The attribute-based encryption (ABE) has drawn a lot of attention for fine-grained access control in blockchains, especially in blockchain-enabled tampering-resistant Internet-of-Things (IoT) systems. However, its adoption has been severely hindered by the incompatibility between the immutability of typical blockchains and the attribute updates/revocations of ABE. In this article, we propose a new blockchain-based IoT system, which is compatible with the ABE technique, and fine-grained access control is implemented with the attribute update enabled by integrating Chameleon Hash algorithms into the blockchains. We design and implement a new verification scheme over a multilayer blockchain architecture to guarantee the tamper resistance against malicious and abusive tampering. The system can provide an update-oriented access control, where historical on-chain data can only be accessible to new members and inaccessible to the revoked members. This is distinctively different from existing solutions, which are threatened by data leakage toward the revoked members. We also provide analysis and simulations showing that our system outperforms other solutions in terms of overhead, searching complexity, security, and compatibility.

中文翻译：

---

为区块链物联网系统中的细粒度访问控制启用属性撤销

基于属性的加密（ABE）在区块链中的细粒度访问控制方面引起了很多关注，特别是在支持区块链的防篡改物联网（IoT）系统中。然而，由于典型区块链的不变性与 ABE 的属性更新/撤销之间的不兼容，它的采用受到了严重阻碍。在本文中，我们提出了一种新的基于区块链的物联网系统，该系统与 ABE 技术兼容，通过将 Chameleon Hash 算法集成到区块链中，通过启用属性更新来实现细粒度的访问控制。我们在多层区块链架构上设计并实现了一种新的验证方案，以保证对恶意和滥用篡改的防篡改。系统可以提供面向更新的访问控制，其中历史链上数据只能被新成员访问，被撤销成员无法访问。这与现有解决方案截然不同，现有解决方案受到数据泄露给被撤销成员的威胁。我们还提供分析和模拟，表明我们的系统在开销、搜索复杂性、安全性和兼容性方面优于其他解决方案。