Manchester Metropolitan University logo
e-space
Manchester Metropolitan University's Research Repository

    Secure and scalable trust management in IoT: A hierarchical blockchain-based approach

    Elham, Meybodian, Seyedakbar, Mostafavi, Dargahi, Tooska ORCID logoORCID: https://orcid.org/0000-0002-0908-6483 and Vahid, Ranjbar Bafghi (2025) Secure and scalable trust management in IoT: A hierarchical blockchain-based approach. Computers and Electrical Engineering, 127 (B). 110631. ISSN 0045-7906

    [img]
    Preview
    		 Accepted Version
    Available under License Creative Commons Attribution.
    Download (2MB) | Preview

    Abstract

    The diverse and resource-constrained nature of Internet of Things (IoT) devices make them vulnerable against various security attacks. Effective trust management within the IoT ecosystem is crucial for reliable data collection and sharing, as well as the detection of malicious nodes. Centralized trust management methods are inefficient due to several challenges, including single point of attack/failure, unauthorized manipulation of trust data, resource limitations of smart devices, and scalability issues. Blockchain technology provides a suitable solution for trust management due to its decentralization, transparency, and immutability features. However, deploying blockchain for IoT devices is not simple due to the low performance and high computational costs of consensus algorithms, limited resources of smart devices, and the large volume of transactions created by nodes. In this paper, a hierarchical trust management approach based on blockchain is proposed. The proposed approach evaluates each node’s reputation and organizational trust at both intra-organizational and inter-organizational levels. At the internal level, a lightweight blockchain is used to evaluate and store the trust score of the nodes. At the inter-organizational level, interactions between organizations and their trust level are recorded in the public blockchain. Two methods are proposed, i.e. probing-based and evidence-based, for evaluating the reputation of each node and the trust level of each organization. The evaluation results show that with a maximum of 35% malicious nodes within an organization, the proposed method can correctly identify the malicious and honest nodes. The recall and specificity measures obtained are both greater than 0.9. Additionally, organizations with more than 35% of malicious nodes are blacklisted and suspended.

    Item Type: Article (Article)
    Peer-reviewed: Yes
    Date Deposited: 16 Sep 2025 08:39
    Publisher: Elsevier
    Additional Information: This is an author accepted manuscript of an article published in Computers and Electrical Engineering, by Elsevier.
    Divisions: Faculties > Science and Engineering
    Faculties > Science and Engineering > Department of Computing and Maths
    Subject terms: 0803 Computer Software, 0805 Distributed Computing, 0906 Electrical and Electronic Engineering, Electrical & Electronic Engineering, 4008 Electrical engineering, 4602 Artificial intelligence, 4606 Distributed computing and systems software
    Data Access Statement: Data will be made available on request.
    URI: https://e-space.mmu.ac.uk/id/eprint/641445
    DOI: https://doi.org/10.1016/j.compeleceng.2025.110631
    ISSN 0045-7906

    Impact and Reach

    Statistics

    DownloadsShow export options
    Activity Overview
    6 month trend
    6Downloads
    6 month trend
    9Hits

    Additional statistics for this dataset are available via IRStats2.

    Altmetric

    Repository staff only

    Edit record Edit record