e-SAFE: A secure and efficient access control scheme with attribute convergence and user revocation in fog enhanced IoT for E-Health

IF 3.7 2区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS Journal of Information Security and Applications Pub Date : 2024-08-17 DOI:10.1016/j.jisa.2024.103859

Richa Sarma , Sanjay Moulik

{"title":"e-SAFE: A secure and efficient access control scheme with attribute convergence and user revocation in fog enhanced IoT for E-Health","authors":"Richa Sarma , Sanjay Moulik","doi":"10.1016/j.jisa.2024.103859","DOIUrl":null,"url":null,"abstract":"<div>The growth of IoT led to a surge in connected devices and data production in the medical field. Therefore, to meet the rising demand for modern healthcare services, Fog and Cloud services come as a rescue for IoT-based equipment. As data travels through several levels, providing security to such data is challenging. The CP-ABE cryptographic approach allows for efficient access control. However, none of the known cryptographic CP-ABE approaches that provide granular access control offers the following features: attribute convergence, privileged access, user revocation, and outsourcing capabilities altogether. Thus, we present e-SAFE, a CP-ABE approach which addresses all these issues. In addition, in e-SAFE, the data users with resource-constrained medical gadgets must save just a constant and small-size decryption key on their gadgets. According to our assessment of security and performance, e-SAFE is found to be a secure and efficient access control technique for IoT gadgets.</div>","PeriodicalId":48638,"journal":{"name":"Journal of Information Security and Applications","volume":"85 ","pages":"Article 103859"},"PeriodicalIF":3.7000,"publicationDate":"2024-08-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Security and Applications","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2214212624001613","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

The growth of IoT led to a surge in connected devices and data production in the medical field. Therefore, to meet the rising demand for modern healthcare services, Fog and Cloud services come as a rescue for IoT-based equipment. As data travels through several levels, providing security to such data is challenging. The CP-ABE cryptographic approach allows for efficient access control. However, none of the known cryptographic CP-ABE approaches that provide granular access control offers the following features: attribute convergence, privileged access, user revocation, and outsourcing capabilities altogether. Thus, we present e-SAFE, a CP-ABE approach which addresses all these issues. In addition, in e-SAFE, the data users with resource-constrained medical gadgets must save just a constant and small-size decryption key on their gadgets. According to our assessment of security and performance, e-SAFE is found to be a secure and efficient access control technique for IoT gadgets.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

e-SAFE：雾增强型物联网中一种安全高效的访问控制方案，具有属性聚合和用户撤销功能，可用于电子健康领域

物联网的发展导致医疗领域的联网设备和数据生产激增。因此，为了满足现代医疗服务不断增长的需求，雾和云服务成为了物联网设备的救星。由于数据要经过多个层级，因此为这些数据提供安全保障具有挑战性。CP-ABE 密码方法可以实现高效的访问控制。然而，目前已知的提供细粒度访问控制的 CP-ABE 密码方法都不具备以下功能：属性收敛、特权访问、用户撤销和外包功能。因此，我们提出了一种能解决所有这些问题的 CP-ABE 方法--e-SAFE。此外，在 e-SAFE 中，资源有限的医疗设备数据用户只需在设备上保存一个恒定且小尺寸的解密密钥。根据我们对安全性和性能的评估，e-SAFE 是一种安全高效的物联网小工具访问控制技术。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Journal of Information Security and Applications Computer Science-Computer Networks and Communications

CiteScore

10.90

自引率

5.40%

发文量

206

审稿时长

56 days

期刊介绍： Journal of Information Security and Applications (JISA) focuses on the original research and practice-driven applications with relevance to information security and applications. JISA provides a common linkage between a vibrant scientific and research community and industry professionals by offering a clear view on modern problems and challenges in information security, as well as identifying promising scientific and "best-practice" solutions. JISA issues offer a balance between original research work and innovative industrial approaches by internationally renowned information security experts and researchers.