interledger smart contracts for decentralized
play

Interledger Smart Contracts for Decentralized Authorization to - PowerPoint PPT Presentation

May 28, 2023 •9 likes •289 views

Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A. Siris joint work with D. Dimopoulos, N. Fotiou, S. Voulgaris, G.C. Polyzos Mobile Multimedia Laboratory Athens University of Economics and Business,

  1. Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A. Siris joint work with D. Dimopoulos, N. Fotiou, S. Voulgaris, G.C. Polyzos Mobile Multimedia Laboratory Athens University of Economics and Business, Greece vsiris@aueb.gr CryBlock 2019 – IEEE INFOCOM 2019 29 April 2019, Paris EU H2020 SOFIE: Secure Open Federation for Internet Everywhere

  2. Motivation and goal • Why constrained IoT environments ? • Why (not) blockchains ? • Goal: investigate options for integrating blockchains with authorization to constrained IoT devices with different cost/functionality tradeoffs Single public ledger • Key challenges not enough Addressed • Transaction cost and delay in this • Fully decentralized solution paper Blockchain interaction • Ensuring that IoT devices actually provide with real world is a promised access challenge vsiris@aueb.gr

  3. Why constrained IoT environments? • Because many IoT devices are constrained in terms of • processing and storage resources Reducing usage also reduces power consumption & security threats • network connectivity Scalability of IoT systems can be addressed by utilizing device-to-device communication Device-to-device technologies exist and are becoming mature New challenge: how to achieve trusted device-to-device communication vsiris@aueb.gr

  4. Why blockchains? Blockchain features • Decentralized trust, i.e. no single trusted third party • Public ledgers: wide-scale decentralized trust • Permissioned ledgers: degree of trust determined by permissioned set • Immutability • related to first point, majority of nodes need to agree to change state • Transparency • not only a feature but a requirement for decentralized trust • tradeoff with privacy • Availability , through decentralized storage and execution • can be achieved other ways vsiris@aueb.gr

  5. Two baseline models • Immutable recording of transactions and events Model 1: Authorization • Cryptographically link authorization grants to grants linked to blockchain payments blockchain payments • Record hashes of authorization messages exchanged on blockchain and hashes recorded • Transparent and trusted execution of Model 2: Smart authorization logic contract handling • More expressive than above authorization requests • Policies can involve IoT events recorded on blockchain • Can benefit from blockchain’s high availability and encoding policies • But more expensive vsiris@aueb.gr

  6. Assumptions Authorization Server • IoT resource has limited processing, storage and only D2D connectivity • Previous work assumes IoT devices always connected and interact directly with blockchain • Authorization Server (AS) handles requests on behalf of IoT resource Internet • OAuth 2.0 authorization framework • Based on access tokens • Client and AS always connected and D2D IoT can interact with blockchain Client Resource vsiris@aueb.gr

  7. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain • Client reads secret s on blockchain to decrypt access token D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  8. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner E s (token), PoP, when s revealed on blockchain E Thing (PoP) • Client reads secret s on blockchain to decrypt access token D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  9. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain deposit • Client reads secret s on blockchain to decrypt access token E s (token) D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  10. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 secret s • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain • Client reads secret s on blockchain to decrypt access token E s (token) D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  11. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain secret s • Client reads secret s on blockchain to decrypt access token E s (token) E s (token) D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource token vsiris@aueb.gr

  12. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain • Client reads secret s on blockchain to E PoP (request,token), E Thing (PoP) decrypt access token IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  13. Model 1: Authorization grants linked to blockchain payments and hashes recorded Authorization Server • Client and AS communicate directly as in OAuth 2.0 • Access token encrypted with secret s • Secret s related to payment’s hash-lock • Proof-of-Possession (PoP) used to secure client-IoT resource D2D link • Client deposits amount for accessing resource Internet • Deposit transferred to resource owner when s revealed on blockchain • Client reads secret s on blockchain to decrypt access token D2D IoT • Hash of messages exchanged between Client client and AS recorded on blockchain Resource vsiris@aueb.gr

  14. Model 2: Smart contract handling authorization requests and encoding policies Authorization Server • Client sends authorization request to Smart Contract • Smart Contract transparently records prices and authorization policies (defined by resource owner) • As in previous model, payments linked to authorization requests Internet • Unlike previous model: because data request on blockchain public need to encrypt part of token with client’s public key D2D IoT Client Resource vsiris@aueb.gr

  15. Model 2: Smart contract handling authorization requests and encoding policies Authorization Server • Client sends authorization request to Smart Contract E client (PoP) • Smart Contract transparently records prices and authorization policies (defined by resource owner) • As in previous model, payments linked to authorization requests Internet • Unlike previous model: because data E client (PoP) on blockchain public need to encrypt part of token with client’s public key D2D IoT Client Resource vsiris@aueb.gr

  16. Implementation • Deployed local node connected to Rinkeby and Ropsten public Ethereum testnets • Private chain is a local Ethereum network • Smart contract written in Solidity with Remix web-based editor • Web3.0 to interact with Rinkeby and Ropsten blockchains • Authorization server based on open PHP implementation of OAuth 2.0 • CBOR (Concise Binary Object Representation) Web Token (CWT) • More efficient than JSON Web Token (JWT) encoding vsiris@aueb.gr

  17. Single blockchain results: execution cost • Smart contract requires 2.5 times EVM gas compared to simply recording hashes • Only write transactions cost gas • Reading data has zero cost • Quantifies cost for higher functionality of smart contracts • Authorization policies & logic vsiris@aueb.gr

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Decentralized Execution of Smart Contracts: Agent Model Perspective and Its Implications Weidong

Decentralized Execution of Smart Contracts: Agent Model Perspective and Its Implications Weidong

Introduction of the problem Decentralized Execution of Smart Contracts: Agent Model Perspective and Its Implications Weidong Shi joint work with Lin Chen, Lei Xu, Nolan Shah, Zhimin Gao, and Yang Lu University of Houston 1st Workshop on

377 views • 33 slides
Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all about what smart contracts are... ...but what does a real smart contract look like? Lets talk about writing actual Smart Contracts with code

809 views • 50 slides
Using the Blockchain and Smart Contracts to Manage Grants Jason E. Barkeloo

Using the Blockchain and Smart Contracts to Manage Grants Jason E. Barkeloo

Using the Blockchain and Smart Contracts to Manage Grants Jason E. Barkeloo jason@Knowbella.Tech Simplified Evolution of Network Architecture Centralized Decentralized Distributed Blockchain Cryptographically secure and globally

261 views • 22 slides
Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple

Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple

Powering the Future of Decentralized Systems and Applications Nuco networks connect multiple entities in an industry Nuco smart contracts facilitate automated industry processes SMART CONTRACT The infrastructure is built to scale and to

435 views • 15 slides
Quantitative Analysis of Smart Contracts Krishnendu Chatterjee 1 Amir Goharshady 1 Yaron Velner 2 1

Quantitative Analysis of Smart Contracts Krishnendu Chatterjee 1 Amir Goharshady 1 Yaron Velner 2 1

Quantitative Analysis of Smart Contracts Krishnendu Chatterjee 1 Amir Goharshady 1 Yaron Velner 2 1 IST Austria 2 Hebrew University of Jerusalem ESOP 2018 Outline Smart Contracts Bugs in Smart Contracts Language Design Games and Abstraction

1.06k views • 73 slides
Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts Yashar Dehkan

Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts Yashar Dehkan

Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts Yashar Dehkan Asl Chapter I Introduction Decentralized Cryptocurrencies: Such as Bitcoin and altcoins are getting more popular Blockchain Technology: These

734 views • 26 slides
WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean? What does Decentralization mean? Decentralized Marketing is formed on a smart contract that provides complete security and resilience. A Smart

766 views • 14 slides
Smart Contracts Jrgen Modin The two building blocks of smart contracts Digital signatures

Smart Contracts Jrgen Modin The two building blocks of smart contracts Digital signatures

Smart Contracts Jrgen Modin The two building blocks of smart contracts Digital signatures The blockchain What does the blockchain do? One timestamp, and one context for each signature You can detect if someone is promising

289 views • 7 slides
Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies

Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies

Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies National University of Singapore Shanghai, Jan. 15-17 2017 Some slides are courtesy of Vitalik Buterin 1 Agenda Smart contracts and

1.12k views • 79 slides
Bitcoin Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Bitcoin Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Bitcoin Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical Engineering Indian Institute of Technology Bombay August 26, 2019 1 / 17 Smart Contracts Computer protocols which help execution/enforcement of

288 views • 17 slides
Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou Security Consultant Smart contract audits Nmap/Ncrack contributor Certs: OSCE, OSCP, OSWP Blockchain Basics Front Running

642 views • 30 slides
Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia Mavridou 1 and Aron Laszka 2 1 Vanderbilt University 2 University of Houston 2 Smart Contract Insecurity Smart contracts are riddled with bugs and

575 views • 21 slides
Interledger Internetworking for Money Evan Schwartz Engineer at Ripple Co-Inventor of

Interledger Internetworking for Money Evan Schwartz Engineer at Ripple Co-Inventor of

Interledger Internetworking for Money Evan Schwartz Engineer at Ripple Co-Inventor of Interledger Payments are broken. Accepting Payments in a Turkish Starbucks Accepting Payments Online Accepting Payments Online Payment Methods Accepted By

873 views • 49 slides
Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a

Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a

Bilateral contracts Bilateral contracts are for a direct exchange of energy between a buyer and a seller, in a decentralized fashion They may both be producers and/or consumers Most likely a broker is involved... Eventually, the system operator

279 views • 12 slides
A Concurrent Perspective on Smart Contracts Ilya Sergey Aquinas Hobor 1st Workshop on

A Concurrent Perspective on Smart Contracts Ilya Sergey Aquinas Hobor 1st Workshop on

A Concurrent Perspective on Smart Contracts Ilya Sergey Aquinas Hobor 1st Workshop on Trusted Smart Contracts 7 April 2017 class ConcurrentQueue <E> { public synchronized void enqueue(E elem) {} public synchronized E dequeue()

605 views • 21 slides
Blockchain and Smart Contracts in the Energy Industry: A European Perspective Dr. Matthias Lang

Blockchain and Smart Contracts in the Energy Industry: A European Perspective Dr. Matthias Lang

Blockchain and Smart Contracts in the Energy Industry: A European Perspective Dr. Matthias Lang Bird & Bird LLP, Dsseldorf, Germany April 11, 2019 Table of contents I. Introduction II. Blockchain and Smart Contracts in a Nutshell

787 views • 41 slides
Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE

Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE

Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF What Is Apache CXF Production

465 views • 25 slides
Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material

Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material

Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material Web sites Microsoft links from last lecture Linux Capabilities - man 7 capabilities or http://www.linuxjournal.com/article/5737

1.17k views • 29 slides
OAuth 2.0 Ein Standard wird erwachsen Uwe Friedrichsen (codecentric AG) Berlin Expert Days

OAuth 2.0 Ein Standard wird erwachsen Uwe Friedrichsen (codecentric AG) Berlin Expert Days

OAuth 2.0 Ein Standard wird erwachsen Uwe Friedrichsen (codecentric AG) Berlin Expert Days 2013 4. April 2013 Uwe Friedrichsen @ufried <session> <no-code> <motivation /> <history /> <solution />

1.03k views • 44 slides
Web Security and Auth Shan-Hung Wu CS, NTHU Outline Security risks of web applications

Web Security and Auth Shan-Hung Wu CS, NTHU Outline Security risks of web applications

Web Security and Auth Shan-Hung Wu CS, NTHU Outline Security risks of web applications Injection, broken authentication , XSS, CSRF, etc. Checklist of 23 Node.js security best practices Auth: Authentication, authorization, and

336 views • 30 slides
15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon University Fall 2019 1 Outline The data collection process Common data formats and handling Regular expressions and parsing 2 Outline The

605 views • 27 slides
Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and Dirk Grunwald Presented by Andy Sayler SoCC 2016 10/06/16 SFg5asknmc6e SFg5asknmc6e SFg5asknmc6e DTrump GreatPassword Secrets SFg5asknmc6e

2.19k views • 193 slides
DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY

DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY

DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY MAX PERRY PERINATO Thesis Supervisor: Prof. Michele Bugliesi Department of Environmental Sciences, Informatics and Statistics

830 views • 15 slides
Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the

Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the

Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the Government Alan Sorcher Randy Urban October 6, 2020 Tom Manganello Paul Saulski SEC Disclaimer The SECs Office of Investor Education and Advocacy

607 views • 39 slides

More recommend