Privacy-aware attribute-based PHR sharing with user accountability in cloud computing
Visualitza/Obre
Cita com:
hdl:2117/82064
Tipus de documentArticle
Data publicació2015-05-01
Condicions d'accésAccés obert
Tots els drets reservats. Aquesta obra està protegida pels drets de propietat intel·lectual i
industrial corresponents. Sense perjudici de les exempcions legals existents, queda prohibida la seva
reproducció, distribució, comunicació pública o transformació sense l'autorització del titular dels drets
Abstract
As an emerging patient-centric model of health information exchange, personal health record (PHR) is often outsourced to be stored at a third party. The value of PHR data is its long-term cumulative record relevant with personal health which can be significant in the future when faced with disease occurrences. As a promising public key primitive, attribute-based encryption (ABE) has been used to design PHR sharing systems. However, the existing solutions fail to achieve several important security objectives, that is, no need for a single authority to issue private keys to all PHR users, user access privacy protection, and user accountability. In this paper, we propose a multi-authority ciphertext-policy ABE scheme with user accountability and apply it to design an attribute-based PHR sharing system. In the proposed solution, the access policy is hidden and hence user access privacy is protected. In particular, the global identity of a misbehaving PHR user who leaked the decryption key to other unauthorized users can be traced, and thus the trust assumptions on both the authorities and the PHR users are reduced. Extensive analysis shows that the proposed scheme is provably secure and efficient.
Descripció
This is a copy of the author 's final draft version of an article published in the journal Journal of supercomputing.
The final publication is available at Springer via
http://dx.doi.org/10.1007/s11227-014-1253-3
CitacióXhafa, F., Feng, J., Zhang, Y., Chen, X., Li, J. Privacy-aware attribute-based PHR sharing with user accountability in cloud computing. "Journal of supercomputing", 01 Maig 2015, vol. 71, núm. 5, p. 1607-1619.
ISSN0920-8542
Versió de l'editorhttp://link.springer.com/article/10.1007%2Fs11227-014-1253-3
Col·leccions
Fitxers | Descripció | Mida | Format | Visualitza |
---|---|---|---|---|
SUPE2211-REVISED.pdf | 526,5Kb | Visualitza/Obre |