A blockchain-based Shamir's Threshold Cryptography Scheme for data protection in Industrial internet of Things settings

Yu, Keping, Tan, Liang, Yang, Caixia, Choo, Kim-Kwang Raymond, Bashir, Ali Kashif ORCID: https://orcid.org/0000-0001-7595-2522, Rodrigues, Joel JPC and Sato, Takuro (2022) A blockchain-based Shamir's Threshold Cryptography Scheme for data protection in Industrial internet of Things settings. IEEE Internet of Things Journal, 9 (11). pp. 8154-8167. ISSN 2327-4662

Preview

Accepted Version Available under License In Copyright. Download (2MB) | Preview

Abstract

The Industrial Internet of Things (IIoT), a typical Internet of Things (IoT) application, integrates the global industrial system with other advanced computing, analysis, and sensing technologies through Internet connectivity. Due to the limited storage and computing capacity of edge and IIoT devices, data sensed and collected by these devices are usually stored in the cloud. Encryption is commonly used to ensure privacy and confidentiality of IIoT data. However, the key used for data encryption and decryption is usually directly stored and managed by users or third-party organizations, which has security and privacy implications. To address this potential security and privacy risk, we propose a Shamir threshold cryptography scheme for IIoT data protection using blockchain: STCChain. Specifically, in our solution, the edge gateway uses a symmetric key to encrypt the data uploaded by the IoT device and stores it in the cloud. The symmetric key is protected by a private key generated by the edge gateway. To prevent the loss of the private key and privacy leakage, we use a Shamir secret sharing algorithm to divide the private key, encrypt it, and publish it on the blockchain. We implement a prototype of STCChain using Xuperchain, and the results show that STCChain can effectively prevent attackers from stealing data as well as ensuring the security of the encryption key.