Journal of Cyber Security and Risk Auditing

ISSN: 3079-5354 (Online)

A Novel Permissioned Blockchain Approach for Scalable and Privacy-Preserving IoT Authentication

by 

Santosh Reddy Addula ;

Aitizaz Ali

PDF logoPDF

Published: 2025

Abstract

Most existing research on decentralized IoT applications tends to address specific vulnerabilities, with relatively few techniques dedicated to managing privacy and trust issues. To mitigate these challenges, blockchain-based solutions are increasingly adopted to enhance the reliability and security of IoT networks. In particular, blockchain-based authentication frameworks offer a decentralized approach to storing and verifying device identities, enabling secure and trustless communication among devices and with external systems. However, current blockchain-based IoT systems often suffer from complexity and storage overhead. To address these limitations, we propose a novel solution tailored for large-scale IoT environments using a permissioned blockchain. Our approach incorporates optimized data storage and a lightweight authentication mechanism, offering improved scalability and reduced storage demands. Furthermore, we introduce, for the first time, the integration of homomorphic encryption to secure IoT data at the user end before uploading it to the cloud. The proposed framework is evaluated through comprehensive simulations and compared with existing benchmark models. This research contributes a trust-aware security model that significantly enhances both the privacy and security of IoT services.

Keywords

Internet of Things (IoT)AuthenticationBlockchainSecurity of IoT networksHomomorphic Encryption Privacy

A Novel Permissioned Blockchain Approach for Scalable and Privacy-Preserving IoT Authentication is licensed under CC BY 4.0CCBY

References

  1. Kim, S., Del Castillo, R. P., Caballero, I., Lee, J., Lee, C., Lee, D., ... & Mate, A. (2019). Extending data quality management for smart connected product operations. IEEE Access, 7, 144663-144678.
  2. Sameera, K. M., Nicolazzo, S., Arazzi, M., Nocera, A., KA, R. R., Vinod, P., & Conti, M. (2024). Privacy-preserving in Blockchain-based Federated Learning systems. Computer Communications.
  3. Padma, A., & Ramaiah, M. (2024). Blockchain based an efficient and secure privacy preserved framework for smart cities. IEEE Access, 12, 21985-22002.
  4. Liu, W. J., Chiu, W. Y., & Hua, W. (2024). Blockchain-enabled renewable energy certificate trading: A secure and privacy-preserving approach. Energy, 290, 130110.
  5. Kasyap, H., & Tripathy, S. (2024). Privacy-preserving and byzantine-robust federated learning framework using permissioned blockchain. Expert Systems with Applications, 238, 122210.
  6. Wu, X., Liu, Y., Tian, J., & Li, Y. (2024). Privacy-preserving trust management method based on blockchain for cross-domain industrial IoT. Knowledge-Based Systems, 283, 111166.
  7. Reddi, S., Rao, P. M., Saraswathi, P., Jangirala, S., Das, A. K., Jamal, S. S., & Park, Y. (2024). Privacy-preserving electronic medical record sharing for IoT-enabled healthcare system using fully homomorphic encryption, IOTA, and masked authenticated messaging. IEEE Transactions on Industrial Informatics.
  8. Mahato, G. K., Banerjee, A., Chakraborty, S. K., & Gao, X. Z. (2024). Privacy preserving verifiable federated learning scheme using blockchain and homomorphic encryption. Applied Soft Computing, 167, 112405.
  9. Bounceur, A., Berkani, A. S., Moumen, H., & Benharzallah, S. (2025). The Transparency Challenge in Blockchain-Enabled Sustainable Development Goals Applications: Exploring Privacy-Preserving Techniques and Emerging Platforms. IEEE Access.
  10. Dib, O. (2025). A Decentralized Privacy-Preserving Framework for Diabetic Retinopathy Detection Using Federated Learning and Blockchain. Results in Engineering, 105456.
  11. Tawfik, A. M., Al-Ahwal, A., Eldien, A. S., & Zayed, H. H. (2025). ACHealthChain blockchain framework for access control and privacy preservation in healthcare. Scientific Reports, 15(1), 1-25.
  12. Sutradhar, S., Karforma, S., Bose, R., Roy, S., Djebali, S., & Bhattacharyya, D. (2024). Enhancing identity and access management using hyperledger fabric and oauth 2.0: A block-chain-based approach for security and scalability for healthcare industry. Internet of Things and Cyber-Physical Systems, 4, 49-67.
  13. Rai, H. M., Shukla, K. K., Tightiz, L., & Padmanaban, S. (2024). Enhancing data security and privacy in energy applications: Integrating IoT and blockchain technologies. Heliyon, 10(19).
  14. Kumari, D., Parmar, A. S., Goyal, H. S., Mishra, K., & Panda, S. (2024). HealthRec-Chain: Patient-centric blockchain enabled IPFS for privacy preserving scalable health data. Computer Networks, 241, 110223.
  15. Ren, Z., Yan, E., Chen, T., & Yu, Y. (2024). Blockchain-based CP-ABE data sharing and privacy-preserving scheme using distributed KMS and zero-knowledge proof. Journal of King Saud University-Computer and Information Sciences, 36(3), 101969.
  16. Kashif, M., & Kalkan, K. (2024). EPIoT: Enhanced privacy preservation based blockchain mechanism for internet-of-things. Computer Networks, 238, 110107.
  17. Salim, M. M., Yang, L. T., & Park, J. H. (2024). Privacy-preserving and scalable federated blockchain scheme for healthcare 4.0. Computer Networks, 247, 110472.
  18. Guo, X., Lu, X., Jiang, Y., Fang, J., & Zhang, D. (2024). DBCPCA: Double-layer blockchain-assisted conditional privacy-preserving cross-domain authentication for VANETs. Ad Hoc Networks, 163, 103600.
  19. Tekchandani, P., Bisht, A., Das, A. K., Kumar, N., Karuppiah, M., Vijayakumar, P., & Park, Y. (2024). Blockchain-Enabled Secure Collaborative Model Learning using Differential Privacy for IoT-Based Big Data Analytics. IEEE Transactions on Big Data.
  20. Alahmari, S., Alshardan, A., Al-Wesabi, F. N., Sorour, S., Alghushairy, O., Alsini, R., ... & Al Duhayyim, M. (2025). A decentralized and privacy-preserving framework for electronic health records using blockchain. Alexandria Engineering Journal, 126, 196-203.
  21. Maheshwari, V., & Prasanna, M. (2025). Privacy-preserving authentication for 5G healthcare with HBZKP: Hierarchical blockchain-based zero knowledge proof for secure edge devices. Ain Shams Engineering Journal, 16(8), 103463.