Research Article
Combining ID’s, Attributes, and Policies in Hyperledger Fabric
@INPROCEEDINGS{10.1007/978-3-031-31420-9_3, author={Daan Gordijn and Roland Kromes and Thanassis Giannetsos and Kaitai Liang}, title={Combining ID’s, Attributes, and Policies in Hyperledger Fabric}, proceedings={Blockchain Technology and Emerging Technologies. Second EAI International Conference, BlockTEA 2022, Virtual Event, November 21-22, 2022, Proceedings}, proceedings_a={BLOCKTEA}, year={2023}, month={4}, keywords={Blockchain IPFS Privacy Security}, doi={10.1007/978-3-031-31420-9_3} }- Daan Gordijn
Roland Kromes
Thanassis Giannetsos
Kaitai Liang
Year: 2023
Combining ID’s, Attributes, and Policies in Hyperledger Fabric
BLOCKTEA
Springer
DOI: 10.1007/978-3-031-31420-9_3
Abstract
This work aims to provide a more secure access control in Hyperledger Fabric blockchain by combining multiple ID’s, attributes, and policies with the components that regulate access control. The access control system currently used by Hyperledger Fabric is first completely analyzed. Next, a new implementation is proposed that builds upon the existing solution but provides users and developers with easier ways to make access control decisions based on combinations of multiple ID’s, attributes, and policies. Our proposed implementation encapsulates the Fabric CA client to facilitate attribute addition and simplify the process of registering and enrolling a newly created certificate (corresponding to a new user). This research, concludes that it is possible to combine multiple ID’s, attributes, and policies with the help of Hyperledger Fabric’s smart contract technology. Furthermore, it could be seen that the performance impact for real-world applications is negligible compared to the insecure case of always providing access to a resource without performing access control.
