计算机工程与应用 ›› 2020, Vol. 56 ›› Issue (1): 92-97.DOI: 10.3778/j.issn.1002-8331.1809-0230

• 大数据与云计算 • 上一篇    下一篇

医疗云中高效安全的数据共享方案研究

黄娜娜,沈亮,杨元原   

  1. 公安部第三研究所,上海 200031
  • 出版日期:2020-01-01 发布日期:2020-01-02

Research on Efficient and Secure Data Sharing Scheme in Personal Health Record on Cloud

HUANG Nana, SHEN Liang, YUANG Yuanyuan   

  1. The Third Research Institute of Ministry of Public Security, Shanghai 200031, China
  • Online:2020-01-01 Published:2020-01-02

摘要: 随着云计算的快速发展,个人电子病历记录(Personal Health Record,PHR)作为一种新兴的健康信息交换模式,已经成为研究与应用领域的热点话题。为了实现医疗云中安全高效的数据共享,提出了可撤销的基于CP-ABE的数据共享方案。在该方案中,医疗用户被划分为个人区域(PSD)和公共区域(PUD)。在PSD中,采用改进的聚合加密(IKAE)和改进的属性签名方案分别来实现读和写访问权限。对于PUD的医疗用户来说,使用可撤销的外包加解密方案,在很大程度上减少了PHR用户的开销。该方案还可以实现及时的用户和属性撤销,并且引入多授权机构来降低密钥管理的复杂度。最后通过性能分析证明了该方案的高效性和安全性。

关键词: 个人医疗健康档案, 可撤销的外包, 属性撤销

Abstract: With the rapid development of the cloud computing, Personal Health Record(PHR) has become a hot topic recently. In order to realize a secure and efficient PHR scheme, this paper presents a revocable outsourced CP-ABE based PHR scheme. In the scheme, it divides the users into Personal Domain(PSD) and Public Domain(PUD). In the PSD, it adopts the Improved Key-Aggregate Encryption(IKAE) and the Improved Attribute-based Signature(IABS) respectively to achieve read access permission and write access permission. For the PHR users of PUD, it uses revocable outsource-able MA-ABE to largely eliminate the overhead for both the PHR owner and users, which can also support efficient attribute and user revocation. At the same time, the import of multi-authority reduces the complexity of the key management. The performance testing results show the security and efficiency of the proposed scheme.

Key words: Personal Health Record(PHR), revocable outsourced, revocation