Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2022 Jun:648:360-376.
doi: 10.1007/978-3-031-06975-8_21. Epub 2022 Jun 3.

Towards Supporting Attribute-Based Access Control in Hyperledger Fabric Blockchain

Amshumaan Pericherla  1 Proteet Paul  1 Shamik Sural  1 Jaideep Vaidya  2 Vijay Atluri  2
Affiliations

Towards Supporting Attribute-Based Access Control in Hyperledger Fabric Blockchain

Amshumaan Pericherla et al. IFIP Adv Inf Commun Technol. 2022 Jun.

Abstract

Hyperledger Fabric (HLF) is an open-source platform for deploying enterprise-level permissioned blockchains where users from multiple organizations can participate. Preventing unauthorized access to resources in such blockchains is of critical importance. Towards addressing this requirement, HLF supports different access control models. However, support for Attribute-Based Access Control (ABAC) in the current version of HLF is not comprehensive enough to address various requirements that arise when multiple organizations interact in an enterprise setting. To address those shortcomings, in this paper, we develop and present methods for providing full ABAC functionality in Hyperledger Fabric. Performance evaluation under different network configurations using the Hyperledger Caliper benchmarking tool shows that the proposed approach is quite efficient in practice.

Keywords: ABAC; Access control; Blockchain; Chaincode; Hyperledger Fabric; Smart contract.

PubMed Disclaimer

Figures

Fig. 1.
Fig. 1.
Structure of a hyperledger fabric network
Fig. 2.
Fig. 2.
Ledger states for multiple organizations
Fig. 3.
Fig. 3.
Deployment locations of ABAC components
Fig. 4.
Fig. 4.
Proposed ABAC workflow
Fig. 5.
Fig. 5.
Variation in latency with network traffic
Fig. 6.
Fig. 6.
Variation in latency with the number of ABAC components
Fig. 7.
Fig. 7.
Additional latency for different design choices
Fig. 8.
Fig. 8.
Resource consumption for access requests at 200 Txns/s
See this image and copyright information in PMC

References

    1. Akhtar A, et al.: Blockchain based auditable access control for distributed business processes. In: 40th IEEE International Conference on Distributed Computing Systems, pp. 12–22 (2020) - PMC - PubMed
    1. Androulaki E, et al.: Hyperledger fabric: a distributed operating system for permissioned blockchains. In: Proceedings of 13th EuroSys Conference, pp. 1–15 (2018)
    1. Brotsis S, et al.: On the security and privacy of hyperledger fabric: challenges and open issues. In: IEEE World Congress on Services, pp. 197–204 (2020)
    1. Chung TH, et al.: Guide to attribute based access control (ABAC) definition and considerations. NIST Spec. Publ 800(162), 162–800 (2014)
    1. Ding S, et al.: A novel attribute-based access control scheme using blockchain for IOT. IEEE Access 7, 38431–38441 (2019)

LinkOut - more resources