Internet of Things (IoT) applications have gained a huge momentum and have spanned across all domains adding innovations to the prevailing solutions. The IoT networks generate enormous data comprising meteorological information, patient critical body parameters, finance, logistics, location of a tracking object, etc. Security for sensitive data,such as patient body critical parameters from an attached monitoring device, streaming over IoT networks is vital and is a need of the hour. Data integrity and user (or device) authentication are crucial for building a trust-worthy communication network among the peers in IoT networks. Most networks still employ specific software encryption algorithms that provide considerable data security. But quantum computing has proved the vulnerability of computationally vigorous cryptographic algorithms. A decentralized and scalable framework for device authentication and data security is proposed in this paper based on blockchain platform and Physical Unclonable Functions (PUFs). An authentication protocol is developed using PUF-based cryptographic primitives. The PUF-based keys are hard to replicate and almost impossible to predict because of the randomness in the physical design and complex mathematical modeling of the system. Lightweight Smart contracts are used to facilitate role-based access control. Data privacy is preserved by storing the sensitive data off-chain. As a proof of concept, an IoT-based healthcare system based on Ethereum permissioned blockchain is developed using the proposed framework. The​ designed PUF exhibits 48.46% uniqueness and 2.38% reliability. A comparative analysis with existing similar models shows that the proposed approach is feasible and provides a scalable solution for device authentication and data security in resource-limited medical IoT networks.

物联网 (IoT) 应用程序获得了巨大的发展势头，并跨越了所有领域，为流行的解决方案增加了创新。物联网网络生成大量数据，包括气象信息、患者关键身体参数、财务、物流、跟踪对象的位置等。 敏感数据的安全性，例如来自附加监控设备的患者身体关键参数，通过物联网网络流式传输至关重要这是一个小时的需要。数据完整性和用户（或设备）身份验证对于在物联网网络中的对等点之间构建值得信赖的通信网络至关重要。大多数网络仍然采用特定的软件加密算法来提供相当大的数据安全性。但是量子计算已经证明了计算量很大的密码算法的脆弱性。本文基于区块链平台和物理不可克隆功能（PUF）提出了一种用于设备认证和数据安全的去中心化和可扩展框架。使用基于 PUF 的加密原语开发身份验证协议。由于系统物理设计和复杂数学建模的随机性，基于 PUF 的密钥难以复制且几乎无法预测。轻量级智能合约用于促进基于角色的访问控制。通过在链外存储敏感数据来保护数据隐私。作为概念证明，使用提议的框架开发了基于以太坊许可区块链的基于物联网的医疗保健系统。设计的 PUF 具有 48.46% 的独特性和 2.38% 的可靠性。