A Traceable Encryption Scheme for Medical Data Based on  Smart Contract and Fog Computing

Abstract

Abstract: Traditional medical system solves problems such as medical record management, patient information storage, medical resource scheduling, and so on. However, it suffered from shortcomings such as medical privacy breaches, data security concerns, and high loads on end devices when dealing with everincreasing data volumes and complex access control requirements. To solve the above problems, this paper proposes a traceable encryption scheme based on smart contract and fog computing for medical data privacy protection. By introducing authorization mechanisms and revocable attributebased encryption, the privacy of medical data is effectively protected and the abuse of key is avoided. Additionally, data security is further enhanced by embedding user information in private keys. As the participant of access control, smart contract is responsible for the authentication of the user’s authorization, and part of the decryption operation is undertaken by the fog node, thus reducing the load of the terminal device and achieving load balancing. In comparison with other similar schemes, the proposed approach demonstrates higher computing and storage efficiency.

Key words: Attribute encryption, access control, Fog nodes, Medical data privacy, smart contract

摘要： 传统的医疗系统解决了诸如医疗记录管理、患者信息存储、医疗资源调度等问题.然而，在应对日益增加的数据量和复杂的访问控制需求时存在着医疗隐私泄露、数据安全性和终端设备负载等缺陷.针对以上问题，提出一种面向医疗数据隐私保护的基于智能合约和雾计算的可追溯加密方案.通过引入授权机制和基于属性加密的可撤销机制，有效保护了医疗数据的隐私，并避免了密钥滥用的情况.同时，通过在私钥中嵌入用户信息，进一步增强数据安全性.智能合约作为访问控制的参与方，负责执行用户的授权验证，部分解密操作由雾节点承担，从而减轻了终端设备的负荷，实现了负载均衡.通过与其他同类型方案进行计算开销、存储开销和安全性的对比发现，该方案具有更高的计算和存储效率.

关键词: 属性加密, 访问控制, 雾节点, 医疗数据隐私, 智能合约

CLC Number:

TP309.2

常雨晴, 贺婉朦, 周璐瑶, 彭振皖, . 基于智能合约和雾计算的医疗数据可追溯加密方案[J]. 信息安全研究, 2024, 10(6): 554-.

References

［1］许俊杰, 陈军. 基于物联网的智慧医疗系统及其发展应用［J］. 中国医疗设备, 2017, 32(10): 118120［2］王志强, 黄玉洁, 庞舒方, 等. 面向远程医疗信息系统的认证密钥交换协议［J］. 信息安全研究, 2023, 9(11): 11021110［3］Zhang Peng, Zhang Zhiting, Lu Rongxing, et al. Efficient policyhiding and large universe attributebased encryption with public traceability for Internet of medical things［J］. IEEE Internet of Things Journal, 2021, 8(13): 1096710969［4］Aldahhan R R, Qi Shi. Survey on revocation in ciphertextpolicy attributebased encryption［J］. Sensors, 2019, 19(7): 16951699［5］Goyal V. Reducing trust in the PKG in identity based cryptosystems［C］ Proc of Annual Int Cryptology Conf. Berlin: Springer, 2007: 430447［6］Goyal V, Lu S, Sahai A, et al. Blackbox accountable authority identitybased encryption［C］ Proc of the 15th ACM Conf on Computer and Communications Security. New York: ACM, 2008: 427436［7］Zou Weiqin, Lo D, Kochhar P S, et al. Smart contract development: Challenges and opportunities［J］. IEEE Trans on Software Engineering, 2019, 47(10): 20842106［8］Gao Sheng, Pion G, Zhu Jianming, et al. Trustaccess: A trustworthy secure ciphertextpolicy and attribute hiding access control scheme based on blockchain［J］. IEEE Trans on Vehicular Technology, 2020, 69(6): 57845786［9］Yao Xuanxiao, Zhi Chen, Tian Ye. A lightweight attributebased encryption scheme for the Internet of things［J］. Future Generation Computer Systems, 2015, 49: 109110［10］张淑清, 蔡志文. 云数据下基于可问责属性即可撤销的加密方案［J］. 信息网络安全, 2021, 21(12): 7071［11］Wazir Z K, Ejaz A, Saqib H, et al. Edge computing: A survey［J］. Future Generation Computer Systems, 2019, 97: 219220［12］Kashan M H, Mahdpipour E. Load balancing algorithms in fog computing［J］. IEEE Trans on Services Computing, 2022, 16(2): 15051508［13］Zhang Fangguo, Safavnain R, Susilo W. An efficient signature scheme from bilinear pairings and its applications［C］ Proc of the 7th Int Workshop on Theory and Practice in Public Key Cryptography. Berlin: Springer, 2004: 277290［14］Maesa D D F, Mori P, Ricci L. A blockchain based approach for the definition of auditable access control systems［J］. Computers & Security, 2019, 84: 9395［15］滕亮, 陈兵, 赵开斌, 等. 基于区块链的医疗数据安全共享模型研究与应用［J］. 信息安全研究, 2023, 9(9): 884891［16］Cui Hui, Deng R H, Li Yingjiu, et al. Serveraided revocable attributebased encryption［C］ Proc of the 21st European Symp on Research in Computer Security. Berlin: Springer, 2016: 570587［17］Xu Guanquan, Qi Chen, Dong Wenyu, et al. A privacypreserving medical data sharing scheme based on blockchain［J］. IEEE Journal of Biomedical and Health Informatics, 2022, 27(2): 698699［18］Li Hang, Yu Kepeng, Liu Bin, et al. An efficient ciphertextpolicy weighted attributebased encryption for the Internet of health things［J］. IEEE Journal of Biomedical and Health Informatics, 2021, 26(5): 19491950［19］Ding Yong, Xu Hui, Wang Yujue, et al. Secure multikeyword search and access control over electronic health records in wireless body area networks［J］. Security and Communication Networks, 2021, 2021: 12［20］Choo K K R, Gritzalis S, Park J H. Cryptographic solutions for industrial Internetofthings: Research challenges and opportunities［J］. IEEE Trans on Industrial Informatics, 2018, 14(8): 35673569［21］Varri U S, Kasani S, Pasupuleti S K, et al. FELTABKS: Fogenabled lightweight traceable attributebased keyword search over encrypted data［J］. IEEE Internet of Things Journal, 2021, 9(10): 75597571

[1]	. Research on the Latticebased Access Control Encryption Technology [J]. Journal of Information Security Reserach, 2024, 10(4): 318-.
[2]	. Research on Zero Trust Access Control Model Based on Role and Attribute#br# #br# [J]. Journal of Information Security Reserach, 2024, 10(3): 241-.
[3]	. Power Sensitive Data Access Control Method Based on Zero Trust Security Model [J]. Journal of Information Security Reserach, 2024, 10(1): 88-.
[4]	. Research and Application of 5G Private Network Access Security Management and Control Scheme Based on DNAAA [J]. Journal of Information Security Reserach, 2023, 9(8): 784-.
[5]	. Exploration of a New Model of Blockchain Technology Credit Investigation for Small and Micro Enterprises [J]. Journal of Information Security Reserach, 2023, 9(8): 814-.
[6]	. A Mechanism Design for Compliance and Trusted Circulation of Data [J]. Journal of Information Security Reserach, 2023, 9(7): 618-.
[7]	. Towards a Privacy-preserving Research for AI and Blockchain Integration [J]. Journal of Information Security Reserach, 2023, 9(6): 557-.
[8]	. Energy Data Sharing Access Control Model Based on Blockchain [J]. Journal of Information Security Reserach, 2023, 9(3): 220-.
[9]	. Research on Personal Privacy Data Sharing Technology Based on Blockchain Traceability [J]. Journal of Information Security Reserach, 2023, 9(2): 109-.
[10]	. Research on the Trusted Identity Scheme of Internet of Vehicles Based on Blockchain Oracle [J]. Journal of Information Security Reserach, 2023, 9(2): 120-.
[11]	. Blockchainbased Data Element Resources Sharing and Access Control Scheme [J]. Journal of Information Security Reserach, 2023, 9(2): 137-.
[12]	. Research Status of Smart Contract Security Vulnerabilities#br# #br# [J]. Journal of Information Security Reserach, 2023, 9(12): 1166-.
[13]	. Research on Data Sharing Management Based on Attributebased Encryption#br# #br# [J]. Journal of Information Security Reserach, 2023, 9(11): 1061-.
[14]	. Research on an OAuth2.1based Unified Authentication and Authorization Framework [J]. Journal of Information Security Reserach, 2022, 8(9): 879-.
[15]	. [J]. Journal of Information Security Reserach, 2022, 8(8): 768-.

A Traceable Encryption Scheme for Medical Data Based on Smart Contract and Fog Computing

基于智能合约和雾计算的医疗数据可追溯加密方案

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics