{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,12]],"date-time":"2025-10-12T03:10:02Z","timestamp":1760238602728,"version":"build-2065373602"},"reference-count":30,"publisher":"MDPI AG","issue":"17","license":[{"start":{"date-parts":[[2020,8,19]],"date-time":"2020-08-19T00:00:00Z","timestamp":1597795200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"Permissioned blockchains can be applied for sharing data among permitted users to authorise the data access requests in a permissioned blockchain. A consensus network constructed using pre-selected nodes should verify a data requester\u2019s credentials to determine if he or she have the correct permissions to access the queried data. However, current studies do not consider how to protect users\u2019 privacy for data authorisation if the pre-selected nodes become untrusted, e.g., the pre-selected nodes are manipulated by attackers. When a user\u2019s credentials are exposed to pre-selected nodes in the consensus network during authorisation, the untrusted (or even malicious) pre-selected nodes may collect a user\u2019s credentials and other private information without the user\u2019s right to know. Therefore, the private data exposed to the consensus network should be tightly restricted. In this paper, we propose a challenge-response based authorisation scheme for permissioned blockchain networks named Challenge-Response Assisted Access Authorisation (CRA3) to protect users\u2019 credentials during authorisation. In CRA3, the pre-selected nodes in the consensus network do not require users\u2019 credentials to authorise data access requests to prevent privacy leakage when these nodes are compromised or manipulated by attackers. Furthermore, the computational burden on the consensus network for authorisation is reduced because the major computing work of the authorisation is executed by the data requester and provider in CRA3.<\/jats:p>","DOI":"10.3390\/s20174681","type":"journal-article","created":{"date-parts":[[2020,8,19]],"date-time":"2020-08-19T21:37:40Z","timestamp":1597873060000},"page":"4681","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["A Challenge-Response Assisted Authorisation Scheme for Data Access in Permissioned Blockchains"],"prefix":"10.3390","volume":"20","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5155-122X","authenticated-orcid":false,"given":"Xiaoshuai","family":"Zhang","sequence":"first","affiliation":[{"name":"School of Electronic Engineering and Computer Science, Queen Mary University of London, London E1 4NS, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6473-2292","authenticated-orcid":false,"given":"Chao","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Electronic Engineering and Computer Science, Queen Mary University of London, London E1 4NS, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kok Keong","family":"Chai","sequence":"additional","affiliation":[{"name":"School of Electronic Engineering and Computer Science, Queen Mary University of London, London E1 4NS, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3156-9609","authenticated-orcid":false,"given":"Stefan","family":"Poslad","sequence":"additional","affiliation":[{"name":"School of Electronic Engineering and Computer Science, Queen Mary University of London, London E1 4NS, UK"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2020,8,19]]},"reference":[{"key":"ref_1","unstructured":"Nakamoto, S. (2008, October 31). Bitcoin: A Peer-to-peer Electronic Cash System. Available online: https:\/\/nakamotoinstitute.org\/bitcoin\/."},{"key":"ref_2","doi-asserted-by":"crossref","unstructured":"Sukhwani, H., Mart\u00ednez, J.M., Chang, X., Trivedi, K.S., and Rindos, A. (2017, January 26\u201329). Performance modeling of pbft consensus process for permissioned blockchain network (hyperledger fabric). Proceedings of the 2017 IEEE 36th Symposium on Reliable Distributed Systems (SRDS), Hong Kong, China.","DOI":"10.1109\/SRDS.2017.36"},{"key":"ref_3","unstructured":"Noyes, C. (2016). Bitav: Fast anti-malware by distributed blockchain consensus and feedforward scanning. arXiv."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Kopp, H., M\u00f6dinger, D., Hauck, F., Kargl, F., and B\u00f6sch, C. (2017, January 26\u201328). Design of a privacy-preserving decentralized file storage with financial incentives. Proceedings of the 2017 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), Paris, France.","DOI":"10.1109\/EuroSPW.2017.45"},{"key":"ref_5","doi-asserted-by":"crossref","unstructured":"Zhang, Y., and Wen, J. (2015, January 14). An IoT electric business model based on the protocol of bitcoin. Proceedings of the 2015 18th International Conference on Intelligence in Next Generation Networks (ICIN), Paris, France.","DOI":"10.1109\/ICIN.2015.7073830"},{"key":"ref_6","doi-asserted-by":"crossref","unstructured":"Zhang, X., and Poslad, S. (2018, January 20\u201324). Blockchain support for flexible queries with granular access control to electronic medical records (EMR). Proceedings of the 2018 IEEE International Conference on Communications (ICC), Kansas City, KC, USA.","DOI":"10.1109\/ICC.2018.8422883"},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Sharples, M., and Domingue, J. (2016). The blockchain and kudos: A distributed system for educational record, reputation and reward. European Conference on Technology Enhanced Learning, Springer.","DOI":"10.1007\/978-3-319-45153-4_48"},{"key":"ref_8","first-page":"1","article-title":"Peer-to-peer electricity trading system: Smart contracts based proof-of-benefit consensus protocol","volume":"25","author":"Liu","year":"2019","journal-title":"Wirel. Netw."},{"key":"ref_9","unstructured":"Buterin, V. (2015, August 07). On Public and Private Blockchains. Available online: https:\/\/blog.ethereum.org\/2015\/08\/07\/on-public-and-private-blockchains\/."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Androulaki, E., Barger, A., Bortnikov, V., Cachin, C., Christidis, K., De Caro, A., Enyeart, D., Ferris, C., Laventman, G., and Manevich, Y. (2018, January 23\u201326). Hyperledger fabric: A distributed operating system for permissioned blockchains. Proceedings of the Thirteenth EuroSys Conference, Porto, Portugal.","DOI":"10.1145\/3190508.3190538"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Smetanin, S., Ometov, A., Komarov, M., Masek, P., and Koucheryavy, Y. (2020). Blockchain Evaluation Approaches: State-of-the-Art and Future Perspective. Sensors, 20.","DOI":"10.3390\/s20123358"},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Zyskind, G., and Nathan, O. (2015, January 21\u201322). Decentralizing privacy: Using blockchain to protect personal data. Proceedings of the Security and Privacy Workshops (SPW), San Jose, CA, USA.","DOI":"10.1109\/SPW.2015.27"},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Quir\u00f3s-Tort\u00f3s, J., Ochoa, L.F., and Lees, B. (2015, January 5). A statistical analysis of EV charging behavior in the UK. Proceedings of the 2015 IEEE PES Innovative Smart Grid Technologies Latin America (ISGT LATAM), Montevideo, Uruguay.","DOI":"10.1109\/ISGT-LA.2015.7381196"},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"261","DOI":"10.1109\/TSG.2016.2550219","article-title":"Queuing analysis based PEV load modeling considering battery charging behavior and their impact on distribution system operation","volume":"9","author":"Hafez","year":"2016","journal-title":"IEEE Trans. Smart Grid"},{"key":"ref_15","doi-asserted-by":"crossref","first-page":"7992","DOI":"10.1109\/JIOT.2019.2904303","article-title":"Permissioned blockchain and edge computing empowered privacy-preserving smart grid networks","volume":"6","author":"Gai","year":"2019","journal-title":"IEEE Internet Things J."},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"218","DOI":"10.1007\/s10916-016-0574-6","article-title":"Healthcare data gateways: Found healthcare intelligence on blockchain with novel privacy risk control","volume":"40","author":"Yue","year":"2016","journal-title":"J. Med. Syst."},{"key":"ref_17","unstructured":"Wenbo, M. (2003). Modern Cryptography: Theory and Practice, Prentice Hall PTR."},{"key":"ref_18","doi-asserted-by":"crossref","first-page":"119","DOI":"10.1109\/MCOM.2017.1700879","article-title":"Blockchain: A distributed solution to automotive security and privacy","volume":"55","author":"Dorri","year":"2017","journal-title":"IEEE Commun. Mag."},{"key":"ref_19","doi-asserted-by":"crossref","unstructured":"Min, X., Li, Q., Liu, L., and Cui, L. (2016, January 23). A permissioned blockchain framework for supporting instant transaction and dynamic block size. Proceedings of the 2016 IEEE Trustcom\/BigDataSE\/ISPA, Tianjin, China.","DOI":"10.1109\/TrustCom.2016.0050"},{"key":"ref_20","doi-asserted-by":"crossref","unstructured":"Pop, C., Cioara, T., Antal, M., Anghel, I., Salomie, I., and Bertoncini, M. (2018). Blockchain based decentralized management of demand response programs in smart energy grids. Sensors, 18.","DOI":"10.3390\/s18010162"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Ateniese, G., Camenisch, J., Joye, M., and Tsudik, G. (2000). A practical and provably secure coalition-resistant group signature scheme. Annual International Cryptology Conference, Springer.","DOI":"10.1007\/3-540-44598-6_16"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Boneh, D., and Shacham, H. (2004, January 25\u201329). Group signatures with verifier-local revocation. Proceedings of the 11th ACM Conference on Computer and Communications Security, Washington, DC, USA.","DOI":"10.1145\/1030083.1030106"},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1016\/j.tcs.2018.03.027","article-title":"A lattice-based group signature scheme with verifier-local revocation","volume":"730","author":"Ling","year":"2018","journal-title":"Theor. Comput. Sci."},{"key":"ref_24","doi-asserted-by":"crossref","unstructured":"Perera, M.N.S., Nakamura, T., Hashimoto, M., and Yokoyama, H. (2019). Traceable and Fully Anonymous Attribute Based Group Signature Scheme with Verifier Local Revocation from Lattices. International Conference on Network and System Security, Springer.","DOI":"10.1007\/978-3-030-36938-5_42"},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"69","DOI":"10.1016\/0167-4048(94)90097-3","article-title":"The breadth of Shamir\u2019s secret-sharing scheme","volume":"13","author":"Dawson","year":"1994","journal-title":"Comput. Secur."},{"key":"ref_26","first-page":"137","article-title":"Reijndael: The Advanced Encryption Standard","volume":"26","author":"Daemen","year":"2001","journal-title":"Dobb J. Softw. Tools Prof. Program."},{"key":"ref_27","unstructured":"Monk, S. (2013). Programming the Raspberry Pi: Getting Started with Python, Mcgraw-Hill."},{"key":"ref_28","first-page":"1","article-title":"Recommendation for key management part 1: General (revision 3)","volume":"800","author":"Barker","year":"2012","journal-title":"Nist Spec. Publ."},{"key":"ref_29","first-page":"1","article-title":"Ethereum: A secure decentralised generalised transaction ledger","volume":"EIP-151","author":"Wood","year":"2014","journal-title":"Ethereum Proj. Yellow Pap."},{"key":"ref_30","doi-asserted-by":"crossref","unstructured":"Ekparinya, P., Gramoli, V., and Jourjon, G. (2019). The attack of the clones against proof-of-authority. arXiv.","DOI":"10.14722\/ndss.2020.24082"}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/20\/17\/4681\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T10:03:34Z","timestamp":1760177014000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/20\/17\/4681"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,8,19]]},"references-count":30,"journal-issue":{"issue":"17","published-online":{"date-parts":[[2020,9]]}},"alternative-id":["s20174681"],"URL":"https:\/\/doi.org\/10.3390\/s20174681","relation":{},"ISSN":["1424-8220"],"issn-type":[{"type":"electronic","value":"1424-8220"}],"subject":[],"published":{"date-parts":[[2020,8,19]]}}}