Cloud-Based Fine-Grained Health Information Access Control Framework for LightweightIoT Devices with Dynamic Auditing andAttribute Revocation

Lo Yao Yeh, Pei Yu Chiang, Yi Lang Tsai, Jiun Long Huang

研究成果: 雜誌貢獻期刊論文同行評審

60 引文 斯高帕斯(Scopus)

摘要

The eHealth trend has spread globally. Internet of Things (IoT) devices for medical service and pervasive Personal Health Information (PHI) systems play important roles in the eHealth environment. A cloud-based PHI system appears promising but raises privacy and information security concerns. We propose a cloud-based fine-grained health information access control framework for lightweight IoT devices with data dynamics auditing and attribute revocation functions. Only symmetric cryptography is required for IoT devices, such as wireless body sensors. A variant of ciphertext-policy attribute-based encryption, dual encryption, and Merkle hash trees are used to support fine-grained access control, efficient dynamic data auditing, batch auditing, and attribute revocation. Moreover, the proposed scheme also defines and handles the cloud reciprocity problem wherein cloud service providers can help each other avoid fines resulting from data loss. Security analysis and performance comparisons show that the proposed scheme is an excellent candidate for a cloud-based PHI system.

原文???core.languages.en_GB???
頁(從 - 到)532-544
頁數13
期刊IEEE Transactions on Cloud Computing
6
發行號2
DOIs
出版狀態已出版 - 1 4月 2018

指紋

深入研究「Cloud-Based Fine-Grained Health Information Access Control Framework for LightweightIoT Devices with Dynamic Auditing andAttribute Revocation」主題。共同形成了獨特的指紋。

引用此