Can Blockchain Protect Internet-of-Things?

In the Internet-of-Things, the number of connected devices is expected to be extremely huge, i.e., more than a couple of ten billion. It is however well-known that the security for the Internet-of-Things is still open problem. In particular, it is difficult to certify the identification of connected devices and to prevent the illegal spoofing. It is because the conventional security technologies have advanced for mainly protecting logical network and not for physical network like the Internet-of-Things. In order to protect the Internet-of-Things with advanced security technologies, we propose a new concept (datachain layer) which is a well-designed combination of physical chip identification and blockchain. With a proposed solution of the physical chip identification, the physical addresses of connected devices are uniquely connected to the logical addresses to be protected by blockchain.

💡 Research Summary

The paper addresses the growing security challenge posed by the massive proliferation of Internet‑of‑Things (IoT) devices, arguing that current network security mechanisms protect only the logical layer (e.g., TCP/IP, HTTPS, OAuth) while leaving the physical addressing layer (MAC, Ethernet) largely unprotected. Because physical addresses can be spoofed or duplicated, an attacker can impersonate a device even if the logical communication is cryptographically secured. To bridge this gap, the authors propose a new “Physical‑Logical Link” layer that tightly couples a device’s immutable physical identifier with its blockchain‑based logical address.

The core of the proposal consists of two components. First, a Physical‑Chip‑ID is generated from the intrinsic, unclonable characteristics of a semiconductor chip (similar to a Physical Unclonable Function, PUF). The authors claim that the generated binary code remains unchanged after exposure to 125 °C for 168 hours, suggesting high robustness against environmental stress. Second, this chip‑ID is used as the seed for a public‑key pair; the public key becomes the device’s logical address on a blockchain network. By registering the public key on the blockchain, the device’s physical identity is permanently linked to an immutable ledger entry.

The paper briefly reviews blockchain fundamentals—transaction units, Merkle trees, block hashing, and proof‑of‑work nonce tuning—to illustrate how the length of the chain increases tamper resistance. It then points out that conventional blockchains only protect transactions between logical nodes, not between physical devices, because the physical layer does not participate in the consensus process. The proposed Physical‑Logical Link layer remedies this by requiring every IoT transaction to be signed with the device’s chip‑derived private key and verified against the blockchain‑stored public key. Consequently, any attempt to spoof a physical address would also need to forge the corresponding chip‑ID and private key, which is presumed infeasible.

Implementation-wise, the authors suggest that during semiconductor fabrication the chip‑ID is extracted and securely stored on the device. Upon boot, the device generates its key pair, registers the public key on the blockchain, and thereafter uses the private key for signing all communications. When two devices exchange data, each verifies the other’s signature and checks that the associated public key matches the entry in the blockchain, thereby ensuring that the physical device is the legitimate owner of the logical address.

While the concept is appealing, the paper leaves many practical issues unaddressed. The scalability of a global blockchain handling billions of IoT transactions is not evaluated; the added verification overhead could severely limit throughput. The management of key lifecycle events—device replacement, revocation, or compromise—is not discussed, raising concerns about long‑term operability. The cost and feasibility of embedding a reliable PUF‑like chip‑ID in every low‑cost IoT sensor are unclear, especially given the lack of a detailed extraction and enrollment protocol. Moreover, the authors do not compare their approach with existing hardware‑root‑of‑trust solutions such as IEEE 802.1AR device identifiers, TPMs, or secure elements, which already provide hardware‑bound keys and attestations.

In summary, the paper proposes a novel integration of immutable physical chip identifiers with blockchain‑based logical addressing to protect IoT devices against spoofing and data tampering. The idea of extending blockchain’s immutability to the physical layer is conceptually innovative, but the manuscript lacks rigorous security analysis, performance benchmarks, and a clear roadmap for standardization and deployment. Further research is needed to validate the robustness of the chip‑ID under real‑world conditions, to design lightweight consensus mechanisms suitable for massive IoT networks, and to develop comprehensive key‑management policies before the approach can be considered viable for large‑scale adoption.