<p>Traditional identity management systems in mobile network operator (MNO) environments face critical vulnerabilities to data breaches, fraud, and regulatory <b>non-compliance</b> due to their centralized architectures. To address these limitations, this paper introduces a decentralized and privacy-preserving blockchain-based framework that strengthens USIM card security and fraud resistance within mobile network ecosystems. We leverage the capabilities of Hyperledger Fabric as a permissioned blockchain platform integrated with the InterPlanetary File System (IPFS) for secure off-chain storage of encrypted Personally Identifiable Information (PII). This integration ensures data integrity, immutability, and traceability while preventing unauthorized access. Our architecture implements a dual-endorsement policy requiring validation from both MNOs and telecommunications Regulatory Authorities (RA) through smart contracts, ensuring transparent regulatory compliance while protecting user privacy. During subscriber onboarding, Know Your Customer (KYC) processes verify identity data, which is then hashed using SHA-256 and securely referenced on-chain. This guarantees that no sensitive data is exposed on the blockchain while preserving verifiability and accountability. Additionally, our framework enables real-time USIM deactivation through authenticated smart contract interactions. Such automated contract execution enhances responsiveness to security incidents and minimizes manual intervention. Performance evaluation using Hyperledger Caliper demonstrates the system’s robust scalability, achieving a throughput of up to 273.9 TPS with acceptable latency under high transaction loads. These empirical findings confirm the proposed model’s capacity to maintain high performance and reliability even in large-scale telecom environments. The experimental results validate our approach’s effectiveness in addressing key challenges in mobile identity management: establishing trust, ensuring regulatory compliance, providing auditability, and enhancing user control while maintaining system performance under varying workloads.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A Blockchain-Based Framework for Decentralized USIM Identity Management and Regulatory Compliance in Mobile Networks

  • Sadok Lanani,
  • Laid Kahloul,
  • Okba Kazar

摘要

Traditional identity management systems in mobile network operator (MNO) environments face critical vulnerabilities to data breaches, fraud, and regulatory non-compliance due to their centralized architectures. To address these limitations, this paper introduces a decentralized and privacy-preserving blockchain-based framework that strengthens USIM card security and fraud resistance within mobile network ecosystems. We leverage the capabilities of Hyperledger Fabric as a permissioned blockchain platform integrated with the InterPlanetary File System (IPFS) for secure off-chain storage of encrypted Personally Identifiable Information (PII). This integration ensures data integrity, immutability, and traceability while preventing unauthorized access. Our architecture implements a dual-endorsement policy requiring validation from both MNOs and telecommunications Regulatory Authorities (RA) through smart contracts, ensuring transparent regulatory compliance while protecting user privacy. During subscriber onboarding, Know Your Customer (KYC) processes verify identity data, which is then hashed using SHA-256 and securely referenced on-chain. This guarantees that no sensitive data is exposed on the blockchain while preserving verifiability and accountability. Additionally, our framework enables real-time USIM deactivation through authenticated smart contract interactions. Such automated contract execution enhances responsiveness to security incidents and minimizes manual intervention. Performance evaluation using Hyperledger Caliper demonstrates the system’s robust scalability, achieving a throughput of up to 273.9 TPS with acceptable latency under high transaction loads. These empirical findings confirm the proposed model’s capacity to maintain high performance and reliability even in large-scale telecom environments. The experimental results validate our approach’s effectiveness in addressing key challenges in mobile identity management: establishing trust, ensuring regulatory compliance, providing auditability, and enhancing user control while maintaining system performance under varying workloads.