• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

计算机工程与科学 ›› 2025, Vol. 47 ›› Issue (06): 1028-1040.

• 计算机网络与信息安全 • 上一篇    下一篇

车联网环境下基于智能合约的混合访问控制模型

韦可欣1,李雷孝1,2,斯琴1,2,史建平3   

  1. (1.内蒙古工业大学数据科学与应用学院(网络空间安全学院),内蒙古 呼和浩特 010080;
    2.内蒙古自治区北疆网络空间安全重点实验室,内蒙古 呼和浩特 010080;
    3.鄂尔多斯市市民卡建设有限公司,内蒙古 鄂尔多斯 017000)

  • 收稿日期:2023-11-17 修回日期:2024-04-17 出版日期:2025-06-25 发布日期:2025-06-26
  • 基金资助:
    内蒙古自治区科技成果转化专项资金(2021CG0033,2020CG0073);内蒙古自治区重点研发与成果转化计划(2022YFSJ0013);内蒙古自治区高等学校青年科技英才支持计划(NJYT22084);鄂尔多斯市科技计划(重点研发计划)(YF20232328);内蒙古自治区直属高校基本科研业务费(JY20220061,JY20230119,JY20230019)

A hybrid access control model based on smart contract for the Internet of Vehicle environment

WEI Kexin1,LI Leixiao1,2,SI Qin1,2,SHI Jianping3   

  1. (1.College of Data Science and Application(College of Cyber Security),
    Inner Mongolia University of Technology,Hohhot 010080;
    2.Inner Mongolia Key Laboratory of Beijiang Cyberspace Security,Hohhot 010080;
    3.Ordos Citizen Card Construction Co.,Ltd,Ordos  017000,China)
  • Received:2023-11-17 Revised:2024-04-17 Online:2025-06-25 Published:2025-06-26

PDF

255

摘要: 当下车联网访问控制通常是使用传统访问控制模型实现安全的道路行驶和高效的交通管理,针对传统车联网访问控制存在无法动态授权车辆权限、对资源无法细粒度授权,且难以对通信双方历史交流通信进行回溯等问题,提出基于角色的访问控制(RBAC)与基于属性的访问控制(ABAC)相结合的混合访问控制模型BARV-BAC。首先,制定角色-属性规则、属性授权规则和访问控制策略。其次,设计角色-属性智能合约(Role publisher-SC)和资源智能合约(RE-SC),以实现车联网动态化和细粒度管理。此外,使用数字签名验证用户对该角色的所有权,同时验证模型的可靠性。实验结果表明,在所仿真的道路环境下,模型的平均延迟小于200 ms,与传统访问控制模型相比有较大提升,与其他访问控制模型相比智能合约开销减少明显,进一步验证了BARV-BAC在车联网访问控制上具有高效性、实用性和安全性。

关键词: 智能合约, 访问控制, 车联网

Abstract: When the Internet of Vehicle (IoV) traditional  access control is to provide safer road driving and efficient traffic management, it has problems such as the inability to dynamically authorize vehicle permissions, the inability to authorize resources in a fine-grained manner, and the difficulty of tracing the historical communication between the two communication parties. To solve these problems, a  hybrid access control model (BARV-BAC) combining role-based access control (RBAC) and attribute-based access control (ABAC) is proposed. Firstly, role-attribute rules, attribute authorization rules and access control policies are established. Secondly, role publisher smart contract (Role publisher-SC) and resource smart contract (RE-SC) are designed to achieve dynamic and fine-grained management of IoV. In addition, a digital signature is used to verify the ownership of the role and verify the reliability of the model. The experimental results show that in the simulated road environment, the average  delay of the model is less than 200 ms, which is greatly improved compared with the traditional access control models, and the smart contract cost is significantly reduced compared with other access control models. It is further verified that BARV-BAC has high efficiency, practicability and security in vehicle network access control.


Key words: smart contract, access control, Internet of Vehicle ,

湘公网安备 43010502000083号

湘ICP备10006030号

版权所有 © 《计算机工程与科学》 编辑部

地址:中国湖南省长沙市开福区德雅路109号(410073) 电话:0731-87002567 Email: jsjgcykx@vip.163.com

本系统由北京玛格泰克科技发展有限公司设计开发 技术支持:support@magtech.com.cn