Using IoT (Internet of Thing) is an international trendy, but the security of IoT devices is weaker than traditional computers due to no antivirus installed. Therefore, the only effective and efficient method is to update the firmware. How to ensure the security of firmware files is often ignored. Unfortunately, it has been reported that update servers of an antivirus company can be broken by hackers, and those hackers can take advantage of the compromised servers to distribute their malware. In the first year, we adopt the immutable feature of “blockchain” to store firmware files. In terms of security, we devise a novel method to ensure the malware-proof firmware. Otherwise, the Blockchain is just to store a tamper-proof malware. Therefore, we take a smart contract to integrate the well-known website, Virustotal, for scanning the malware by multiple antivirus engines. As long as the uploading firmware passes the scanning of Virustotal, the hash value of the firmware is stored in blockchain and the file is stored into a P2P file sharing protocol such as IPFS, swarm. As for efficiency, this project also concerns the problem of burst of transactions. While thousands of millions transactions arrive in a period, our platform come up with a batch verification formula to verify thousands of transactions in the same time. In second year, this project considers file revocation issue. Since the features of Blockchain and P2P file sharing protocol are immutable and self-downloading, the complete file revocation is no asy to achieve. As a result, we focus on consortium Blockchain to design a file revocation list (FRL) on smart contracts, and a blockchain module is embedded IPFS node to access the FRL to realize which file should be deleted. In the end, each IPFS node will generate the file authentication code (FAC) from its own file directory. If any IPFS node has been found insecure, the IPFS node will be ruled out. To ensure each IPFS can correctly execute the defined procedure, the Intel SGX, hardware security module, is adopted on the IPFS node to avoid the tamper of operations. In the third year, we consider the secure Blockchain oracle service to improve the automation of data import issue. In that way, every industries can automatically bring in the existing firmware without human intervene. Moreover, we also take Intel SGX to build Blockchain oracle service in order to provide TLS notary proof. The result of Virustotal can also use this oracle service for better security. In that way, we can ensure that all external data can be verified before entering into our platform for better correctness, security, and integrity.
|Effective start/end date||1/02/21 → 31/07/22|
UN Sustainable Development Goals
In 2015, UN member states agreed to 17 global Sustainable Development Goals (SDGs) to end poverty, protect the planet and ensure prosperity for all. This project contributes towards the following SDG(s):
- P2P file sharing protocol
- Blockcahin oracle service
Explore the research topics touched on by this project. These labels are generated based on the underlying awards/grants. Together they form a unique fingerprint.