D5.2 ENTRUST Continuous Authorization, Trust Management, Monitoring Mechanisms and Trust Evidence Collection

D5.2 is dedicated to the description of the final Blockchain Infrastructure of ENTRUST, which is responsible for enabling the secure data management in medical domain organisations. Specifically, we provide the final version of the ENTRUST Blockchain architecture and all participating components, as well as all Blockchain-related action workflows, namely the authentication, onboarding and enrolment of CMDs, the construction of the required crypto primitives, and re-establishment of trust. We also detailed the final versions of the smart contracts pertaining to application data, attestation data, and trust policies, and we investigated how the introduction of inheritance can increase efficiency in the transition from device-level to domain-level actions. The final version of the Security Context Broker was described, as well as its role in the positioning of advanced crypto in the context of ENTRUST, namelyAttribute-Based Access Control and Attribute-Based Signcryption. Details on the final version of the tracing capabilities of ENTRUST were also provided for both High-end and Low-end devices. Finally, benchmarking results were provided for all aforementioned functionalities, and the results set the scene for the evaluation of ENTRUST in the context of the use cases, to be documented in D6.2.