2.1 Internet of Things

The IoT is the network of connected objects that are discoverable using standard communication protocols. IoT encompasses everything having connectivity and ability to communicate. The ‘things’ can be anything from sensors to electronic devices, to appliances and to vehicles. The concept of IoT is motivated by the idea that objects of our world will talk to each other and hence, form a network of devices where each object might have the communication ability as well as some ‘sensing’ and ‘actuating’ capabilities.

The IoT technology can be one of three types: internet-oriented that acts as a middleware, things-oriented that provides sensing ability and semantic-oriented that enables accessing knowledge. The suitability of a specific type depends on the working principles of a particular application. A combination of multiple types or just a standalone IoT can be used to build such smart applications aiming at solving critical problems in our daily life (Atzori et al.,Reference Atzori, Iera and Morabito2010).

2.2 Blockchain technology

Evolving from the Bitcoin BC, a new breed of BC platforms has emerged which facilitates the deployment and execution of computer programmes, known as smart contracts, on top of the respective BC. Such smart contracts enable the creation of so-called decentralized applications (DApps), which are autonomous programmes operating without relying on any human intervention. Being part of the BC, smart contracts and their executions become immutable and irreversible, a sought-after property having a wide-range of applications in different domains.

BC platforms generally demonstrate some common characteristics. Among, the distributed consensus is arguably one of the key features that play a huge role in the maintenance and security of its data. Immutability and irreversibility of the BC state are two other essential traits that almost all BC exhibit. Furthermore, cryptographic mechanisms guarantee data provenance of transactions that, in turn, helps BC to ensure the accountability and transparency of its data and actions. Equipped with these characteristics, BC platforms offer significant advantages over traditional systems for many application domains. Among them, in this paper, we only explore IoT-focused applications. Depending on the application domains, different BC deployment strategies can be pursued (Chowdhury, Reference Chowdhury2019).

2.3 Future of blockchain-based IoT

During the last decade, the IoT has significantly increased its reach and a large number of devices are interconnected through the Internet, enabling them to send and receive data. It has been predicted that by 2019, 20% of all IoT deployments will be BC-enabled according to the IDC report (MacGillivray et al.,Reference MacGillivray, Turner, Lamy, Prouty, Segal, Siviero, Torchia, Vesset, Westervelt and Yesner2016).

Today, over 5 billion IoT devices all around the world produce massive amount of geographic and demographic data and exchange them on the Internet. These data have the risk of being exploited and misused in the absence of appropriate security measures leading to compromising the confidentiality, integrity and authenticity of the contents. BC-based decentralization can play a pivotal role in this regard (Chowdhury et al.,Reference Chowdhury, Ramachandran, Third, Mikroyannidis, Bachler and Domingue2020). Storing data on BC platforms are inherently decentralized ruling out the potential influence of centralized entities responsible for managing the conventional infrastructure such as the host of a data warehouse. The immutability trait of those platforms also removes the chances of data alteration. Data confidentiality can also be achieved by putting data on a decentralized distributed storage such as InterPlanetary File System or solid with complete users’ control and a hash of each data on the BC to verify the integrity (Ramachandran et al.,Reference Chowdhury, Ramachandran, Third, Mikroyannidis, Bachler and Domingue2020).

Furthermore, vulnerable connected devices such as surveillance cameras can be of interests to attackers wishing to facilitate malicious activities. As such, each device in an IoT network can be a potential point of failure and can be exploited to launch various cyberattacks, including botnets and distributed denial of service attacks (Panarello et al.,Reference Panarello, Tapas, Merlino, Longo and Puliafito2018). The use of BC in managing access to data from IoT devices can potentially supplement an additional layer of security to the networks leading to overcoming the single-point-of-failure problem.

Nevertheless, due to the lack of sufficient computing and communication power, it has been a challenge for IoT devices to participate in the BC network directly. Besides, BC platforms are secured by their cryptographic mechanisms. Any human error in coupling these two emerging technologies would lead to further security vulnerabilities instead of solving the existing ones.

Despite some technological hurdles and implementation factors as stated above, the consensus among the scholarly community is the convergence of BC and IoT has opened doors of opportunities for many applications operating with areas such as supply chains, logistics, smart cities and manufacturing industries. The inherent properties of BC and the self-execution capabilities of the smart contract have fostered the potential large-scale adoption of this technology to IoT applications where the interconnected devices can interact with each other and make decisions without any human intervention.

3.1 Smart industry

According to the World Economic Forum, the fourth industrial revolution (Industry 4.0) will be driven by three disruptive technologies: BC, artificial intelligence (AI) and IoT. Among these, BC will play the mediating role by proving a new way for securing trust, transferring value and storing data. In particular, it would represent a technology capability platform to support industry applications, for example, supply chain and trade across manufacturing, food, pharmaceuticals, automobile and creative industries (Sniderman et al.,Reference Sniderman, Mahto and Cotteler2016). This section describes some use-cases, characteristics, functional and non-functional requirements of a smart industry.

Food safety. Food safety has become a key concern now-a-days as it leads to a number of issues such as spread of food-borne illness, unnecessary waste and economic burden of recalls. According to the 2016 Label Insight Food Revolution Study, ‘it is important to 94% of consumers that the brands and manufacturers they purchase products from are transparent about what is in their food and how it is made’ (Insight, Reference Insight2016). To quickly identify food safety issues, improve product recalls and ensure end-to-end visibility, 10 of the world’s biggest companies including Walmart Inc., Nestle SA and Unilever NV are developing a BC-based solution called food trust BC.

Drug safety. In this era of globalization, poor quality drugs pose a serious risk to public health worldwide. The report of World Health Organization (WHO) shows that at least 72 000 children die of pneumonia and 69 000 people die of malaria each year as a result of falsified or substandard medicines (World Health Organisation, 2017). BC and IoTs can play a vital role in increasing drug safety by ensuring traceability and security in pharmaceutical industries. In particular, manufacturing, distribution and dispensing of perishable goods such as vaccines and chemicals can be monitored and traced through BC to detect potential fraud and failures. Mediledger (2019), LifeCrypter (Schöner et al.,Reference Schöner, Kourouklis, Sandner, Gonzalez and Förster2017) and Vacci-chain (Biswas et al.,Reference Biswas, Muthukkumarasamy and Tan2017) are some examples of BC projects that aim to leverage the power of BC and IoTs to combat fake medicines.

3.2 Requirement analysis: smart industry

Industries have become automated and more complex in the recent years due to the growth of digital economy and technological evolution. Companies are trying to capture and store everything without properly analyzing the functional requirements, data utility and effective information management schemes. First, we identify the main characteristics of a complex industrial system that would help to determine both functional and non-functional requirements. The smart industry should possess the following capabilities:

• • Ever-ready—It should be always operational so that sensors and other location-based tools can continuously sense and transmit data to provide integrated views of multiple facets of the network with minimal to no latency.

• • Shared platform—All the stakeholders, suppliers, manufacturers, distributors, partners and customers, would be able to exchange and share information without any difficulties.

• • Cross-functional capability—A smart industry should have transformative capabilities and thus would be able to combine and link cross-functional data (e.g. production, inventory and shipment) from various sources.

• • End-to-end transparency—It should be capable of unifying information and processes to enable end-to-end transparency and more efficient collaboration.

• • Intelligent decision making—In a smart industry, machines and human should be able to work together and share information that would help in intelligent decision making.

3.3 Smart health

BC technology has the potential to transform traditional healthcare by placing the patient at the centre of the healthcare ecosystem and increasing the security, privacy and interoperability of health records. This technology could provide a new model for health information exchanges by making electronic medical records more efficient, disintermediated and secure. Xia et al. (Reference Xia, Sifah, Asamoah, Gao, Du and Guizani2017) have designed a system for sharing medical data among medical big data custodians in a trustless environment. The system provides data provenance, auditing and control for shared medical data in cloud repositories among big data entities. Similarly, Nugent et al. (Reference Nugent, Upton and Cimpoesu2016) have used BC to improve the transparency in clinical trials. Apart from these, BC-based system shows promising solutions for interoperability (Brodersen et al.,Reference Brodersen, Kalis, Leong, Mitchell, Pupo, Truscott, Accenture and Accenture2016; Peterson et al.,Reference Peterson, Deeduvanu, Kanjamala and Boles2016; Zhang et al.,Reference Zhang, White, Schmidt and Lenz2017), which is a major challenge for current healthcare systems. Other than sharing and interoperability, it can also be applied to specific healthcare-related applications (Angraal et al.,Reference Angraal, Krumholz and Schulz2017; Kuo et al.,Reference Kuo, Kim and Ohno-Machado2017; Dubovitskaya et al.,Reference Dubovitskaya, Xu, Ryu, Schumacher and Wang2017).

Data sharing platform. At present, the stakeholders of healthcare systems are working as isolated entities in silos rather than as a part of an integrated system. With an integrated system, information would be available for use by legitimate third parties, hospitals, clinics, researchers, practitioners and patients as necessary. In addition to traditional information systems, IoT devices are also gaining popularity in health sectors. Therefore, integrating different IoT devices and exchanging data among them has become a big challenge. BC could be a perfect match to provide interoperability support for such high-level of heterogeneous data sources.

Claims management. Medical claims management involves billing, filing, updating and processing of medical claims related to patient diagnosis, treatments and medications. Since maintaining patient records, interacting with health insurers and issuing invoices for medical services are time consuming, many hospitals and clinics outsource those tasks to medical claims management firms. Without effective medical claims management, patients would not know what they owe and medical facilities would not receive the funds due for patient services.

Open research data. Another IoT-supported BC use-case is collecting open research data for clinical trials. The main objective of this is to improve the clinical trials. The BC initiative will help clinical personals to collaborate worldwide and do population health research.

3.4 Requirement analysis: smart health

In this section, we discuss different types of functional and non-functional requirements that are important to realize the use-cases stated above. However, it is often useful to identify the key characteristics of these applications in order to formulate different requirements. Next, we present some of those characteristics for smart health use-cases.

• • Data sharing capability—Smart health systems must enable a common platform where the stakeholders can easily exchange data among themselves. This is very crucial for emergency situations where doctors need to access patients past records immediately.

• • Real-time monitoring and control—Data from wearable devices are used to monitor the health condition of the patients. Therefore, availability of real-time data is very important in a smart health system. In addition, patients would have full control of their data.

• • Multi-facet data sources—There has been a proliferation in the number of wearable and portable devices for monitoring personal health and wellness. Different companies develop their custom-made devices and use their own data formats. The smart health system must be capable of operating in a heterogenous network.

• • Payment system—Both healthcare providers and patients are benefited from efficient payment processes. A BC-based payment system can significantly improve the payment systems in healthcare by eliminating the intermediary.

• • Identity management—Medical data are private and sensitive. It is very important to ensure that only the legitimate entities can access the data. To achieve that we should have a proper identity management system. In addition to human being, IoT devices should also be under the identity management system to track which device is generating which data.

3.5 Smart city

The concept of a smart city has numerous definitions depending on the context and meaning of the word smart. Sometimes it refers to being intelligent while occasionally it indicates the ability to generate and exchange real-time data. In general, a smart city incorporates people, IoT devices, technology and data to provide better services and living experiences for its citizens (Cocchia, Reference Cocchia2014). Real-time data from these devices and immutable historical data on BC are jointly going to open up vast opportunities for the researchers who would get an extra edge to look at the smart city use-cases from a new perspective called data-to-decision which ties up sensor data with AI in making real-time decisions (Miller & Mork, Reference Miller and Mork2013). In the following, we discuss how an IoT-integrated BC platform can play a vital role in different smart city use-cases:

Transportation. Managing the transportation system has been a great challenge for any modern city. A BC-based and IoT-integrated transport system management could play a pivotal role in addressing this challenge. Such a system would enable continuous sensing of passengers and vehicles to facilitate many applications and services in various areas such as designing timetables for metro trains and public buses, anticipating commuters demand in different parts of the city, assigning drivers shifts, sharing rides and even managing autobiography of smart vehicles (Ferdous et al.,Reference Ferdous, Chowdhury, Biswas, Chowdhury and Muthukkumarasamy2020).

Utility services. Power and water management has been one of the most important elements of a smart city. This includes smart grid, smart water supply and their administration at both stakeholder and consumer end. The growing awareness in favour of using renewable energy at households and usage of the zero-emission electric vehicle for commuting introduce potentials for BC and IoT to play a crucial role together.

Citizen engagement. A smart city helps to improve citizens’ lifestyle by engaging them in activities and recreations. Public parks, libraries, museums, sports, cinemas, shopping centre, etc. are various forms of citizen engagement commonly found in modern cities. The real-time data could be collected using IoT-enabled sensors installed at these public spaces while BC would provide the backbone of historical information that aids machine learning or similar methods to make recommendations.

3.6 Requirement analysis: smart city

This section discusses different types of functional and non-functional requirements that are essential to apprehend the smart city use-cases. The attempt, however, first identifies the system characteristics of the use-cases that, in turn, creates the ground for recognizing the requirements.

• • Tracking—The smart city applications depends on the tracking of human and non-human elements of the urban areas. This tracking characteristic may involve technological hurdles and legal red tapes that must be taken into account before developing any application.

• • Connectivity—IoT applications typically require a seamless connection to exchange data. While operating in a smart city context, these applications often become intolerant to delay, and their performance profoundly depends on the connectivity of the devices.

• • Privacy—Tracking of both human and non-human elements involves privacy issue. While tracking human, whether or not tracking their faces is a matter of debate. It is also a challenge as to how to identify individuals to provide them with tailored services. Tracking of non-human elements, such as scanning a car registration plate, can also cause serious privacy concern.

• • Reliability—This is an essential characteristic as most smart city applications are used in automation. Without a high degree of reliability, running such applications in the city is not safe and even may cause harm to the people if malfunctioned to a great extent.

3.7 Smart home

The revolution in the world of IoT and device-to-device communication has made smart homes or home automation one of the most lucrative IoT applications in recent years. With the introduction of different types of hardware, scalable infrastructure and mobile applications, the use of home automation has rapidly increased worldwide and this will continue to grow in future. Fundamentally, a smart home is a network of devices with built-in connectivity that can communicate with each other through the use of communication protocols. It provides home owners the ability to remotely monitor and manage every single electronic device at home via a centralized interface. However, the chaotic growth of IoT devices has also introduced a number of challenges such as interoperability, scalability, security and privacy. BC could play a vital role in improving data security, privacy, trust and traceability in a smart home. In this section, we present several use-cases to illustrate the usefulness of a smart home.

Smart appliances. Smart appliances are IoT-enabled appliances used in our daily life such as fridge, thermostat, air conditioner and security alarms. Recent research has revealed that the global market of smart home tools and services will be around $\text{US}\$\ 98$ billion by the end of 2025 (TMR, 2019). It is also anticipated that every single piece of home appliance will be integrated with IoT capabilities in future. These capabilities will be leveraged to create novel applications in order to provide a greater level of control and comfort for everyone in the home. These will facilitate smart home residents to monitor and control any home appliances from anywhere in the world.

Well-being and convenience. The ultimate goals of all the features described above are to ascertain the well-being and convenience of the residents of a smart home. Equipped with the required smart devices, a smart home should be able to monitor the well-being and overall health of its residents. This is particularly crucial for a smart home in which there is at least one old resident. If any health monitoring equipment senses any danger for any resident, it should raise alarms to the emergency health services.

3.8 Requirement analysis: smart home

Home automation is receiving a lot of attention these days, and the big companies like Samsung, Google, Amazon and Apple are all racing to capture this billion dollar smart home gadgets market. To leverage the maximum benefits of smart homes, we need to understand their basic characteristics. First, we describe the key characteristics of a smart home that would help us to formulate the functional and non-functional requirements.

• • Unified control—Most of the smart home systems unify all smart devices in a home under the control of one interface. This unified control enables the end users to manage and monitor their home devices or home environments using a simple website or mobile application.

• • Intelligent—Smart homes are intelligent in the sense that they are capable of identifying abnormal or unexpected events and triggering alerts to the residents when necessary.

• • Heterogeneity—Usually, smart homes or home automation systems have the ability to tie diverse electronic devices together so that they can work in a cohesive way.

• • Threat protection—A smart home is expected to monitor its residents and environment in an unprecedented manner. Since it will collect a huge amount of personal information, it is imperative that a smart home is built around a carefully thought security and privacy requirements.

4.1 Waltonchain

Waltonchain is a new BC platform for the IoT industry (Waltonchain, 2019). The platform is named thus in order to commemorate and recognize the contribution of Charles Walton, the inventor of RFID (radio frequency identification) technology and to advance his vision for the ubiquitous deployment of the RFID technology in the form of IoT. With this motivation, Waltonchain would like to disrupt the current IoT industries by integrating the transparency, accountability and provenance properties of the BC with RFID-enabled IoT hardware. Indeed, the core platform consists of RFID hardware (both RFID tags and reader), the Waltonchain public BC platform and the software platform that interfaces the hardware with the BC.

Architecture. The Waltonchain platform has a layered architecture consisting of six layers with different layers having different functionalities. The functionalities of each layer are briefly discussed below.

• • Object layer: The object layer consists of the hardware required for the Waltonchain ecosystem. The hardware includes RFID devices, different sensors, different storage, computing and network devices. The Waltonchain ecosystem introduces novel RFID and computing devices to ensure the authenticity and reliability of data in its source.

• • Base layer: The base layer encompasses the network primitives for a BC ecosystem. It consists of the P2P network and different types of nodes providing distributed computing and storage facilities in order to maintain a public BC system.

• • Core layer: The core layer provides the public BC overlay, confusingly also called Waltonchain. It is regarded as the Parent chain in the Waltonchain ecosystem and defines the required BC primitives such as block structure, consensus mechanisms and smart contract facility.

• • Extension layer: The extension layer enables the deployment of business application logic for a particular application consisting of different organizations.

• • Service layer: The service layer is aimed towards exposing several interfaces, probably in the form of APIs (application programming interfaces) and libraries for the application layer.

• • Application layer: The application layer is where the business applications will be developed targeting different use-cases.

Node and network. Waltonchain presumably (as not explicitly specified in their whitepaper) will consist of two types of network: public and private. A public network controls the parent public BC whereas there could be different public/private child chains for maintaining different child chains, each for a specific industry or use-case. The private chain can set their own access control rules which will govern which entity can access such a chain.

Blockchain. As mentioned earlier, the Waltonchain platform supports the simultaneous existence of different types of BCs. The parent BC, the Waltonchain, is a public BC allowing anyone to participate in the consensus mechanism or to assume any role in the BC after certain criteria are fulfilled. This public BC maintains similar properties of other public BC systems such as Bitcoin and Ethereum. A block in Waltonchain can consist of up to 255 transactions where each transaction either transfers a value in the form of Waltonchain cryptocurrency called Waltoncoin or encodes certain commands for creating or interacting with a smart contract or creating a child chain.

Consensus and reward. The Waltonchain platform introduces a hybrid consensus algorithm called WPoC (Waltonchain proof of contribution). WPoC is a combination of three different consensus algorithms: proof of work (PoW), proof of stake (PoS) and proof of labour (PoL) (Waltonchain, 2019). PoW is similar to what is used in Bitcoin where a special type of node, called miner, in the network tries to solve a computationally intensive cryptographic puzzle. The solution is then included in the block of Bitcoin as a proof. All miner nodes within the network compete with one another to solve the puzzle where only one succeeds. The effect of this competition is the huge wastage of electricity and hence, many do not consider PoW a sustainable long-term solution. PoS is a new type of consensus algorithm which has been proposed to replace PoW by offering a solution which arguably provides the same level of security as PoW without consuming any significant electricity (QuantumMechanic, 2011). Unlike PoW, PoS generally relies on a mechanism in which special types of nodes called staking nodes participate in the block creation competition by staking their share of the underlying cryptocurrency. If they do not behave as intended, they lose their share, whereas honest behaviour would be rewarded. It is expected that Ethereum will switch to a hybrid PoW–PoS solution in near future (Proof of Stake FAQ, 2018). PoL, on the other hand, has been described as a brand new consensus algorithm for cross-chain data transmission and token exchange in the whitepaper (Waltonchain, 2019). Waltonchain has specified different types of reward mechanisms for different nodes and different consensus mechanisms (wtcReward, 2018). Table 1 summarizes the properties of Waltonchain.

Table 1 Waltonchain properties

4.2 OriginTrail

OriginTrail is a decentralized, permissionless BC platform that facilitates data sharing in a multi-organizational environment (OriginalTrail, 2018). This platform incorporates BC technology with digital supply chains to provide data integrity. The key idea is to ensure product standards and safety of the consumers by employing a standard BC-based solution through an incentivized protocol. OriginTrail addresses two key disrupting factors in data collection and sharing in supply chains.

Data fragmentation—Different data storage structures across the supply chain lead to data silos and low data interoperability in both single and multi-organizational supply chains.

Data centralization—Most of the existing supply chains rely on a trusted intermediary or central authority that provides information on product authentication and provenance.

Architecture. OriginTrail implements a layered, extensible and modular framework across the entire structure known as Electronic Product Code Information Service (EPCIS) framework. The network and data layers are two system layers that implement an off-chain decentralized peer to peer network known as OriginTrail Decentralized Network (ODN) on top of the blockchain layer. The functionalities of each layer are described below.

• • BC layer—OriginTrail provides data integrity in supply chains by incorporating BC technology as a data sharing platform. All information in the system are stored on immutable ledgers in the form of data fingerprints at the time of arrival.

• • ODN data layer—This layer is mainly responsible to perform all data management and connectivity functionalities among different data sets across the supply chain. To leverage data relationships in an effective way, ODN incorporates a decentralized graph database which provides the most efficient solution for interconnected data in terms of interoperability, performance and availability.

• • ODN network layer—The ODN network layer consists of network nodes that contain part of the decentralized database as well as graph database.

• • Decentralized applications—On top of the network layer, a number of DApps work as an interface between the users and the system to provide data input facilities.

Node and protocol. The nodes in ODN can be classified into two types according to their interaction with the supply chain: (i) data creators (DC) and (ii) data holders (DH). DC nodes are mainly responsible for incorporating supply chain data into the network and replicating it over a particular number of DH nodes, whereas DH nodes must ensure the immutability and storage of the corresponding data. To defend against collusion attack, for each n DC nodes in a supply chain, an additional number of at least n + 1 DH nodes have to be selected to store the replicated data. Since a DC node is a DH node as well, the minimum ODN replication factor is 2n + 1 in this case. OriginTrail implements a data distribution protocol within the ODN.

Consensus and reward. The current version of OriginTrail implements PoW which runs on top of the Ethereum BC. The consensus mechanism works in three steps: (i) to maintain chain of accountability, each stakeholder has to be approved by the previous and the following supply chain stakeholder, (ii) matching would be done to verify dynamic batch information including batch identifiers, timestamps, transactional compliance and sensor data and (iii) data could also be verified by the auditing and compliance organizations by providing their confirmations. Table 2 summarizes the properties of OriginTrail.

Table 2 OriginTrail properties

4.3 Slock.it

Slock.it (2018) is an IoT platform on top of Ethereum BC. Its vision is to establish a truly decentralized sharing economy which will enable a direct interaction between a producer/owner and a consumer of IoT smart objects. The principle of sharing economy is to allow people share their unused or less-used physical or virtual resources, such as rooms or flats, cars, electricity or even time, for financial incentives. The traditional approach requires a lot of human intervention with a big issue of trust and transparency. The existing applications of sharing economy such as Uber and Airbnb are not decentralized. They rely on their monopolistic centralized providers which charge a considerable fee, yet the security, trust and transparency issues are prevalent in such applications. Slock.it (2015) aims to address these issues by providing a platform consisting of IoT smart objects, software and BC.

Architecture. The core architecture of Slock.it consists of IoT smart devices and Slock software platform and smart contract-supported Ethereum BC. In this platform, each IoT object will interact with each other via a smart contract (or a set of smart contracts) deployed in the Ethereum BC. A person can interact with each IoT object using any preferred device such as his mobile phone. The smart contract will provide several functionalities: to set up access control rules for a specific object, to facilitate automated contract execution when a certain condition meets and possibly for financial transactions between respective entities.

Node. One of the core challenges faced by Slock.it is how to seamlessly connect IoT objects to the Ethereum network. Such IoT object understandably will have less powerful processing and storage capabilities. However, to function properly, it is essential that such IoT objects are connected to the Ethereum network in a continuous fashion and are fully synced with the BC. This becomes impractical as the size of the BC starts to grow. To remedy this situation, Slock.it has considered several types of the following nodes (Jentzsch, 2018):

• • Full node: A full node has the full version of the BC and it requires a huge amount of storage. Hence, it is impractical for any IoT device.

• • Pruned full node: A pruned full node is a lighter version of the full node. It only stores a certain amount of recent states (blocks) of the BC, ignoring other previous ones. Even so, it will be impractical for any IoT object.

• • Light node: A light node will need to store around 50 MB of data consisting of only block headers. Even though it requires a considerable less storage, it is also impractical for IoT devices with limited storage capability.

• • Remote node: A remote node relies on a trusted full node and interacts with the full node to validate any transaction or to interact with the BC. Thus, it introduces a trust issue as it will cease to function properly if the remote full node misbehaves.

Considering all these, Slock.it introduces a novel concept called INCUBED ( $\mathit{IN}^3$ ) (Jentzsch, 2018). INCUBED is a trustless incentivized network of remote nodes. For every correct response, each remote node will be rewarded while it will face monetary punishment when it misbehaves.

Consensus and reward. Unlike Waltonchain or OriginTrail, Slock.it does not have its own BC. Instead, it utilizes Ethereum as its underlying BC platform. Hence, it relies on the Ethereum’s current consensus mechanism, rewarding process and other properties. Table 3 summarizes the properties of Slock.it.

Table 3 Slock.it properties

4.4 Moeco

Moeco (2018) is a BC platform envisioned by its creator as the ‘DNS of things’. This platform integrates several network standards and offers connectivity to billions of devices globally through participating gateways. It is particularly built to suit IoT technology in a cost-efficient way.

BC overview. Moeco uses crowdsourcing approach to enable existing networks and private gateway owners in its infrastructure. Anyone having the communication connectivity can become a gateway service provider. For example, someone having a wireless router at home or a smartphone with the internet connectivity can join as a gateway provider and start serving vendors, who are business providers owning sensor devices, to facilitate their sensor devices looking for connectivity. The permissionless decentralized architecture makes Moeco convenient for its users, both gateway owners and vendors. The platform takes care of payment and billing processes and ensures data delivery.

Technical characteristics. The goal of the Moeco BC system is to deliver data packages. As a decentralized system, there is no central authority ensuring the payment against any service provided by the gateway owners; hence, the need for a BC transpired.

This system utilizes two BCs, namely transport BC and invoice BC. The data package transportation and payment validation are both taking place in the Moeco network based on the Exonum BC framework while the payment is arranged using ERC 20 Ethereum Moeco tokens in the Ethereum network. Table 4 enlists the properties of Moeco.

Table 4 Moeco properties

4.5 IOTA

IOTA (2018) is a special type of cryptocurrency and a distributed ledger designed for the IoT. It provides secure communications and payments between IoT devices and a smart contract like service called Qubic. Unlike using the PoW and building blocks, IOTA uses the Tangle, consensus-building data structure made of directed acyclic graph. Its transactions are fast, free of cost and scalable.

BC overview. The communication between two IoT devices in IOTA is called machine-to-machine communication. IOTA uses Tangle to solve the double spending problem alongside solving both the scalability and transaction fee issues faced by most cryptocurrency including Bitcoin. By requiring the sender in a transaction to perform a PoW like approval of two transactions, IOTA turns its users into miners; hence, the acts of making a transaction and verifying transactions are coupled in this platform. There is no dedicated miners rather those making transactions are the actors affecting the system.

Technical characteristics. The Tangle is a consensus-building system where the machine submitting a new transaction must first verify two other transactions on the network, meaning the consensus is reached out of a web of verification. Instead of using a BC, Tangle enables IOTA verifying the transactions and reaching the consensus (Chowdhury et al.,Reference Chowdhury, Ferdous, Biswas, Chowdhury, Kayes, Alazab and Watters2019). It also removes the need for miners and data blocks on the platform. Each network member (machine) willing to execute a transaction must actively participate in the network consensus by approving two past transactions. This way each transaction links to this two transactions it verified, and over time, it will be linked to future transactions that verify it.

Unlike BC platforms driven by the Hashcash-like consensus mechanism that are vulnerable if someone can accumulate 51% of the total computing power on the network, IOTA is less secure and requires only 34% or higher than one-third of the network’s computing power to launch an attack on its platform. Although implementing a 34% attack using Tangle is complicated, as the attacker still has to discover the next verified transactions of the network before leveraging the 34% advantage, in a small network launching such an attack is relatively easy. The IOTA being a new distributed ledger, its network is not still big enough to avoid this attack; hence, it uses a coordinator in its initial implementation to combat this threat and ensure the early Tangles are not compromised. IOTA plans to eliminate the coordinator once the network becomes strong enough in future. Table 5 summarizes the properties of IOTA.

Table 5 IOTA properties

4.6 IBM Watson

IBM Watson IoT Platform Blockchain Service is an add-on to IBM Watson IoT Platform (Waltonchain, 2019). The service allows IoT devices to send data and respond to business events through a private BC ledger shared by different business network. It is an integrated service of IBM Watson platform and its Hyperledger BC project. It can capture data in real-time process by using IoT devices. It also provides data analytics and visualization services.

The Hyperledger project is a collaborative effort between IBM and Linux Foundation to create an enterprise-grade, open-source distributed ledger framework and code base. The idea is to realize a cross-industry open standard platform for distributed ledgers. There are several active projects are going on under the umbrella of Hyperledger project, namely Burrow, Fabric, Sawtooth, Iroha and Indy. Fabric is the most popular platform from this group. It is a permissioned BC infrastructure with modular architecture which enables to configure different types of consensus algorithms. It also supports execution of smart contracts (called ‘chaincode’ in Fabric) and membership services.

The Burrow platform provides Ethereum virtual machine support in Hyperledger project, whereas the Iroha project is mainly focused on mobile applications. Sawtooth is another platform contributed by Intel, and it includes a dynamic consensus feature enabling hot swapping consensus algorithm in a running network. Among the consensus options, a novel consensus protocol known as ‘Proof of Elapsed Time’, a lottery-design consensus protocol is optionally built on trusted execution environments provided by Intel’s software guard extensions. The Indy platform supports independent identity on distributed ledgers.

Architecture. As an umbrella project, Hyperledger does not have a single architecture. However, all Hyperledger projects follow a design philosophy that includes a modular extensible approach, interoperability, a token-agnostic approach with no native cryptocurrency, and ease-of-use. The Hyperledger architecture has the following BC components:

1. 1. Consensus layer—Responsible for generating an agreement on the order and confirming the correctness of the set of transactions that constitute a block.

2. 2. Smart contract layer—Responsible for processing transaction requests and determining if transactions are valid by executing business logic.

3. 3. Communication layer—Responsible for peer-to-peer message transport between the nodes that participate in a shared ledger instance.

4. 4. Data store abstraction—Allows different data-stores to be used by other modules.

5. 5. Crypto abstraction—Allows different crypto algorithms or modules to be swapped out without affecting other modules.

6. 6. Identity services—Enables the establishment of a root of trust during set-up of a BC instance, the enrollment and registration of identities or system entities during network operation, and the management of changes like drops, adds and revocations. It also provides authentication and authorization.

7. 7. Policy services—Responsible for management of various policies specified in the system, such as the endorsement policy, consensus policy or group management policy. It interfaces and depends on other modules to enforce various policies.

8. 8. APIs—Enables clients and applications to interface with BCs.

Node and network. In Hyperledger Fabric, there are three types of nodes. Each node is a process running on some machines (perhaps in a container) and communicates with other nodes in the network. The nodes are orderer node, peer node and client node. Each node is correlated with some organizations and has its own certificate and private key. The client node acts on behalf of an end-user and creates and thereby invokes transactions.

Transaction, block and blockchain. In Hyperledger, developers can control block size with BatchTimeout and BatchSize parameters in the configuration file based on the use-cases. Developers can also use Max Message Count to control the maximum number of transactions/messages to permit in block.

Consensus and reward. We have already discussed that Hyperledger uses modular architectural design that supports different consensus mechanisms to be plugged-in. However, currently, Fabric, the most popular platform supports only two consensus mechanisms: SOLO and Kafka. Sawtooth supports a novel consensus protocol known as ‘Proof of Elapsed Time’. The validating peers are responsible for running consensus, validating transactions and maintaining the ledger.

In terms of rewarding system, currently it does not provide any mechanism for cryptocurrencies. However, token can be generated and used in this platform. Table 6 summarizes the properties of the IBM Watson platform.

Table 6 IBM Watson properties

4.7 NetObjex platform

NetObjex is a decentralized digital asset management platform that provides services for four major market segments, namely supply chain and logistics, manufacturing industry, smart city and automotive industry (NetObjex, 2018). The platform integrates both IoT and BC for data acquisition and dissemination purposes and supports a wide range of communication protocols such as cellular, mid-range protocols (LoRA, Sigfox and NB-IoT), Wifi, Ethernet, BLE and specialized protocols (DSRC). In addition, it also provides the flexibility to enforce business rules through smart contracts.

Architecture. The NetObjex platform integrates a number of big data repositories, distributed ledger technologies and edge devices with its core BC middleware component. This architectural design ensures interoperability and cross-communications among different entities of a complex system. The following are the key components through which NetObjex ensures a flexible, plug and play and programmable environment.

• • Edge devices—Edge devices are responsible to collect data from IoT devices and process it before sending to the NetObjex platform. The devices are capable of implementing data encryption mechanisms and can be remotely monitored through the healthcheck API.

• • NetObjex platform—The NetObjex platform also known as BC middleware platform provides supports for multiple database engines (e.g. MongoDB, Cassandra and Elasticsearch), AI engines (e.g. SparkML and MachineBox) and rules engine in addition to remote actuation of edge devices, notification and marketing services. This unit is responsible for providing the following BC-specific features: (i) code generation for smart contracts for various decentralized networks, (ii) inter-chain communications, (iii) search across heterogenous networks and (iv) data aggregation across BCs.

• • Distributed ledgers—A number of distributed ledger technologies including Ethereum, Hyperledger, IOTA and NEM are supported by the NetObjex platform. Data can be added and retrieved from multiple distributed ledgers through a single seamless API. One key feature of this platform is distributed ledger query language which is designed for high level language support for managing distributed ledgers.

• • Enterprise systems—Enterprise systems contain a number of standard applications such as Jira, Redmine, SugarCRM and CiviCRM. These applications are connected to the BC middleware platform through an enterprise gateway that facilitates the information exchange between enterprise APIs and the platform.

IoToken. The NetObjex platform implements a new mechanism, IoToken, to globally interact smart devices with each other. To communicate between digital assets owned by different organizations within a single ecosystem, the platform introduces a technology fabric through this IoToken mechanism. In addition, the platform provides supports for IoToken native cryptocurrency for inter-device transactions. Table 7 presents a summarized view of the NetObjex platform.

Table 7 NetObjex properties