User authentication using Blockchain based smart contract in role-based access control

Since the last few decades, information security has become a significant challenge for organizations’ system administrators. However, the Role-Based Access Control (RBAC) model has emerged as a viable solution for organizations to meet the security requirement due to its less administrative overhea...

Full description

Saved in:
Bibliographic Details
Published in:Peer-to-peer networking and applications 2021-09, Vol.14 (5), p.2961-2976
Main Authors: Kamboj, Priyanka, Khare, Shivang, Pal, Sujata
Format: Article
Language:English
Subjects:
Access control
Authentication
Blockchain
Communications Engineering
Computer Communication Networks
Cost analysis
Cryptography
Engineering
Information Systems and Communication Service
Networks
Organizations
Security
Signal,Image and Speech Processing
Special Issue on Blockchain for Peer-to-Peer Computing
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Since the last few decades, information security has become a significant challenge for organizations’ system administrators. However, the Role-Based Access Control (RBAC) model has emerged as a viable solution for organizations to meet the security requirement due to its less administrative overhead. Blockchain technology is distributive and can be used effectively in user authentication and authorization challenges. This paper proposes an RBAC model using a blockchain-based smart contract for managing user-role permissions in the organization. We design a threat and security model to resist attacks such as man-in-the-middle attacks in an organization scenario. The proposed approach uses the Ethereum blockchain platform and its smart contract functionalities to model user-resource communications. The proposed method is tested on Ropsten Ethereum Test Network and evaluated to analyze user authentication, verification, cost, and security.
ISSN:1936-6442
1936-6450
DOI:10.1007/s12083-021-01150-1