mHealth中可追踪多授权机构基于属性的访问控制方案

doi:10.11959/j.issn.1000-436x.2018100

Journal on Communications ›› 2018, Vol. 39 ›› Issue (6): 1-10.doi: 10.11959/j.issn.1000-436x.2018100

• Papers • Next Articles

Multi-authority attribute-based access control system in mHealth with traceability

Qi LI^1,^2,³,Hongbo ZHU^2,⁴,Jinbo XIONG⁵,Ruo MO⁶

¹ School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing 210023,China
² Jiangsu Innovative Coordination Center of Internet of Things,Nanjing University of Posts and Telecommunications,Nanjing 210003,China
³ Jiangsu Key laboratory of Big Data Security ＆Intelligent Processing,Nanjing University of Posts and Telecommunications,Nanjing 210023,China
⁴ College of Telecommunications ＆Information Engineering,Nanjing University of Posts and Telecommunications,Nanjing 210003,China
⁵ College of Mathematics and Informatics,Fujian Normal University,Fuzhou 350117,China
⁶ School of Cyber Engineering,Xidian University,Xi’an 710071,China

Revised:2018-05-08 Online:2018-06-01 Published:2018-07-09
Supported by:
The National Natural Science Foundation of China(61502248);The National Natural Science Foundation of China(61427801);The National Natural Science Foundation of China(61402109);The National Natural Science Foundation of China(61602365);The National Natural Science Foundation of China(61370078);The Postdoctoral Science Foundation Project of China(2018M632350);NUPTSF(NY215008)

Abstract

Abstract:

Mobile healthcare (mHealth) is an emerging technology which facilitates the share of personal health records (PHR),however,it also brings the risk of the security and privacy of PHR.Attribute-based encryption (ABE) is regarded as a new cryptology to enhance fine-grained access control over encrypted data.However,existing attribute-based mHealth systems either lack of efficient traceable approach,or support only single authority.A traceable multi-authority attribute-based access control mHealth scheme was proposed,which was constructed over composite order groups and supports any monotonic access structures described by linear secret sharing scheme (LSSS).The adaptive security was proved under subgroup decisional assumptions.The traceability was proved under k-strong Diffie-Hellman (k-SDH) assumption.The performance analysis indicates that the proposed scheme is efficient and available.

Key words: attribute-based encryption, multi-authority, traceable, adaptively secure, mHealth

CLC Number:

TP309

Qi LI,Hongbo ZHU,Jinbo XIONG,Ruo MO. Multi-authority attribute-based access control system in mHealth with traceability[J]. Journal on Communications, 2018, 39(6): 1-10.

Figures/Tables 5

References 19

[1]	PANAYIOTOU C , SAMARAS G . A mobile agent approach for ubiquitous and personalized eHealth information systems[J]. Personalisation for E, 2008:792.
[2]	ZHANG K , YANG K , LIANG X ,et al. Security and privacy for mobile healthcare networks[J]. IEEE Wireless Communications, 2015,22(4): 104-112.
[3]	SAHAI A , WATERS B . Fuzzy identity-based encryption[C]// Advances in Cryptology EUROCRYPT 2005,Lecture Notes in Computer Science. 2005: 457-473.
[4]	GOYAL V , PANDEY O , SAHAI A ,et al. Attribute-based encryption for fine-grained access control of encrypted data[C]// The 13th ACM conference on Computer and communications security. 2006: 89-98.
[5]	BETHENCOURT J , SAHAI A , WATERS B . Ciphertext-policy attribute-based encryption[C]// Symposium on Security and Privacy. 2007: 321-334.
[6]	HAHN C , KWON H , HUR J . Efficient attribute-based secure data sharing with hidden policies and traceability in mobile health networks[J]. Mobile Information Systems, 2016:13.
[7]	ALSHEHRI S , RADZISZOWSKI S , AND RAJ R . Secure access for healthcare data in the cloud using ciphertext-policy attribute-based encryption[C]// IEEE 28th International Conference on Data Engineering Workshops (ICDEW ’12), 2012: 143-146.
[8]	CHASE M , . Multi-authority attribute based encryption[M]// Theory of Cryptography. Springer Berlin Heidelberg, 2007: 515-534.
[9]	CHASE M , CHOW S S M . Improving privacy and security in multi-authority attribute-based encryption[C]// Conference on Computer and Communications Security. 2009: 121-130.
[10]	LI M , YU S , ZHENG Y ,et al. Scalable and secure sharing of personal health records in cloud computing using attribute-based encryption[J]. IEEE Transactions on Parallel ＆ Distributed Systems, 2012,24(1): 131-143.
[11]	LEWKO A , WATERS B . Decentralizing attribute-based encryption[C]// International Conference on the Theory and Applications of Cryptographic Techniques. 2010: 568-588.
[12]	LIU Z , CAO Z , HUANG Q ,et al. Fully secure multi-authority ciphertext-policy attribute-based encryption without random oracles[C]// European Conference on Research in Computer Security. 2011: 278-297.
[13]	LI Q , MA J , LI R ,et al. Secure,efficient and revocable multi-authority access control system in cloud storage[J]. Computers ＆ Security, 2016,59(C): 45-59.
[14]	LIU Z , CAO Z , WONG D S . White-box traceable ciphertext-policy attribute-based encryption supporting any monotone access structures[J]. IEEE Transactions on Information Forensics and Security, 2013,8(1): 76-88.
[15]	LI J , HUANG Q , CHEN X ,et al. Multi-authority ciphertext-policy attribute-based encryption with accountability[C]// The 6th ACM Symposium on Information,Computer and Communications Security. 2011: 386-390.
[16]	GUAN Z , LI J , ZHANG Y ,et al. An efficient traceable access control scheme with reliable key delegation in mobile cloud computing[J]. EURASIP Journal on Wireless Communications and Networking, 2016,2016(1):208.
[17]	LEWKO A , OKAMOTO T , SAHAI A ,et al. Fully secure functional encryption:attribute-based encryption and (hierarchical) inner product encryption[C]// International Conference on Theory and Applications of Cryptographic Techniques. 2010: 62-91.
[18]	BEIMEL A . Secure schemes for secret sharing and key distribution[J]. DSc Dissertation, 1996.
[19]	CARO A D , IOVINO V . jPBC:Java pairing based cryptography[J]. Proceedings - International Symposium on Computers and Communications, 2011,22(3): 850-855.

Metrics

Recommended 0

No Suggested Reading articles found!

标号	属性密文	PHR密文
ID	CT	EN_PHR

方案	访问策略	多授权机构	安全模型	可追踪性
文献[6]	与门	否	选择性	是
文献[12]	LSSS	是	适应性	否
文献[13]	LSSS	是	适应性	否
文献[14]	LSSS	否	适应性	是
文献[15]	与门	是	选择性	是
文献[16]	树	否	选择性	是
本文	LSSS	是	适应性	是

步骤	文献[13]的计算开销	文献[14]的计算开销	本文的计算开销
初始化	(\|U\|+\|F_U\|)E ₁+\|F_U\|P	(\|U\|+1)E ₁+1P	(\|U\|+\|F_U\|+1)E ₁+\|F_U\|P
加密	(3\|W\|+1)E ₁+1E₂	(3\|W\|+2)E ₁+1E₂	(3\|W\|+2)E ₁+1E₂
密钥生成	(2\|F_E\|+\|S\|+2)E ₁	(\|S\|+4)E ₁	(2\|F_E\|+\|S\|+2)E ₁
解密	1E ₂	2E ₁+\|I\|E₂+(2\|I\|+1)P	2E ₁+\|I\|E₂+(2\|I\|+1)P
追踪	无	2E ₁+(2\|S_T\|+5)P	2E₁+(2\|S _T\|+3\|F_T\|+2)P

步骤		方案的计算开销/s
步骤	文献[13]	文献[14]	本文
初始化	96.75	90.55	97.64
加密	28.25	29.18	29.14
密钥生成	19.58	12.46	19.56
解密	0.08	16.41	16.40
追踪	无	18.28	26.20

Multi-authority attribute-based access control system in mHealth with traceability

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 19

Related Articles 15

Metrics

Recommended 0

[1]	Xuejiao LIU, Tiancong CAO, Yingjie XIA. Research on efficient and secure cross-domain data sharing of IoV under blockchain architecture [J]. Journal on Communications, 2023, 44(3): 186-197.
[2]	Yiliang HAN, Kaiyang GUO, Riming WU, Kai LIU. Attribute-based encryption scheme against key abuse based on OBDD access structure from lattice [J]. Journal on Communications, 2023, 44(1): 75-88.
[3]	Ruizhong DU, Tianhe ZHANG, Pengliang SHI. Ciphertext policy hidden access control scheme based on blockchain and supporting data sharing [J]. Journal on Communications, 2022, 43(6): 168-178.
[4]	Xinchun YIN, Mengyu WANG, Jianting NING. Lightweight searchable medical data sharing scheme [J]. Journal on Communications, 2022, 43(5): 110-122.
[5]	Fei TANG, Jiali BAO, Yonghong HUANG, Dong HUANG, Huili WANG. Multi-authority attribute-based identification scheme [J]. Journal on Communications, 2021, 42(3): 220-228.
[6]	Xixi YAN,Xu HE,Tao LIU,Qing YE,Jinxia YU,Yongli TANG. Traceable attribute-based encryption scheme with key-delegation abuse resistance [J]. Journal on Communications, 2020, 41(4): 150-161.
[7]	Xixi YAN,Xiaohan YUAN,Yongli TANG,Yanli CHEN. Verifiable attribute-based searchable encryption scheme based on blockchain [J]. Journal on Communications, 2020, 41(2): 187-198.
[8]	LI Xuejun,ZHANG Dan,LI Hui. Efficient revocable attribute-based encryption scheme [J]. Journal on Communications, 2019, 40(6): 32-39.
[9]	FENG Chaosheng,LUO Wangping,QIN Zhiguang,YUAN Ding,ZOU Liping. Attribute-based proxy re-encryption scheme with multiple features [J]. Journal on Communications, 2019, 40(6): 177-189.
[10]	Lei SUN,Zhiyuan ZHAO,Jianhua WANG,Zhiqiang ZHU. Attribute-based encryption scheme supporting attribute revocation in cloud storage environment [J]. Journal on Communications, 2019, 40(5): 47-56.
[11]	Youliang TIAN,Kedi YANG,Zuan WANG,Tao FENG. Algorithm of blockchain data provenance based on ABE [J]. Journal on Communications, 2019, 40(11): 101-111.
[12]	Jian LIU,Ming XIAN,Huimei WANG,Hong RONG. Optimization method for attribute-based cryptographic access control in mobile cloud computing [J]. Journal on Communications, 2018, 39(7): 39-49.
[13]	Xin LIU,Qiuliang XU,Bin ZHANG,Bo ZHANG. k-times attribute-based authentication scheme using direct anonymous attestation [J]. Journal on Communications, 2018, 39(12): 113-133.
[14]	Fang QI,Yanmei LI,Zhe TANG. Revocable and traceable key-policy attribute-based encryption scheme [J]. Journal on Communications, 2018, 39(11): 63-69.
[15]	Ruo MO,Jian-feng MA,Xi-meng LIU,Qi LI. Multi-authority ABS supporting dendritic access structure [J]. Journal on Communications, 2017, 38(7): 96-104.