An Efficient Medical Records Access Control with Auditable Outsourced Encryption and Decryption

2023 15th International Conference on Knowledge and Smart Technology (KST) Pub Date : 2023-02-21 DOI:10.1109/KST57286.2023.10086904

S. Fugkeaw, Len Wirz, Lyhour Hak

{"title":"An Efficient Medical Records Access Control with Auditable Outsourced Encryption and Decryption","authors":"S. Fugkeaw, Len Wirz, Lyhour Hak","doi":"10.1109/KST57286.2023.10086904","DOIUrl":null,"url":null,"abstract":"Existing access control schemes for IoT-Cloud-based settings generally focus on investigating the fine-grained access featured with the lightweight decryption. However, these requirements are not adequate for sensitive and high volumes of data such as IoT healthcare data that is outsourced in the cloud. In this paper, we proposed a secure, fine-grained, and batch-auditable access control scheme, that supports both lightweight encryption and decryption for outsourced IoT-based electronic medical records (EMRs). Technically, our proposed scheme fully offloads a ciphertext-policy attribute-based (CP-ABE) encryption and decryption to the fog nodes to minimize the communication and computation cost for both data owners and data users. We employed blockchain to store the record’s indices and access transactions and developed smart contracts to automate user authentication and verification. In addition, we developed a ciphertext auditing algorithm to efficiently handle batch auditing. For the evaluation, we conducted comparative experiments to show that our scheme is more efficient than related works.","PeriodicalId":351833,"journal":{"name":"2023 15th International Conference on Knowledge and Smart Technology (KST)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-02-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 15th International Conference on Knowledge and Smart Technology (KST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/KST57286.2023.10086904","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Existing access control schemes for IoT-Cloud-based settings generally focus on investigating the fine-grained access featured with the lightweight decryption. However, these requirements are not adequate for sensitive and high volumes of data such as IoT healthcare data that is outsourced in the cloud. In this paper, we proposed a secure, fine-grained, and batch-auditable access control scheme, that supports both lightweight encryption and decryption for outsourced IoT-based electronic medical records (EMRs). Technically, our proposed scheme fully offloads a ciphertext-policy attribute-based (CP-ABE) encryption and decryption to the fog nodes to minimize the communication and computation cost for both data owners and data users. We employed blockchain to store the record’s indices and access transactions and developed smart contracts to automate user authentication and verification. In addition, we developed a ciphertext auditing algorithm to efficiently handle batch auditing. For the evaluation, we conducted comparative experiments to show that our scheme is more efficient than related works.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

具有可审计外包加密和解密的高效医疗记录访问控制

现有的基于物联网云设置的访问控制方案通常侧重于研究具有轻量级解密特征的细粒度访问。但是，这些要求不足以满足敏感和大量的数据，例如外包在云中的物联网医疗保健数据。在本文中，我们提出了一种安全的、细粒度的、可批量审计的访问控制方案，该方案支持基于外包物联网的电子病历(emr)的轻量级加密和解密。从技术上讲，我们提出的方案将基于密文策略属性(CP-ABE)的加密和解密完全卸载到雾节点上，以最大限度地减少数据所有者和数据用户的通信和计算成本。我们使用区块链来存储记录的索引和访问交易，并开发智能合约来自动化用户身份验证和验证。此外，我们还开发了一种密文审计算法，以有效地处理批处理审计。为了评估，我们进行了对比实验，结果表明我们的方案比相关工作更有效。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2023 15th International Conference on Knowledge and Smart Technology (KST)

自引率

0.00%

发文量