research-article

Authenticated and auditable data sharing via smart contract

Authors:

Vincent Reniers,

Akash Madhusudan,

Dimitri Van Landuyt,

Riccardo Lombardi,

Wouter JoosenAuthors Info & Claims

SAC '20: Proceedings of the 35th Annual ACM Symposium on Applied Computing

Pages 324 - 331

https://doi.org/10.1145/3341105.3373957

Published: 30 March 2020 Publication History

Abstract

Our main use case features multiple companies that iteratively optimize on the architectural properties of aircraft components in a decentralized manner. In each optimization step of the so-called multi-disciplinary optimization (MDO) process, sensitive data is exchanged between organizations, and we require auditability and traceability of actions taken to assure compliance with signed legal agreements.

In this paper, we present a distributed protocol that coordinates authenticated and auditable exchanges of files, leveraging a smart contract. The entire life cycle of a file exchange, including file registration, access request and key distribution, is recorded and traceable via the smart contract. Moreover, when one party raises a dispute, the smart contract can be used to identify the dishonest party without compromising the file's confidentiality.

The proposed protocol provides a simple, novel, yet efficient approach to exchange files with support for data access auditability between companies involved in a private consortium with no incentive to share files outside of the protocol. We implemented the protocol in Solidity, deployed it on a private Ethereum blockchain, and validated it within the use case of a decentralized workflow.

References

[1]

2019. Decentralized Cloud Storage - Storj. https://storj.io/. Accessed: 2019-09-28.

[2]

2019. Sia - Cloud storage. https://sia.tech/. Accessed: 2019-09-28.

[3]

A. Azaria, A. Ekblaw, T. Vieira, and A. Lippman. 2016. MedRec: Using Blockchain for Medical Data Access and Permission Management. In 2016 2nd International Conference on Open and Big Data (OBD). 25--30.

[4]

Juan Benet. 2014. IPFS - Content Addressed, Versioned, P2P File System. CoRR abs/1407.3561 (2014). arXiv:1407.3561 http://arxiv.org/abs/1407.3561

[5]

Evin J Cramer, John E Dennis, Jr, Paul D Frank, Robert Michael Lewis, and Gregory R Shubin. 1994. Problem formulation for multidisciplinary optimization. SIAM Journal on Optimization 4, 4 (1994), 754--776.

Digital Library

[6]

Chris Dannen. 2017. Introducing Ethereum and Solidity: Foundations of Cryptocurrency and Blockchain Programming for Beginners (1st ed.). Apress, Berkely, CA, USA.

[7]

Michael Egorov and MacLane Wilkison. 2017. NuCypher KMS: Decentralized key management system. ArXiv abs/1707.06140 (2017).

[8]

Décio Luiz Gazzoni Filho and Paulo Sérgio Licciardi Messeder Barreto. 2006. Demonstrating data possession and uncheatable data transfer. IACR Cryptology ePrint Archive 2006 (2006). http://eprint.iacr.org/2006/150

[9]

Edoardo Gaetani, Leonardo Aniello, Roberto Baldoni, Federico Lombardi, Andrea Margheri, and Vladimiro Sassone. 2017. Blockchain-based database to ensure data integrity in cloud computing environments. In Italian Conference on Cybersecurity (20/01/17). https://eprints.soton.ac.uk/411996/

[10]

The Guardian. 2016. Dropbox hack leads to leaking of 68m user passwords on the internet. https://www.theguardian.com/technology/2016/aug/31/dropbox-hack-passwords-68m-data-breach

[11]

Eleftherios Kokoris-Kogias, Enis Ceyhun Alp, Sandra Deepthy Siby, Nicolas Gailly, Linus Gasser, Philipp Jovanovic, Ewa Syta, and Bryan Ford. 2018. Calypso: Auditable sharing of private data over blockchains. Cryptology ePrint Archive 209 (2018). https://eprint.iacr.org/2018/209.pdf

[12]

Ilan Kroo, Steve Altus, Robert Braun, Peter Gage, and Ian Sobieski. 1994. Multidisciplinary optimization methods for aircraft preliminary design. In 5th symposium on multidisciplinary analysis and optimization.

[13]

B. Liu, X. L. Yu, S. Chen, X. Xu, and L. Zhu. 2017. Blockchain Based Data Integrity Service Framework for IoT Data. In 2017 IEEE International Conference on Web Services (ICWS). 468--475.

[14]

Damiano Di Francesco Maesa, Paolo Mori, and Laura Ricci. 2019. A blockchain based approach for the definition of auditable Access Control systems. Computers & Security 84 (2019), 93 -- 119.

Digital Library

[15]

Satoshi Nakamoto. 2008. Bitcoin: A Peer-to-Peer Electronic Cash System. Retrieved 2019-09-28 from https://bitcoin.org/bitcoin.pdf

[16]

Vincent Reniers, Dimitri Van Landuyt, Paolo Viviani, Bert Lagaisse, Riccardo Lombardi, and Wouter Joosen. 2019. Analysis of Architectural Variants for Auditable Blockchain-based Private Data Sharing. In Proceedings of the 34th ACM/SIGAPP Symposium on Applied Computing (SAC '19). ACM, New York, NY, USA, 346--354.

Digital Library

[17]

Hossein Shafagh, Lukas Burkhalter, Anwar Hithnawi, and Simon Duquennoy. 2017. Towards Blockchain-based Auditable Storage and Sharing of IoT Data. In Proceedings of the 2017 on Cloud Computing Security Workshop (CCSW '17). ACM, New York, NY, USA, 45--50.

Digital Library

[18]

Noesis Solutions. 2018. Software Solutions that enable Objectives Based Engineering. https://www.noesissolutions.com/

[19]

S. Sundareswaran, A. Squicciarini, and D. Lin. 2012. Ensuring Distributed Accountability for Data Sharing in the Cloud. IEEE Transactions on Dependable and Secure Computing 9, 4 (July 2012), 556--568.

Digital Library

[20]

E. Syta, I. Tamas, D. Visher, D. I. Wolinsky, P. Jovanovic, L. Gasser, N. Gailly, I. Khoffi, and B. Ford. 2016. Keeping Authorities "Honest or Bust" with Decentralized Witness Cosigning. In 2016 IEEE Symposium on Security and Privacy (SP). 526--545.

[21]

Gavin Wood et al. 2014. Ethereum: A secure decentralised generalised transaction ledger. Ethereum project yellow paper (2014), 1--32.

[22]

S. Yu, C. Wang, K. Ren, and W. Lou. 2010. Achieving Secure, Scalable, and Fine-grained Data Access Control in Cloud Computing. In 2010 Proceedings IEEE INFOCOM. 1--9.

[23]

G. Zyskind, O. Nathan, and A. Pentland. 2015. Decentralizing Privacy: Using Blockchain to Protect Personal Data. In 2015 IEEE Security and Privacy Workshops. 180--184.

Cited By

He QFeng ZFang HWang XZhao LYao YYu K(2024)A Blockchain-Based Scheme for Secure Data Offloading in Healthcare With Deep Reinforcement LearningIEEE/ACM Transactions on Networking10.1109/TNET.2023.327463132:1(65-80)Online publication date: Feb-2024
https://doi.org/10.1109/TNET.2023.3274631
Jannes KReniers VLenaerts WLagaisse BJoosen WHong JLanperne MPark JCerny TShahriar H(2023)DEDACS: Decentralized and dynamic access control for smart contracts in a policy-based mannerProceedings of the 38th ACM/SIGAPP Symposium on Applied Computing10.1145/3555776.3577676(222-230)Online publication date: 27-Mar-2023
https://dl.acm.org/doi/10.1145/3555776.3577676
Azmi AYahya FMoung ESallehudin HUtomo RAzman N(2023)Blockchain-based Data Sharing Framework for Malaysia Government Aid Management System2023 International Conference on Digital Applications, Transformation & Economy (ICDATE)10.1109/ICDATE58146.2023.10248471(1-7)Online publication date: 14-Jul-2023
https://doi.org/10.1109/ICDATE58146.2023.10248471
Show More Cited By

Index Terms

Authenticated and auditable data sharing via smart contract
1. Applied computing
  1. Enterprise computing
    1. Enterprise information systems
2. Software and its engineering
  1. Software organization and properties
    1. Software system structures
      1. Software architectures
        Peer-to-peer architectures

Recommendations

Analysis of architectural variants for auditable blockchain-based private data sharing
SAC '19: Proceedings of the 34th ACM/SIGAPP Symposium on Applied Computing

Many applications by design depend on costly trusted third-party auditors. One such example is the industrial application case of federated multi-disciplinary optimization (MDO), in which different organizations contribute to a complex engineering ...
Smart Payment Contract Mechanism Based on Blockchain Smart Contract Mechanism
In recent years, blockchain technology has become a hot topic in various industries. With the development and maturity of blockchain technology, it has been applied to finance, law, etc., with its advantages of decentralization, openness, information ...
Smart Contract and Blockchain Based Contract Management System
ECBS 2021: 7th Conference on the Engineering of Computer Based Systems

This paper presents theoretical and practical research on the possibilities of applying smart contracts in the field of law and a contract management system which allows users to conclude contracts based on blockchain technology. The transition from ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

SAC '20: Proceedings of the 35th Annual ACM Symposium on Applied Computing

March 2020

2348 pages

ISBN:9781450368667

DOI:10.1145/3341105

Conference Chairs:
Chih-Cheng Hung
Kennesaw State University
,
Tomas Cerny
Baylor University
,
Program Chairs:
Dongwan Shin
New Mexico Tech
,
Alessio Bechini
University of Pisa, Italy

Copyright © 2020 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGAPP: ACM Special Interest Group on Applied Computing

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 30 March 2020

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

KU Leuven

Conference

SAC '20

Sponsor:

SIGAPP

SAC '20: The 35th ACM/SIGAPP Symposium on Applied Computing

March 30 - April 3, 2020

Brno, Czech Republic

Acceptance Rates

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

5
Total Citations
View Citations
366
Total Downloads

Downloads (Last 12 months)30
Downloads (Last 6 weeks)4

Reflects downloads up to 13 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

He QFeng ZFang HWang XZhao LYao YYu K(2024)A Blockchain-Based Scheme for Secure Data Offloading in Healthcare With Deep Reinforcement LearningIEEE/ACM Transactions on Networking10.1109/TNET.2023.327463132:1(65-80)Online publication date: Feb-2024
https://doi.org/10.1109/TNET.2023.3274631
Jannes KReniers VLenaerts WLagaisse BJoosen WHong JLanperne MPark JCerny TShahriar H(2023)DEDACS: Decentralized and dynamic access control for smart contracts in a policy-based mannerProceedings of the 38th ACM/SIGAPP Symposium on Applied Computing10.1145/3555776.3577676(222-230)Online publication date: 27-Mar-2023
https://dl.acm.org/doi/10.1145/3555776.3577676
Azmi AYahya FMoung ESallehudin HUtomo RAzman N(2023)Blockchain-based Data Sharing Framework for Malaysia Government Aid Management System2023 International Conference on Digital Applications, Transformation & Economy (ICDATE)10.1109/ICDATE58146.2023.10248471(1-7)Online publication date: 14-Jul-2023
https://doi.org/10.1109/ICDATE58146.2023.10248471
Li LZhang TSun GJin DLi N(2022)A Fair, Verifiable and Privacy-Protecting Data Outsourcing Transaction Scheme Based on Smart ContractsIEEE Access10.1109/ACCESS.2022.321272610(106873-106885)Online publication date: 2022
https://doi.org/10.1109/ACCESS.2022.3212726
Xu YChong HChi M(2021)A Review of Smart Contracts Applications in Various Industries: A Procurement PerspectiveAdvances in Civil Engineering10.1155/2021/55307552021:1Online publication date: 21-Apr-2021
https://doi.org/10.1155/2021/5530755
Kask MPiho GRoss P(2021)Systematic Literature Review of Methods for Maintaining Data IntegrityAdvances in Model and Data Engineering in the Digitalization Era10.1007/978-3-030-87657-9_20(259-268)Online publication date: 7-Oct-2021
https://doi.org/10.1007/978-3-030-87657-9_20

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents