Abstract: With the rapid development of cloud storage technologies, outsourcing the personal health record (PHR) information to cloud servers has gotten many attentions of people. Outsourcing of PHR not only brings great convenience to the patients, but also realizes the efficient sharing of data among medical institutions. However, because the sensitive personal information is uploaded to cloud servers, security concerns on the leakage of identity information of data owners and users emerged at the same time. Anonymous attributebased encryption techniques can not only ensure the safety of the cloud data, but also can effectively protect the data users personal identification information. Most of the existing works focus on security of data content and the basic access control mechanism, and the finegrained access control of files is not realized. The proposed scheme based on keyword faulttolerant technique not only fulfills the cloud ciphertext search, also realizes finegrained privilege control on files by giving different privileges to the cloud data. It is ensured that only those data users who are given the corresponding privileges can make appropriate operations on the corresponding cloud data. Finally, the security analysis indicates that the scheme is secure.

摘要： 随着云存储技术的不断发展，将个人健康记录(personal health records, PHR)信息外包给云服务器获得了人们极大的关注.PHR外包不仅给病人带来了极大的便利，而且实现了各医疗机构之间数据的高效共享.然而，随着将个人敏感信息上传至云服务器，数据拥有者以及使用者个人身份信息的泄露等一些安全担忧也随之出现.基于匿名的属性加密方案不仅可以保证云端数据的安全，而且能够有效保护数据使用者的个人身份信息.已有工作都着眼于保证数据内容安全和基本的访问控制，却很少关注文件的细粒度权限控制.提出的方案不仅实现了基于关键字容错的云端密文搜索，而且通过赋予云端数据不同的特权，实现了对文件的细粒度权限控制，只有那些被赋予了相应特权的数据用户才能对云端数据作相应的权限操作.最后，安全性分析表明该方案是安全的.