Xiaoliang Wang,Liang Bai,Qing Yang,Liu Wang,Frank Jiang

DOI: https://doi.org/10.1016/j.jisa.2019.04.010

IF: 4.96

2019-01-01

Journal of Information Security and Applications

Abstract:With the development of wireless sensor network and internet, ubiquitous eHealth care systems are booming. However, a great deal of data computing and storage processing restrict the scalability of ubiquitous eHealth. As a solution, cloud-based eHealth is coming up. However, using cloud-computing model often causes some privacy concerns. Massive medical data in eHealth system contain numerous sensitive information and electronic health records of users. Meanwhile, if data encryption is adopted to protect privacy, cloud center cannot process data. To solve this problem, a scheme based on fully homomorphism conception for privacy protection and data processing of eHealth is proposed in this paper. Our scheme not only meets the aforementioned dual requirements but also limit the arbitrary actions of patients and doctors.

Kundan Munjal,Rekha Bhatia

DOI: https://doi.org/10.1088/1742-6596/2327/1/012069

2022-09-08

Journal of Physics: Conference Series

Abstract:The variety and amount of patient healthcare digital data is rapidly expanding. The field of artificial intelligence has fast proven revolutionary for healthcare, allowing for unprecedented speed and precision in data analysis. Many hospitals have already transitioned to electronic health records (EHRs), a digital version of paper medical information. Information Technology has already aided in simplifying operations in this area, making the process far more efficient and patient-centered than in the past. A patient's trust may disintegrate in the face of recurrent incidents if there is no precise control and safety in place. As a result, it limits the potential for digital health to promote an age of more accessible, connected, and individualized treatment. When it comes to picking a cloud solution, healthcare providers are most concerned about security and privacy. In this research, we seek to demonstrate various ways that aid patient data privacy while simultaneously allowing cloud services to be used.

M. Lakshmanan,G. S. Anandha Mala

DOI: https://doi.org/10.1007/s10115-023-01937-z

IF: 2.7

2023-09-04

Knowledge and Information Systems

Abstract:A growing number of medical records are changed by the electronic folders that can be shared and transmitted in real-time in recent years as a result of the speedy improvement of data mechanisms and network methodologies. Yet, security breaches and privacy issues could affect medical data sent over open communication channels. Due to its distinctive qualities including immutability, blockchain technology, anonymity, decentralization, and, verifiability has drawn more notice in various fields. With a variety of multimedia techniques, healthcare organizations all over the globe are evolving into more user-centered, harmonized, and effective models. The management of enormous amounts of information, like records and photographs of all the individual improve the person's labor requirements and the security hazards. Recent advances in the healthcare industry have led to the creation of enormous numbers of electronic health records (EHRs). The owner of the data can manage the EHR data and share thanks with certain individuals in the EHR system. It is challenging for information to guarantee protection and detection procedures due to the enormous amount of information in the medical care models. Hence, in order to secure the EHR, the development of artificial intelligence techniques like blockchain and a new privacy preservation model is recommended for this work. Particularly, the Merkle tree is a key component of blockchain technology. In this proposed model, the Merkle tree is applied that helps for effective and safe authentication of huge data frameworks with the purpose of verifiability of the posted patient data. This model consists of two main phases, such as data sanitization and data restoration. Here, the sanitization operation is based on the creation of the optimal key using a new iteration-based firefly reptile search algorithm (IFRSA). The creation of the optimal key is established by functioning a multi-objective function which includes the factors like Euclidean distance, hiding ratio, and, data preservation ratio among encrypted data using the original key and the key with a variation. Finally, the electronic health care model becomes more private, dependable, and helpful through our suggested system. The comparison shows the supremacy of the developed approach.

computer science, information systems, artificial intelligence

Rakib Ul Haque,A.S.M. Touhidul Hasan,Apubra Daria,Abdur Rasool,Hui Chen,Qingshan Jiang,Yuqing Zhang

DOI: https://doi.org/10.1016/j.jnca.2023.103696

IF: 7.574

2023-08-01

Journal of Network and Computer Applications

Abstract:Patients often visit several hospitals to obtain medication, generating a significant volume of data. Moreover, hospitals use different data analytic techniques to improve healthcare services, leading to patient data privacy. However, no integrated architecture has a trustworthy data repository and secure communication protocols to store and share the data with various parties (e.g., hospitals and data analysts) for different healthcare services. This study proposes an innovative three-tier secure and distributed privacy-preserving healthcare architecture that addresses the aforementioned challenges. The first tier introduces a trustworthy data repository called custodian, where the data owner stores encrypted data and offer real-time privacy-preserving health monitoring service. The second tier provides Elliptic Curve Cryptography-based authentication for secure data exchange between the data owner and the hospital. The third tier utilizes smart contracts and local differential privacy ( L D P ) for secure machine learning model training. All transactions are recorded on the blockchain and managed by a smart contract. Security analysis shows that the proposed framework ensures privacy, security, and data integrity. Performance analysis is done based on score metrics, scalability metrics, and formal analysis. A transaction takes 0.00121 s in the first tier, and in the second tier, it takes 0.1267 s. The third tier uses ɛ − L D P with a privacy budget of ɛ = 3 on Random Forest and achieves 97%, 83%, and 74% accuracy on breast cancer, heart disease, and diabetic datasets. This accuracy is higher than the previous state-of-the-art methods. Moreover, the proposed healthcare framework ensures privacy, security and outperforms the previous state-of-the-art methods.

computer science, interdisciplinary applications, software engineering, hardware & architecture

Akanksha Goel,S Neduncheliyan

DOI: https://doi.org/10.1007/s12083-022-01429-x

Abstract:Nowadays, securely sharing medical data is one of the significant concerns in blockchain technology. The existing blockchain approaches have faced high time consumption, low confidentiality, and high memory usage for transferring the file in a secure way because of attack harmfulness and large unstructured records. It has ended in security threat, so the integrity of the user data has been lost. Hence, a novel hybrid Deep Belief-based Diffie Hellman (DBDH) security framework was presented to protect medical data from malicious events. Incorporating a deep belief neural system continuously monitors the system and identifies the attacks. Initially, the IoMT dataset was collected from the standard site and imported into the system. Moreover, hash 1 was calculated for the original data and stored in the cloud server for verification. Then, the original data was encrypted with a private key for data hiding. The incorporation of homomorphic property helps to calculate hash 2 for encrypted data. Finally, in the verification module, both hash values are verified. In addition, cryptanalysis was performed by launching an attack to validate the performance of the designed model. Moreover, the estimated outcomes of the presented model were compared with existing approaches to determine the improvement score.

Preethi.S

DOI: https://doi.org/10.36713/epra5789

2020-12-09

Abstract:Remote health monitoring and older health care has become a popular application with the advance of wearable medical devices. Privacy protection and intrusion avoidance for cloudlet- based medical data sharing data collected from patients through wearable devices ( such as heartbeat, blood pressure, etc.) must be passed to cloud-run applications to implement various services such as expert advice, emergency assistance, etc. The cloud storage system provides distributed clients with convenient file storage and sharing services. To solve integrity, we present identity based data outsourcing , outsourcing and original auditing concerns about outsourced documents, the program is equipped with an ideal feature that factilitates existing recommendations to protect outsourcing data.

Atul B. Kathole,Kapil Netaji Vhatkar,Ankur Goyal,Shivkant Kaushik,Amita Sanjiv Mirge,Prince Jain,Mohamed S. Soliman,Mohammad Tariqul Islam

DOI: https://doi.org/10.1109/access.2024.3447829

IF: 3.9

2024-08-31

IEEE Access

Abstract:The rapid growth of the Internet of Medical Things (IoMT) has introduced significant security and privacy challenges in managing and protecting medical data. This paper proposes a secure federated cloud storage system designed to address these challenges using a hybrid heuristic attribute-based encryption (ABE) scheme integrated with a permissioned Blockchain. The proposed system enhances data confidentiality and integrity by first collecting medical information and then encrypting it with ABE using an optimal key generated by the Hybrid Mexican Axolotl with Energy Valley Optimizer (HMO-EVO). The encrypted data is securely stored in a permissioned blockchain, ensuring robust access control and protection against data breaches. For effective healthcare monitoring, the system employs federated learning with a Multi-scale Bi-Long Short-Term Memory and Gated Recurrent Unit (MBiLSTM-GRU) to predict diseases accurately. This federated approach allows for decentralized training of deep learning models, preserving patient data privacy while leveraging collective learning. Experimental results show that the proposed system outperforms conventional methods in terms of security, efficiency, and predictive accuracy. This research offers a comprehensive framework for secure medical data management, combining the strengths of federated learning and blockchain technology to address the critical issues of data ownership, regulatory compliance, and privacy in IoMT networks.

computer science, information systems,telecommunications,engineering, electrical & electronic

S. Vidhya,V. Kalaivani

DOI: https://doi.org/10.1007/s12083-023-01449-1

IF: 3.488

2023-02-01

Peer-to-Peer Networking and Applications

Abstract:With the rapid progress of network information technologies, security in medical data transmission has emerged as a popular research topic. Electronic Health Data (EHR) is vulnerable to security breaches, tampering, manipulation, and data leakage. The blockchain's data integrity, decentralization, and anonymity opened up new possibilities for addressing the aforementioned issues. Therefore, this paper presents a Blockchain-based Access Control Scheme (BACS) with Multiple Party Authority (MPA), smart contract, and proxy re encryption to secure the EHR. The proposed scheme consists of six phases: the registration phase, appointment phase, data aggregation stage, storage phase, query phase, and validation phase. The medical data is encrypted by using a Lightweight Fused Cryptographic (LFC) algorithm with the signature of the patient and doctor to ensure confidentiality and integrity. The encrypted EHR is then stored on Interplanetary File Systems (IPFS), which is a decentralised file storage platform. Moreover, the developed smart contract verifies the authenticity of the users, provides a reputation score for the oracle, and creates a time seal. This enhances the security of the system from external attacks as well as internal attacks. A security analysis is conducted for the proposed method, and the performance is compared with the existing techniques based on encryption time, decryption time, and computation cost.

computer science, information systems,telecommunications

Sarvesh Kumar,Mohammed Abdul Wajeed,Rajashekhar Kunabeva,Nripendra Dwivedi,Prateek Singhal,Sajjad Shaukat Jamal,Reynah Akwafo

DOI: https://doi.org/10.1155/2022/3564436

2022-03-19

Abstract:It is a new online service paradigm that allows consumers to exchange their health data. Health information management software allows individuals to control and share their health data with other users and healthcare experts. Patient health records (PHR) may be intelligently examined to predict patient criticality in healthcare systems. Unauthorized access, privacy, security, key management, and increased keyword query search time all occur when personal health records (PHR) are moved to a third-party semitrusted server. This paper presents security measures for cloud-based personal health records (PHR). The cost of keeping health records on a hospital server grows. This is particularly true in healthcare. As a consequence, keeping PHRs in the cloud helps healthcare institutions save money on infrastructure. The proposed security solutions include an optimized rule-based fuzzy inference system (ORFIS) to determine the patient's criticality. Patients are classified into three groups (sometimes known as protective rings) based on their severity: very critical, less critical, and normal. In trials using the UCI machine learning archive, the new ORFIS outperformed existing fuzzy inference approaches in detecting the criticality of PHR. Using a graph-based access policy and anonymous authentication with a NoSQL database in a private cloud environment improves data storage and retrieval efficiency, granularity of data access, and response time.

Hassan Mansur Hussien,Sharifah Md Yasin,Nur Izura Udzir,Mohd Izuan Hafez Ninggal

DOI: https://doi.org/10.3390/s21072462

2021-04-02

Abstract:Blockchain technology provides a tremendous opportunity to transform current personal health record (PHR) systems into a decentralised network infrastructure. However, such technology possesses some drawbacks, such as issues in privacy and storage capacity. Given its transparency and decentralised features, medical data are visible to everyone on the network and are inappropriate for certain medical applications. By contrast, storing vast medical data, such as patient medical history, laboratory tests, X-rays, and MRIs, significantly affect the repository storage of blockchain. This study bridges the gap between PHRs and blockchain technology by offloading the vast medical data into the InterPlanetary File System (IPFS) storage and establishing an enforced cryptographic authorisation and access control scheme for outsourced encrypted medical data. The access control scheme is constructed on the basis of the new lightweight cryptographic concept named smart contract-based attribute-based searchable encryption (SC-ABSE). This newly cryptographic primitive is developed by extending ciphertext-policy attribute-based encryption (CP-ABE) and searchable symmetric encryption (SSE) and by leveraging the technology of smart contracts to achieve the following: (1) efficient and secure fine-grained access control of outsourced encrypted data, (2) confidentiality of data by eliminating trusted private key generators, and (3) multikeyword searchable mechanism. Based on decisional bilinear Diffie-Hellman hardness assumptions (DBDH) and discrete logarithm (DL) problems, the rigorous security indistinguishability analysis indicates that SC-ABSE is secure against the chosen-keyword attack (CKA) and keyword secrecy (KS) in the standard model. In addition, user collusion attacks are prevented, and the tamper-proof resistance of data is ensured. Furthermore, security validation is verified by simulating a formal verification scenario using Automated Validation of Internet Security Protocols and Applications (AVISPA), thereby unveiling that SC-ABSE is resistant to man-in-the-middle (MIM) and replay attacks. The experimental analysis utilised real-world datasets to demonstrate the efficiency and utility of SC-ABSE in terms of computation overhead, storage cost and communication overhead. The proposed scheme is also designed and developed to evaluate throughput and latency transactions using a standard benchmark tool known as Caliper. Lastly, simulation results show that SC-ABSE has high throughput and low latency, with an ultimate increase in network life compared with traditional healthcare systems.

Liming Fang,Changchun Yin,Juncen Zhu,Chunpeng Ge,M. Tanveer,Alireza Jolfaei,Zehong Cao

DOI: https://doi.org/10.1145/3408322

2021-01-21

Abstract:In virtue of advances in smart networks and the cloud computing paradigm, smart healthcare is transforming. However, there are still challenges, such as storing sensitive data in untrusted and controlled infrastructure and ensuring the secure transmission of medical data, among others. The rapid development of watermarking provides opportunities for smart healthcare. In this article, we propose a new data-sharing framework and a data access control mechanism. The applications are submitted by the doctors, and the data is processed in the medical data center of the hospital, stored in semi-trusted servers to support the selective sharing of electronic medical records from different medical institutions between different doctors. Our approach ensures that privacy concerns are taken into account when processing requests for access to patients’ medical information. For accountability, after data is modified or leaked, both patients and doctors must add digital watermarks associated with their identification when uploading data. Extensive analytical and experimental results are presented that show the security and efficiency of our proposed scheme.

Bala Gayathri D,D Sangeetha

DOI: https://doi.org/10.3233/THC-240921

2024-08-08

Abstract:Background: In the modern medical industry, sensors and other medical electronic equipment such as ECG, thermometers, etc. that measure vitals like blood pressure, body temperature, heartbeat, and blood cells are used to record patient data. The information gathered helps to create a patient profile, which in turn helps doctors treat patients appropriately and helps users gain insights into their health. But, the information collected is regionally specific and not worldwide. Thus, this may create problems in transparency, integrity, and much more. The medical details of patients collected are stored in a simple database which appears to be a centralized application that is prone to be modified or hacked by intruders and also suffers from fault tolerance. Objective: This paper aims to solve this problem using Blockchain and Data Possession methodologies. Methods: Blockchain helps to store multiple copies of data in a decentralized fashion. Thus, a secured model could be implemented using blockchain in which the patient's data can be securely sent to any medical professional, thus promoting transparency, security, and integrity. Results: Provable Data Possession helps the users to verify that their information is intact and has not been tampered. It can be achieved using cryptography which encrypts the information of the patients stored. Conclusion: This paper will be beneficial for the medical department and the public such that it will be beneficial in terms of transparency, scalability, and security.

Ajitesh Kumar,Akhilesh Kumar Singh,Ijaz Ahmad,Pradeep Kumar Singh,Anushree,Pawan Kumar Verma,Khalid A Alissa,Mohit Bajaj,Ateeq Ur Rehman,Elsayed Tag-Eldin

DOI: https://doi.org/10.3390/s22155921

2022-08-08

Abstract:Nowadays, in a world full of uncertainties and the threat of digital and cyber-attacks, blockchain technology is one of the major critical developments playing a vital role in the creative professional world. Along with energy, finance, governance, etc., the healthcare sector is one of the most prominent areas where blockchain technology is being used. We all are aware that data constitute our wealth and our currency; vulnerability and security become even more significant and a vital point of concern for healthcare. Recent cyberattacks have raised the questions of planning, requirement, and implementation to develop more cyber-secure models. This paper is based on a blockchain that classifies network participants into clusters and preserves a single copy of the blockchain for every cluster. The paper introduces a novel blockchain mechanism for secure healthcare sector data management, which reduces the communicational and computational overhead costs compared to the existing bitcoin network and the lightweight blockchain architecture. The paper also discusses how the proposed design can be utilized to address the recognized threats. The experimental results show that, as the number of nodes rises, the suggested architecture speeds up ledger updates by 63% and reduces network traffic by 10 times.

Priyanka Kumari Bhansali,Dilendra Hiran,Hemant Kothari,Kamal Gulati

DOI: https://doi.org/10.1108/ijpcc-02-2022-0041

2022-05-18

International Journal of Pervasive Computing and Communications

Abstract:Purpose The purpose of this paper Computing is a recent emerging cloud model that affords clients limitless facilities, lowers the rate of customer storing and computation and progresses the ease of use, leading to a surge in the number of enterprises and individuals storing data in the cloud. Cloud services are used by various organizations (education, medical and commercial) to store their data. In the health-care industry, for example, patient medical data is outsourced to a cloud server. Instead of relying onmedical service providers, clients can access theirmedical data over the cloud. Design/methodology/approach This section explains the proposed cloud-based health-care system for secure data storage and access control called hash-based ciphertext policy attribute-based encryption with signature (hCP-ABES). It provides access control with finer granularity, security, authentication and user confidentiality of medical data. It enhances ciphertext-policy attribute-based encryption (CP-ABE) with hashing, encryption and signature. The proposed architecture includes protection mechanisms to guarantee that health-care and medical information can be securely exchanged between health systems via the cloud. Figure 2 depicts the proposed work's architectural design. Findings For health-care-related applications, safe contact with common documents hosted on a cloud server is becoming increasingly important. However, there are numerous constraints to designing an effective and safe data access method, including cloud server performance, a high number of data users and various security requirements. This work adds hashing and signature to the classic CP-ABE technique. It protects the confidentiality of health-care data while also allowing for fine-grained access control. According to an analysis of security needs, this work fulfills the privacy and integrity of health information using federated learning. Originality/value The Internet of Things (IoT) technology and smart diagnostic implants have enhanced health-care systems by allowing for remote access and screening of patients' health issues at any time and from any location. Medical IoT devices monitor patients' health status and combine this information into medical records, which are then transferred to the cloud and viewed by health providers for decision-making. However, when it comes to information transfer, the security and secrecy of electronic health records become a major concern. This work offers effective data storage and access control for a smart healthcare system to protect confidentiality. CP-ABE ensures data confidentiality and also allows control on data access at a finer level. Furthermore, it allows owners to set up a dynamic patients health data sharing policy under the cloud layer. hCP-ABES proposed fine-grained data access, security, authentication and user privacy of medical data. This paper enhances CP-ABE with hashing, encryption and signature. The proposed method has been evaluated, and the results signify that the proposed hCP-ABES is feasible compared to other access control schemes using federated learning.

Deepa Kumari,Abhirath Singh Parmar,Harshvadhan Sunil Goyal,Kushal Mishra,Subhrakanta Panda

DOI: https://doi.org/10.1016/j.comnet.2024.110223

IF: 5.493

2024-02-07

Computer Networks

Abstract:Many researchers in recent years have shown a keen interest in finding a feasible and appropriate solution for storing big medical data, mainly on cloud-based storage using centralized architectures. But, there are some challenges, like ownership of data, interoperability with other platforms, fault tolerance, and security and privacy issues in implementing a cloud-based storage architecture. So, it is necessary to design a reliable architecture to overcome all these constraints and limitations. This paper proposes a patient-centric framework called HealthRec-Chain to store and share susceptible medical reports and images. The proposed HealthRec-Chain framework uses distributed file system technology called Interplanetary file system (IPFS) to store automated encrypted health records through Java-enabled GPG encryption to provide high-level security and privacy. It demonstrates the layered approach for HealthRec-Chains through an experimental setup in a given simulation environment. HealthRec-Chain justifies its feasibility by uniquely building a personalized Ethereum dashboard to monitor performance. It also measures a network hash rate to find the security attack's difficulty. It proposes manual benchmarking for measuring its performance parameters. Also, the proposed work compares the existing framework with different performance metrics like latency, throughput, scalability, ease of use, etc. Hence, it validates the feasibility of HealthRec-Chain in a unified view of the solution's healthcare security, privacy, and scalability.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Gaoyuan Quan,Zhongyuan Yao,Longfei Chen,Yonghao Fang,Weihua Zhu,Xueming Si,Min Li

DOI: https://doi.org/10.1016/j.heliyon.2023.e22542

IF: 3.776

2023-01-01

Heliyon

Abstract:Traditional cloud-centric approaches to medical data sharing pose risks related to real-time performance, security, and stability. Medical and healthcare data encounter challenges like data silos, privacy breaches, and transmission latency. In response to these challenges, this paper introduces a blockchain-based framework for trustworthy medical data sharing in edge computing environments. Leveraging healthcare consortium edge blockchains, this framework enables fine-grained access control to medical data. Specifically, it addresses the real-time, multi-attribute authorization challenge in CP-ABE through a Distributed Attribute Authorization strategy (DAA) based on blockchain. Furthermore, it tackles the key security issues in CP-ABE through a Distributed Key Generation protocol (DKG) based on blockchain. To address computational resource constraints in CP-ABE, we enhance a Distributed Modular Exponentiation Outsourcing algorithm (DME) and elevate its verifiable probability to “1”. Theoretical analysis establishes the IND-CPA security of this framework in the Random Oracle Model. Experimental results demonstrate the effectiveness of our solution for resource-constrained end-user devices in edge computing environments.

Amit Kumar Jakhar,Mrityunjay Singh,Rohit Sharma,Wattana Viriyasitavat,Gaurav Dhiman,Shubham Goel

DOI: https://doi.org/10.1007/s11042-024-18827-3

IF: 2.577

2024-03-20

Multimedia Tools and Applications

Abstract:Healthcare data is crucial and sensitive, as it contains absolute information about a patient's medical history, treatments, and actions; this information gets shared among the stakeholders on a routine basis. Patients' information is vital and should be kept accurate, up-to-date, and secret; it should be available only to authorized users. Most of the existing systems are centralized and may breach data privacy. This study mainly focuses on protecting the privacy and security of sensitive healthcare data while sharing with multiple stakeholders. This work presents a privacy-preserving and access-control blockchain-based framework that uses consensus-driven decentralized data management on top of peer-to-peer distributed computing platforms to ensure the privacy, security, accessibility, and integrity of healthcare data. Blockchain technology helps to protect transactions from manipulation due to its features of irreversibility and immutability. Additionally, we thoroughly examine the security requirements afforded by blockchain-enabled systems by incorporating stakeholders like patients, doctors, chemists, and pathology labs as system entities; they can only share information through a proper channel. The proposed framework has been implemented and evaluated using Hyperledger Fabric. We observe that the proposed framework reveals promising benefits in security, regulation compliance, reliability, flexibility, and accuracy.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

K Vivekrabinson,K Ragavan,P Jothi Thilaga,J Bharath Singh,Vivekrabinson, K

DOI: https://doi.org/10.1007/s10916-024-02053-3

IF: 4.92

2024-03-26

Journal of Medical Systems

Abstract:In today's data-driven world, the exponential growth of digital information poses significant challenges in data management. In recent years, the adoption of cloud-based Electronic Health Records (EHR) sharing schemes has yielded numerous advantages like improved accessibility, availability, and enhanced interoperability. However, the centralized nature of cloud storage presents challenges in terms of information storage, privacy protection, and security. Despite several approaches that have been presented to ensure secure deduplication of similar EHRs, the validation of data integrity without a third-party auditor (TPA) remains a persistent task. Because involving a TPA raises concerns about the confidentiality and privacy of crucial healthcare information. To tackle this challenge, a novel cloud storage auditing technique is proposed that incorporates cross-patient block-level deduplication while upholding strong privacy protection, ensuring that EHR is not compromised. Here, we introduced blockchain technology to achieve integrity verification, thus eliminating the need for a TPA by providing a decentralized and transparent mechanism. Additionally, an index for all EHRs has been generated to facilitate block-level duplicate checks and employ a novel strategy to prevent adversaries from acquiring original information saved in the cloud storage. The security of the proposed approach is established against factorization attacks and decrypt exponent attacks. The performance evaluation demonstrates the superior efficiency of the proposed scheme in terms of file authenticator generation, challenge creation, and proof verification to other existing client-side deduplication approaches.

health care sciences & services,medical informatics

Shihong Zou,Qiang Cao,Chonghui Huangqi,Anpeng Huang,Yanping Li,Chenyu Wang,Guoai Xu

DOI: https://doi.org/10.1109/jiot.2024.3406561

IF: 10.6

2024-08-25

IEEE Internet of Things Journal

Abstract:As well known, Internet of Medical Things (IoMT) produces large amounts of medical data and promotes the medical data sharing which serves the data user (i.e., physicians) to boost the clinical treatment and medical research. To protect data user's privacy and data security during the sharing of medical data, the data user must have a self-sovereign decentralized identity (DID) and data access authority. In existing solutions, data user's privacy protection and authentication-key-agreement (AKA) for protecting data security are worked independently, which easily results in typical security attacks (e.g., phishing inquiry attacks and ephemeral secret leakage attacks) during data access and system computing overload. To solve the challenge, a new credential-embedded AKA (CAKA) scheme is proposed, which can seamlessly combine DID-credentials into AKA. First, CAKA supports bilateral authentication by allowing a digital user to authenticate its service provider, which can enhance the security of unilateral scheme (such as CanDID, IEEE S&P, 2021) and prevent phishing query attacks. Second, for secure data session communication, the user's DID-credentials are used as the kernel of the session key (SK) generation. In security analysis and performance metrics comparisons, the results indicate that CAKA holds a significant advantage, especially, the storage costs, communication costs, and computation costs consumed in CAKA are at least 43% reduction, compared to the alternatives. In simulation experiments of CAKA, the results show that DID authentication and SK agreement are both less than 15 ms, that means CAKA is a practical and promising solution to medical data sharing.

computer science, information systems,telecommunications,engineering, electrical & electronic

Toomas Klementi,Gunnar Piho,Peeter Ross

DOI: https://doi.org/10.3389/fmed.2024.1411013

IF: 3.9

2024-07-16

Frontiers in Medicine

Abstract:Introduction This paper addresses the dilemmas of accessibility, comprehensiveness, and ownership related to health data. To resolve these dilemmas, we propose and justify a novel, globally scalable reference architecture for a Personal Health Data Space (PHDS). This architecture leverages decentralized content-addressable storage (DCAS) networks, ensuring that the data subject retains complete control and ownership of their personal health data. In today's globalized world, where people are increasingly mobile for work and leisure, healthcare is transitioning from episodic symptom-based treatment toward continuity of care. The main aims of this are patient engagement, illness prevention, and active and healthy longevity. This shift, along with the secondary use of health data for societal benefit, has intensified the challenges associated with health data accessibility, comprehensiveness, and ownership. Method The study is structured around four health data use case scenarios from the Estonian National Health Information System (EHIS): primary medical use, medical emergency use, secondary use, and personal use. We analyze these use cases from the perspectives of accessibility, comprehensiveness, and ownership. Additionally, we examine the security, privacy, and interoperability aspects of health data. Results The proposed architectural solution allows individuals to consolidate all their health data into a unified Personal Health Record (PHR). This data can come from various healthcare institutions, mobile applications, medical devices for home use, and personal health notes. Discussions The comprehensive PHR can then be shared with healthcare providers in a semantically interoperable manner, regardless of their location or the information systems they use. Furthermore, individuals maintain the autonomy to share, sell, or donate their anonymous or pseudonymous health data for secondary use with different systems worldwide. The proposed reference architecture aligns with the principles of the European Health Data Space (EHDS) initiative, enhancing health data management by providing a secure, cost-effective, and sustainable solution.

medicine, general & internal