DL-BAC: Distributed ledger based access control for web applications

Lei Xu, Zhimin Gao, Lin Chen, Yang Lu, Nolan Shah, Weidong Shi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

9 Scopus citations

Abstract

Since Internet based applications have become the norm for most users, security has become a bigger concern than ever before, especially for applications like social networking and cloud based storage. Access control is one of the key techniques that can mitigate security concerns for web based applications. However, most existing access control mechanisms require a trusted party, which are vulnerable to many threats including malicious insiders and single point failure. In response to these challenges, we propose DL-BAC, a novel access control system based on the distributed ledger. DL-BAC robustly enforces access control policies without depending on a single trusted party. We also provide an extension of DL-BAC that is privacy respecting and evaluate the performance of DL-BAC to show its practicability.

Original languageEnglish
Title of host publication26th International World Wide Web Conference 2017, WWW 2017 Companion
PublisherInternational World Wide Web Conferences Steering Committee
Pages1445-1450
Number of pages6
ISBN (Electronic)9781450349147
DOIs
StatePublished - 2019
Event26th International World Wide Web Conference, WWW 2017 Companion - Perth, Australia
Duration: Apr 3 2017Apr 7 2017

Publication series

Name26th International World Wide Web Conference 2017, WWW 2017 Companion

Conference

Conference26th International World Wide Web Conference, WWW 2017 Companion
CountryAustralia
CityPerth
Period04/3/1704/7/17

Keywords

  • Distributed ledger
  • Security
  • Web application

Fingerprint Dive into the research topics of 'DL-BAC: Distributed ledger based access control for web applications'. Together they form a unique fingerprint.

  • Cite this

    Xu, L., Gao, Z., Chen, L., Lu, Y., Shah, N., & Shi, W. (2019). DL-BAC: Distributed ledger based access control for web applications. In 26th International World Wide Web Conference 2017, WWW 2017 Companion (pp. 1445-1450). (26th International World Wide Web Conference 2017, WWW 2017 Companion). International World Wide Web Conferences Steering Committee. https://doi.org/10.1145/3041021.3053897