{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,21]],"date-time":"2026-06-21T07:59:31Z","timestamp":1782028771526,"version":"3.54.5"},"reference-count":33,"publisher":"MDPI AG","issue":"7","license":[{"start":{"date-parts":[[2024,4,2]],"date-time":"2024-04-02T00:00:00Z","timestamp":1712016000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Fund of State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications","award":["IPOC2021ZZ03"],"award-info":[{"award-number":["IPOC2021ZZ03"]}]},{"name":"Fund of State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications","award":["2021YFB3101900"],"award-info":[{"award-number":["2021YFB3101900"]}]},{"name":"Fund of State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications","award":["31511130201"],"award-info":[{"award-number":["31511130201"]}]},{"name":"Fund of State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications","award":["6142101210207"],"award-info":[{"award-number":["6142101210207"]}]},{"name":"National Key R&amp;D Program of China","award":["IPOC2021ZZ03"],"award-info":[{"award-number":["IPOC2021ZZ03"]}]},{"name":"National Key R&amp;D Program of China","award":["2021YFB3101900"],"award-info":[{"award-number":["2021YFB3101900"]}]},{"name":"National Key R&amp;D Program of China","award":["31511130201"],"award-info":[{"award-number":["31511130201"]}]},{"name":"National Key R&amp;D Program of China","award":["6142101210207"],"award-info":[{"award-number":["6142101210207"]}]},{"name":"Pre-Research Project","award":["IPOC2021ZZ03"],"award-info":[{"award-number":["IPOC2021ZZ03"]}]},{"name":"Pre-Research Project","award":["2021YFB3101900"],"award-info":[{"award-number":["2021YFB3101900"]}]},{"name":"Pre-Research Project","award":["31511130201"],"award-info":[{"award-number":["31511130201"]}]},{"name":"Pre-Research Project","award":["6142101210207"],"award-info":[{"award-number":["6142101210207"]}]},{"name":"Information System Engineering Key Laboratory Project","award":["IPOC2021ZZ03"],"award-info":[{"award-number":["IPOC2021ZZ03"]}]},{"name":"Information System Engineering Key Laboratory Project","award":["2021YFB3101900"],"award-info":[{"award-number":["2021YFB3101900"]}]},{"name":"Information System Engineering Key Laboratory Project","award":["31511130201"],"award-info":[{"award-number":["31511130201"]}]},{"name":"Information System Engineering Key Laboratory Project","award":["6142101210207"],"award-info":[{"award-number":["6142101210207"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>With the rapid growth of the Internet of Things (IoT), massive terminal devices are connected to the network, generating a large amount of IoT data. The reliable sharing of IoT data is crucial for fields such as smart home and healthcare, as it promotes the intelligence of the IoT and provides faster problem solutions. Traditional data sharing schemes usually rely on a trusted centralized server to achieve each attempted access from users to data, which faces serious challenges of a single point of failure, low reliability, and an opaque access process in current IoT environments. To address these disadvantages, we propose a secure and dynamic access control scheme for the IoT, named SDACS, which enables data owners to achieve decentralized and fine-grained access control in an auditable and reliable way. For access control, attribute-based control (ABAC), Hyperledger Fabric, and interplanetary file system (IPFS) were used, with four kinds of access control contracts deployed on blockchain to coordinate and implement access policies. Additionally, a lightweight, certificateless authentication protocol was proposed to minimize the disclosure of identity information and ensure the double-layer protection of data through secure off-chain identity authentication and message transmission. The experimental and theoretical analysis demonstrated that our scheme can maintain high throughput while achieving high security and stability in IoT data security sharing scenarios.<\/jats:p>","DOI":"10.3390\/s24072267","type":"journal-article","created":{"date-parts":[[2024,4,3]],"date-time":"2024-04-03T00:58:38Z","timestamp":1712105918000},"page":"2267","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["SDACS: Blockchain-Based Secure and Dynamic Access Control Scheme for Internet of Things"],"prefix":"10.3390","volume":"24","author":[{"given":"Qinghua","family":"Gong","sequence":"first","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0304-0537","authenticated-orcid":false,"given":"Jinnan","family":"Zhang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Zheng","family":"Wei","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Xinmin","family":"Wang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Xia","family":"Zhang","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7719-0792","authenticated-orcid":false,"given":"Xin","family":"Yan","sequence":"additional","affiliation":[{"name":"State Key Laboratory of Information Photonics and Optical Communications, Beijing University of Posts and Telecommunications, Beijing 100876, China"},{"name":"School of Electronic Engineering, Beijing University of Posts and Telecommunications, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yang","family":"Liu","sequence":"additional","affiliation":[{"name":"School of Automation, Beijing Institute of Technology, Beijing 100876, China"},{"name":"Beijing Institute of Astronautical Systems Engineering, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Liming","family":"Dong","sequence":"additional","affiliation":[{"name":"Joint Logistics Academy of NDU, China People\u2019s Liberation Army National Defence University, Beijing 100876, China"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2024,4,2]]},"reference":[{"key":"ref_1","first-page":"103446","article-title":"Access control mechanism for the Internet of Things based on blockchain and inner product encryption","volume":"74","author":"Han","year":"2023","journal-title":"J. Inf. Secur. Appl."},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"1410","DOI":"10.1109\/TETC.2020.2993032","article-title":"Circuit Copyright Blockchain: Blockchain-Based Homomorphic Encryption for IP Circuit Protection","volume":"9","author":"Liang","year":"2021","journal-title":"IEEE Trans. Emerg. Top. Comput."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"6392","DOI":"10.1109\/JIOT.2020.2974281","article-title":"Deep Reinforcement Learning for Resource Protection and Real-Time Detection in IoT Environment","volume":"7","author":"Liang","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Ghaffari, F., Bertin, E., Hatin, J., and Crespi, N. (2020, January 28\u201330). Authentication and access control based on distributed ledger technology: A survey. Proceedings of the 2nd Conference on Blockchain Research & Applications for Innovative Networks and Services, Paris, France.","DOI":"10.1109\/BRAINS49436.2020.9223297"},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"933","DOI":"10.1109\/TETC.2021.3052377","article-title":"Secure Data Sharing with Flexible User Access Privilege Update in Cloud-Assisted IoMT","volume":"10","author":"Hao","year":"2021","journal-title":"IEEE Trans. Emerg. Top. Comput."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"9268","DOI":"10.1109\/JIOT.2021.3057045","article-title":"SBBS: A Secure Blockchain-Based Scheme for IoT Data Credibility in Fog Environment","volume":"8","author":"Fan","year":"2021","journal-title":"IEEE Internet Things"},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"12636","DOI":"10.1109\/ACCESS.2023.3347495","article-title":"A Comprehensive Systematic Review of Access Control in IoT: Requirements, Technologies, and Evaluation Metrics","volume":"12","author":"Iqal","year":"2024","journal-title":"IEEE Access"},{"key":"ref_8","doi-asserted-by":"crossref","first-page":"708","DOI":"10.1109\/JIOT.2023.3285992","article-title":"An Access Control Method Against Unauthorized and Noncompliant Behaviors of Real-Time Data in Industrial IoT","volume":"11","author":"Wang","year":"2024","journal-title":"IEEE Internet Things J."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"4032","DOI":"10.1109\/TDSC.2022.3216297","article-title":"Hybrid Approaches (ABAC and RBAC) Toward Secure Access Control in Smart Home IoT","volume":"20","author":"Ameer","year":"2023","journal-title":"IEEE Trans. Dependable Secur. Comput."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Dan, N., Ji, S.H., Yuan, C., and Hu, G.J. (2012, January 11\u201313). Attribute based access control (ABAC)-based cross-domain access control in service-oriented architecture (SOA). Proceedings of the International Conference on Computer Science and Service System, Nanjing, China.","DOI":"10.1109\/CSSS.2012.354"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Panduro-Ramirez, J., Lourens, M., Gehlot, A., Singh, D.P., Singh, Y., and Salunke, D.J. (2023, January 27\u201329). Blockchain Approach for Implementing Access Control in IoT. Proceedings of the 2023 International Conference on Artificial Intelligence and Smart Communication, Greater Noida, India.","DOI":"10.1109\/AISC56616.2023.10085452"},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"773","DOI":"10.1109\/TSC.2022.3179727","article-title":"A Blockchain-Based Cross-Domain and Autonomous Access Control Scheme for Internet of Things","volume":"16","author":"Hao","year":"2023","journal-title":"IEEE Trans. Serv. Comput."},{"key":"ref_13","doi-asserted-by":"crossref","first-page":"3884","DOI":"10.1109\/TNSM.2022.3193707","article-title":"Attribute-Based Encryption with Blockchain Protection Scheme for Electronic Health Records","volume":"19","author":"Jiang","year":"2022","journal-title":"IEEE Trans. Netw. Serv. Manag."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"25480","DOI":"10.1109\/ACCESS.2023.3255885","article-title":"Achieving Decentralized and Dynamic SSO-Identity Access Management System for Multi-Application Outsourced in Cloud","volume":"11","author":"Fugkeaw","year":"2023","journal-title":"IEEE Access"},{"key":"ref_15","doi-asserted-by":"crossref","unstructured":"Riabi, I., Dhif, Y., Ayed, H.K.B., and Zaatouri, K. (2019, January 24\u201328). A blockchain based access control for IoT. Proceedings of the 15th International Wireless Communications and Mobile Computing Conference, Tangier, Morocco.","DOI":"10.1109\/IWCMC.2019.8766506"},{"key":"ref_16","doi-asserted-by":"crossref","first-page":"380","DOI":"10.1016\/j.future.2023.06.009","article-title":"AccessChain: An access control framework to protect data access in blockchain enabled supply chain","volume":"148","author":"Sarfaraz","year":"2023","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_17","doi-asserted-by":"crossref","first-page":"1594","DOI":"10.1109\/JIOT.2018.2847705","article-title":"Smart Contract-Based Access Control for the Internet of Things","volume":"6","author":"Zhang","year":"2018","journal-title":"IEEE Internet Things J."},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Li, S., Zhou, T., Yang, H., and Wang, P. (2023). Blockchain-Based Secure Storage and Access Control Scheme for Supply Chain Ecological Business Data: A Case Study of the Automotive Industry. Sensors, 23.","DOI":"10.3390\/s23167036"},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"5268","DOI":"10.1109\/TSG.2021.3099347","article-title":"Blockchain Based Secure Data Aggregation and Distributed Power Dispatching for Microgrids","volume":"12","author":"Luo","year":"2021","journal-title":"IEEE Trans. Smart Grid"},{"key":"ref_20","first-page":"2221","article-title":"Smart Contract-Based Access Control Through Off-Chain Signature and On-Chain Evaluation","volume":"69","author":"Hao","year":"2022","journal-title":"IEEE Trans. Circuits Syst. II Express Briefs"},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Jambi, K., Almarhabi, K., Khemakhem, M., Basuhail, A., and Yamin, M. (2022). Hierarchical. Blockchain-Based Multi-Chaincode Access Control for Securing IoT Systems. Electronics, 11.","DOI":"10.3390\/electronics11050711"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Ali, A., Rahim, H.A., Pasha, M.F., Dowsley, R., Masud, M., Ali, J., and Baz, M. (2021). Security, Privacy, and Reliability in Digital Healthcare Systems Using Blockchain. Electronics, 10.","DOI":"10.3390\/electronics10162034"},{"key":"ref_23","doi-asserted-by":"crossref","first-page":"18207","DOI":"10.1109\/ACCESS.2020.2968492","article-title":"Fabric-IoT: A Blockchain-Based Access Control System in IoT","volume":"8","author":"Liu","year":"2020","journal-title":"IEEE Access"},{"key":"ref_24","doi-asserted-by":"crossref","first-page":"36868","DOI":"10.1109\/ACCESS.2021.3059863","article-title":"Blockchain-Based IoT Access Control System: Towards Security, Lightweight, and Cross-Domain","volume":"9","author":"Sun","year":"2021","journal-title":"IEEE Access"},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"1515","DOI":"10.1109\/TCSS.2022.3186945","article-title":"Access Control and Privacy-Preserving Blockchain-Based System for Diseases Management","volume":"10","author":"Azbeg","year":"2023","journal-title":"IEEE Trans. Comput. Soc. Syst."},{"key":"ref_26","first-page":"103182","article-title":"Attribute-based Access Control Scheme for Data Sharing on Hyperledger Fabric","volume":"67","author":"Zhao","year":"2022","journal-title":"J. Inf. Secur. Appl."},{"key":"ref_27","first-page":"179","article-title":"Realization of Privacy Protection of Food Supply Chain Based on Blockchain and IPFS","volume":"37","author":"Fan","year":"2019","journal-title":"J. Appl. Sci."},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"457","DOI":"10.1093\/comjnl\/bxr097","article-title":"Certificateless Signatures: New Schemes and Security Models","volume":"55","author":"Huang","year":"2012","journal-title":"Comput. J."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"772","DOI":"10.1109\/JIOT.2017.2666783","article-title":"A Privacy-Preserving Vehicular Crowdsensing-Based Road Surface Condition Monitoring System Using Fog Computing","volume":"4","author":"Basudan","year":"2017","journal-title":"IEEE Internet Things J."},{"key":"ref_30","doi-asserted-by":"crossref","unstructured":"Barbosa, M., and Farshim, P. (2008, January 18\u201320). Certificateless signcryption. Proceedings of the 2008 ACM Symposium on Information, Computer and Communications Security, Tokyo, Japan.","DOI":"10.1145\/1368310.1368364"},{"key":"ref_31","first-page":"276","article-title":"Certificateless Aggregate Signcryption: Security Model and A Concrete Construction Secure in the Random Oracle Model","volume":"26","author":"Eslami","year":"2014","journal-title":"J. King Saud. Univ. Comput. Inf. Sci."},{"key":"ref_32","doi-asserted-by":"crossref","first-page":"2160","DOI":"10.1109\/JIOT.2019.2959602","article-title":"Revisit of Certificateless Signature Scheme Used to Remote Authentication Schemes for Wireless Body Area Networks","volume":"7","author":"Liao","year":"2020","journal-title":"IEEE Internet Things J."},{"key":"ref_33","doi-asserted-by":"crossref","first-page":"6178","DOI":"10.1109\/JSEN.2023.3241093","article-title":"DAC4SH: A Novel Data Access Control Scheme for Smart Home Using Smart Contracts","volume":"23","author":"Li","year":"2023","journal-title":"IEEE Sens. J."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/24\/7\/2267\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T14:22:36Z","timestamp":1760106156000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/24\/7\/2267"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,4,2]]},"references-count":33,"journal-issue":{"issue":"7","published-online":{"date-parts":[[2024,4]]}},"alternative-id":["s24072267"],"URL":"https:\/\/doi.org\/10.3390\/s24072267","relation":{},"ISSN":["1424-8220"],"issn-type":[{"value":"1424-8220","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024,4,2]]}}}