Abstract
To solve the problems of large-scale data storage and reliable access control in blockchain-based collaborative business process executions with multiple participants and internet of things (IoT) devices, an innovative framework is proposed. It introduces inter-planetary file system (i.e., IPFS) to achieve off-chain storage to alleviate the cost of data storage on the chain. Meanwhile, it combines task-attribute-based access control models with smart contract technology (i.e., TABAC-SC) to support traceable, fine-grained, and dynamic data access control. A real case from hearing aid company verifies the feasibility and effectiveness of the framework in data sharing and access control during the execution of collaborative business processes.
Similar content being viewed by others
Data availability
The datasets generated and analyzed during the current study are available from the corresponding author on reasonable request.
References
López-Pintado O, García-Bañuelos L, Dumas M, Weber I, Ponomarev A (2019) Caterpillar: a business process execution engine on the Ethereum blockchain. Softw Pract Exp 49(7):1162–1193
Tran AB, Lu Q, Weber I (2018) Lorikeet: a model-driven engineering tool for blockchain-based business process execution and asset management. In: BPM (dissertation/demos/industry), pp 56–60
Corradini F, Marcelletti A, Morichetta A, Polini A, Re B, Tiezzi F (2020) Engineering trustable choreography-based systems using blockchain. In: Proceedings of the 35th annual ACM symposium on applied computing, pp 1470–1479
Benet J (2014) Ipfs-content addressed, versioned, p2p file system. http://arxiv.org/abs/1407.3561
Mendling J, Weber I, Aalst WVD, Brocke JV, Cabanillas C, Daniel F, Zhu L et al (2018) Blockchains for business process management-challenges and opportunities. ACM Trans Manag Inf Syst (TMIS) 9(1):1–16
Weber I, Xu X, Riveret R, Governatori G, Ponomarev A, Mendling J (2016) Untrusted business process monitoring and execution using blockchain. In: International conference on business process management. Springer, pp 329–347
García-Bañuelos L, Ponomarev A, Dumas M, Weber I (2017) Optimized execution of business processes on blockchain. In: International conference on business process management. Springer, pp 130–146
Sturm C, Scalanczi J, Schönig S, Jablonski S (2019) A blockchain-based and resource-aware process execution engine. Futur Gener Comput Syst 100:19–34
Klinger P, Bodendorf F (2020) Blockchain-based cross-organizational execution framework for dynamic integration of process collaborations. In: Wirtschaftsinformatik (Zentrale Tracks), pp 1802–1817
von Rosing M, White S, Cummins F, de Man H (2015) Business process model and notation-BPMN
López-Pintado O, Dumas M, García-Bañuelos L, Weber, I (2019) Interpreted execution of business process models on blockchain. In: 2019 IEEE 23rd international enterprise distributed object computing conference (EDOC). IEEE, pp 206–215
Ladleif J, Weske M, Weber I (2019) Modeling and enforcing blockchain-based choreographies. In: International conference on business process management. Springer, pp 69–85
Ladleif J, Friedow C, Weske M (2020) An architecture for multi-chain business process choreographies. In: International conference on business information systems. Springer, pp 184–196
Tang XZ, Yu Y, Wu JP, Pan ML (2021) A business process interoperability service framework based on blockchain. Comput Integr Manuf Syst
Maesa D, Mori P, Ricci L (2018) Blockchain based access control services. In: The 2018 IEEE international conference on blockchain (Blockchain-2018). IEEE
Maesa DDF, Mori P, Ricci L (2019) A blockchain based approach for the definition of auditable access control systems. Comput Secur 84:93–119
Cruz JP, Kaji Y, Yanai N (2018) RBAC-SC: role-based access control using smart contract. Ieee Access 6:12240–12251
Steichen M, Fiz B, Norvill R, Shbair W, State R (2018) Blockchain-based, decentralized access control for IPFS. In: 2018 IEEE international conference on internet of things (iThings) and IEEE green computing and communications (GreenCom) and IEEE cyber, physical and social computing (CPSCom) and IEEE smart data (SmartData). IEEE, pp 1499–1506
López-Pintado O, Dumas M, García-Bañuelos L, Weber I (2019) Dynamic role binding in blockchain-based collaborative business processes. In: International conference on advanced information systems engineering. Springer, pp 399–414
Rondanini C, Carminati B, Daidone F, Ferrari E (2020) Blockchain-based controlled information sharing in inter-organizational workflows. In: 2020 IEEE international conference on services computing (SCC). IEEE, pp 378–385
Akhtar A, Shafiq B, Vaidya J, Afzal A, Shamail S, Rana O (2020) Blockchain based auditable access control for distributed business processes. In: 2020 IEEE 40th international conference on distributed computing systems (ICDCS). IEEE, pp 12–22
Lee WM (2019) Using the web3. js APIs. In: Beginning Ethereum smart contracts programming. Springer, pp 169–198
Liu Y, Xu K, Song J (2013) A task-attribute-based workflow access control model. In: 2013 IEEE International Conference on Green Computing and Communications and IEEE Internet of Things and IEEE Cyber, Physical and Social Computing. IEEE, pp 1330–1334
Acknowledgements
The work is financially supported by Natural Science Foundation of China (No. 61472112), Natural Science Foundation of Zhejiang Province of China (No. LQ20F020017) and Key Science and Technology Project of Zhejiang Province of China (No. 2020C01165).
Author information
Authors and Affiliations
Corresponding author
Ethics declarations
Conflict of interest
The authors declared that they have no conflicts of interest to this work.
Additional information
Publisher's Note
Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.
Rights and permissions
Springer Nature or its licensor (e.g. a society or other partner) holds exclusive rights to this article under a publishing agreement with the author(s) or other rightsholder(s); author self-archiving of the accepted manuscript version of this article is solely governed by the terms of such publishing agreement and applicable law.
About this article
Cite this article
Sun, X., Wei, Y. & Shen, H. Blockchain-based collaborative business process data sharing and access control. J Reliable Intell Environ 10, 3–17 (2024). https://doi.org/10.1007/s40860-023-00212-w
Received:
Accepted:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s40860-023-00212-w