O. Hammoud1, I.A. Tarkhanov2

1 National University of Science and Technology “MISiS” (Moscow, Russia)
2 Federal Research Center “Computer Science and Control” of the RAS (Moscow, Russia)
2 State Academic University for Humanities (Moscow, Russia)
1 obadah.hammoud@gmail.com, 2 tarkhanov@isa.ru

Access control systems allow organizations to control user access to their resources with high reliability and availability. Blockchain technology can help in this case. However, when it comes to storing access control data, especially the matrix that defines user rights to files (DAC model) may be too large to be handled by blockchain as is. Thus, a decentralized access control model that results in a small amount of data storage on the blockchain can be beneficial in terms of the reliability of blockchain networks while allowing it to scale by adding large numbers of users and files. We present access control DAC model which uses a Merkle tree to store data, minimizes the storage size on the blockchain. This solution can be used with a variety of file storage systems, regardless of the used file storage technology. The proposed approach suggests additionally caching some requests to increase scaling. The proposed model was tested on 500 objects in a distributed environment.

Hammoud О., Tarkhanov I.A. A blockchain-based DAC distributed access control model. Highly Available Systems. 2024. V. 20. № 1.
P. 46−54. DOI: https://doi.org/10.18127/j20729472-202401-05 (in Russian)

1. Johnston D. The General Theory of Decentralized Applications, Dapps [Elektronnyj resurs]. URL: https://github.com/DavidJohnstonCEO/
   DecentralizedApplications (data obrashcheniya: 15.01.2024).
2. Liu B. Overview of the Basic Principles of Blockchain 2021. P. 588–593. DOI 10.1109/ICAA53760.2021.00108.
3. Hammoud O., Tarkhanov I. A. Estimating the Reliability of a DApps-Based Files Storage System 2023. P. 82–87. DOI 10.1109/RusAuto Con58002.2023.10272732.
4. Deng X. [et al.]. A Survey of Blockchain Consensus Algorithms Huaihua City. China: IEEE. 2022. P. 188–192. DOI 10.1109/ICBCTIS 55569.2022.00050.
5. Golosova J., Romanovs A. The Advantages and Disadvantages of the Blockchain Technology Vilnius: IEEE. 2018. P. 1–6. DOI 10.1109/ AIEEE.2018.8592253.
6. Maesa D., Mori P., Ricci L. Blockchain Based Access Control. 2017. P. 206. DOI 10.1007/978-3-319-59665-5_15.
7. Mudarri T., Abdo S., Al-Rabeei S. SECURITY FUNDAMENTALS: ACCESS CONTROL MODELS. Interdisciplinarity in theory and practice. 2015.
8. Tarkhanov I. Extension of access control policy in secure role-based workflow model Baku: IEEE. 2016. P. 1–4. DOI 10.1109/ ICAICT.2016.7991691.
9. Reijers W. [et al.]. Nowthe Code Runs Itself: On-Chain and Off-Chain Governance of Blockchain Technologies. Topoi. 2021. V. 40. № 4. P. 821–831. DOI 10.1007/s11245-018-9626-5.
10. Qazi F. A. Study of Zero Trust Architecture for Applications and Network Security 2022. P. 111–116. DOI 10.1109/HONET56683. 2022.10019186.
11. Liu H. [et al.]. Merkle Tree: A Fundamental Component of Blockchains Changchun. China: IEEE, 2021. S. 556–561. DOI 10.1109/ EIECS53707.2021.9588047.
12. Loporchio M. [et al.]. A survey of set accumulators for blockchain systems. Computer Science Review. 2023. V. 49. P. 100570. DOI 10.1016/j.cosrev.2023.100570.
13. DistributedFileSystem Access Control. GitHub [Elektronnyj resurs]. URL: https://github.com/Obadah-H/DistributedFileSystem/tree/ main/access_control (data obrashcheniya: 26.01.2024).
14. Hammoud O., Tarkhanov I. A. A Novel Blockchain-Integrated Distributed Data Storage Model with Built-in Load Balancing 2022. P. 1–6. DOI 10.1109/AICT55583.2022.10013548.