [et al.]. Distributed access control with blockchain. A: IEEE International Conference on Communications. "ICC 2019: 2019 IEEE International Conference on Communications (ICC 2019): Shanghai, China: 20-24 May 2019". 2019, p. 1-6. ISBN 978-1-5386-8089-6. DOI 10.1109/ICC.2019.8761995.
dc.identifier.isbn978-1-5386-8089-6
dc.identifier.otherhttps://arxiv.org/abs/1901.03568
dc.identifier.urihttp://hdl.handle.net/2117/329906
dc.description.abstractThe specification and enforcement of network-wide policies in a single administrative domain is common in today's networks and considered as already resolved. However, this is not the case for multi-administrative domains, e.g. among different enterprises. In such situation, new problems arise that challenge classical solutions such as PKIs, which suffer from scalability and granularity concerns. In this paper, we present an extension to Group-Based Policy -a widely used network policy languagefor the aforementioned scenario. To do so, we take advantage of a permissioned blockchain implementation (Hyperledger Fabric) to distribute access control policies in a secure and auditable manner, preserving at the same time the independence of each organization. Network administrators specify polices that are rendered into blockchain transactions. A LISP control plane (RFC 6830) allows routers performing the access control to query the blockchain for authorizations. We have implemented an end-to-end experimental prototype and evaluated it in terms of scalability and network latency.
dc.description.sponsorshipThis work has been supported by the Spanish MINECO under contract TEC2017-90034-C2-1-R (ALLIANCE) and the Catalan Institution for Research and Advanced Studies (ICREA).
dc.format.extent6 p.
dc.language.isoeng
dc.subjectÀrees temàtiques de la UPC::Informàtica::Sistemes d'informació::Bases de dades
dc.subjectÀrees temàtiques de la UPC::Informàtica::Seguretat informàtica
dc.subject.lcshBlockchains (Databases)
dc.subject.lcshComputer security
dc.subject.otherAuthorisation
dc.subject.otherDistributed databases
dc.subject.otherPublic key cryptography
dc.titleDistributed access control with blockchain
dc.typeConference report
dc.subject.lemacCadena de blocs (Bases de dades)
dc.subject.lemacSeguretat informàtica
dc.contributor.groupUniversitat Politècnica de Catalunya. CBA - Sistemes de Comunicacions i Arquitectures de Banda Ampla
dc.identifier.doi10.1109/ICC.2019.8761995
dc.description.peerreviewedPeer Reviewed
dc.relation.publisherversionhttps://ieeexplore.ieee.org/abstract/document/8761995
dc.rights.accessRestricted access - publisher's policy
local.identifier.drac29004558
dc.description.versionPostprint (published version)
dc.relation.projectidinfo:eu-repo/grantAgreement/AEI/Plan Estatal de Investigación Científica y Técnica y de Innovación 2013-2016/TEC2017-90034-C2-1-R/ES/DISEÑANDO UNA INFRAESTRUCTURA DE RED 5G DEFINIDA MEDIANTE CONOCIMIENTO HACIA LA PROXIMA SOCIEDAD DIGITAL/
dc.date.lift10000-01-01
local.citation.authorPaillisse, J.; Subirà, J.; Lopez, A.; Rodríguez, A.; Ermagan, V.; Maino, F.; Albert Cabellos-Aparicio
local.citation.contributorIEEE International Conference on Communications
local.citation.publicationNameICC 2019: 2019 IEEE International Conference on Communications (ICC 2019): Shanghai, China: 20-24 May 2019
local.citation.startingPage1
local.citation.endingPage6


Files in this item

Thumbnail

This item appears in the following Collection(s)

Show simple item record