Non-interactive Zero Knowledge Proof Based Access Control in Information-Centric Internet of Things

With the development of communication technology represented by 5G, the core business model of Internet of Things (IoT) has undergone great changes. The traditional host-centric network can no longer meet the needs of the IoT for throughput, privacy protection and interrupt tolerance. IC-IoT, the combination of ICN (Information Centric Networking) and IoT was put forward, which could provide scalable content distribution by using caching-router, multi-party communication, and the decoupling between senders and receivers. However, this paradigm still faces two major problems. First, the access control relationship established between publishers and subscribers requires additional maintenance of complex data structure and authentication process. Second, unencrypted named-data objects (NDO) lead to potential risks of privacy protection. To address those challenges, this paper proposes an algorithm called ZK-CP-ABE as an encryption means for distributed content distribution. Based on CP-ABE, it introduces the non-interactive zero knowledge proof protocol into the CP-ABE's secret-key existence proof to ensure user privacy and reduce invalid bandwidth consumption. On this basis, a system called DPS-IoT is proposed, which uses Hyperledger Fabric based blockchain system to store access policies and evidence for ZKP to prevent them from being tampered with. In addition, we use smart contract to implement ZK-CP-ABE based access control, so as to improve the robustness and throughput of the system. Finally, by comparing with the existing related works, it is proved that the method and system proposed in this paper have greater advantages in utilization of transmission bandwidth, and better performance in system throughput.