dc.description.abstract | Lack of trustworthiness, access policy flexibility, and user privacy preservation in
centralized access control systems arises numerous security issues and reduces
collaboration maturity of global data sharing systems. In this thesis, we propose a
Self-Sovereign Identity-based, Decentralized, and Dynamic (SSIDD) access control.
SSIDD utilizes blockchain technologies to build trust for untrusted data
sharing networks and ensure user privacy. Our access control provides high access
policy flexibility and security for global intra-enterprise collaborations from
a diverse industrial environment. SSIDD authenticate its users based on their
Decentralized Identifiers (DID), which are in control of users and resolve into
a DID document stored on the blockchain. Our data management technique
for user privacy, keeps the data sharing systems safe against issues such as data
breaches, identity thefts, and privacy violations. Besides, in SSIDD the authorization
process happens by adapting a dynamic access policy technique through
several smart contracts. The transparency of rules and agreements in smart contracts
and the traceability of records on blockchain ledger provide a high level
of security and trust. For proof of concepts, we have developed and evaluated a
prototype of SSIDD. Our evaluations show that the overall performance of SSIDD
has an acceptable range of throughput and latency. | |