Jinfei Liu,Li Xiong

DOI: https://doi.org/10.1007/978-3-319-41576-5_5

2015-01-01

Abstract:Up till now, most medical treatments are designed for average patients. However, one size doesn't fit all, treatments that work well for some patients may not work for others. Precision medicine is an emerging approach for disease treatment and prevention that takes into account individual variability in people's genes, environments, lifestyles, etc. A critical component for precision medicine is to search existing treatments for a new patient by similarity queries. However, this also raises significant concerns about patient privacy, i.e., how such sensitive medical data would be managed and queried while ensuring patient privacy? In this paper, we (1) briefly introduce the background of the precision medicine initiative, (2) review existing secure kNN queries and introduce a new class of secure skyline queries, (3) summarize the challenges and investigate potential techniques for secure skyline queries.

Xiaoliang Wang,Liang Bai,Qing Yang,Liu Wang,Frank Jiang

DOI: https://doi.org/10.1016/j.jisa.2019.04.010

IF: 4.96

2019-01-01

Journal of Information Security and Applications

Abstract:With the development of wireless sensor network and internet, ubiquitous eHealth care systems are booming. However, a great deal of data computing and storage processing restrict the scalability of ubiquitous eHealth. As a solution, cloud-based eHealth is coming up. However, using cloud-computing model often causes some privacy concerns. Massive medical data in eHealth system contain numerous sensitive information and electronic health records of users. Meanwhile, if data encryption is adopted to protect privacy, cloud center cannot process data. To solve this problem, a scheme based on fully homomorphism conception for privacy protection and data processing of eHealth is proposed in this paper. Our scheme not only meets the aforementioned dual requirements but also limit the arbitrary actions of patients and doctors.

Xiaojie Zhu,Erman Ayday,Roman Vitenberg,Narasimha Raghavan Veeraragavan

DOI: https://doi.org/10.48550/arXiv.1912.02045

2020-02-04

Abstract:In this paper, we attempt to provide a privacy-preserving and efficient solution for the "similar patient search" problem among several parties (e.g., hospitals) by addressing the shortcomings of previous attempts. We consider a scenario in which each hospital has its own genomic dataset and the goal of a physician (or researcher) is to search for a patient similar to a given one (based on a genomic makeup) among all the hospitals in the system. To enable this search, we let each hospital encrypt its dataset with its own key and outsource the storage of its dataset to a public cloud. The physician can get authorization from multiple hospitals and send a query to the cloud, which efficiently performs the search across authorized hospitals using a privacy-preserving index structure. We propose a hierarchical index structure to index each hospital's dataset with low memory requirements. Furthermore, we develop a novel privacy-preserving index merging mechanism that generates a common search index from individual indices of each hospital to significantly improve the search efficiency. We also consider the storage of medical information associated with genomic data of a patient (e.g., diagnosis and treatment). We allow access to this information via a fine-grained access control policy that we develop through the combination of standard symmetric encryption and ciphertext policy attribute-based encryption. Using this mechanism, a physician can search for similar patients and obtain medical information about the matching records if the access policy holds. We conduct experiments on large-scale genomic data and show the efficiency of the proposed scheme. Notably, we show that under our experimental settings, the proposed scheme is more than $60$ times faster than Wang et al.'s protocol and $95$ times faster than Asharov et al.'s solution.

Cryptography and Security

Dan Zhu,Hui Zhu,Xiangyu Wang,Rongxing Lu,Dengguo Feng

DOI: https://doi.org/10.1109/tcc.2021.3131287

IF: 5.697

2023-01-01

IEEE Transactions on Cloud Computing

Abstract:Over the past decade, genomic data has grown exponentially and is widely used in promising medical and health-related applications, which opens up new opportunities for the field of medicine. Similar patients query (SPQ), which can help physicians formulate an optimal therapy, is one of such popular applications. Despite its popularity, since human genomes are usually highly sensitive, a series of policies have been launched by the government to strictly control its acquisitions and utilization. Thus, how to prevent privacy disclosure becomes of great importance to the flourish of SPQ services. In this article, aiming at the above challenge, we first design a novel genetic BK-tree (GBK-tree) for a genomic database. Then, combined with a random sorting mechanism and some existing encryption techniques, we propose an efficient and privacy-preserving similar patients query scheme over encrypted cloud data, named CASPER. With CASPER, a medical institution can securely outsource its private genomic database to a cloud server, and physicians can request SPQ services from the cloud server while keeping her/his query secret. Detailed security analysis shows that CASPER can preserve privacy in the presence of different threats. Furthermore, extensive performance evaluations demonstrate the high accuracy and efficiency of our proposed scheme.

Gilad Asharov,Shai Halevi,Yehuda Lindell,Tal Rabin

DOI: https://doi.org/10.1515/popets-2018-0034

2018-08-29

Proceedings on Privacy Enhancing Technologies

Abstract:Abstract The growing availability of genomic data holds great promise for advancing medicine and research, but unlocking its full potential requires adequate methods for protecting the privacy of individuals whose genome data we use. One example of this tension is running Similar Patient Query on remote genomic data: In this setting a doctor that holds the genome of his/her patient may try to find other individuals with “close” genomic data, and use the data of these individuals to help diagnose and find effective treatment for that patient’s conditions. This is clearly a desirable mode of operation. However, the privacy exposure implications are considerable, and so we would like to carry out the above “closeness” computation in a privacy preserving manner. In this work we put forward a new approach for highly efficient secure computation for computing an approximation of the Similar Patient Query problem. We present contributions on two fronts. First, an approximation method that is designed with the goal of achieving efficient private computation. Second, further optimizations of the two-party protocol. Our tests indicate that the approximation method works well, it returns the exact closest records in 98% of the queries and very good approximation otherwise. As for speed, our protocol implementation takes just a few seconds to run on databases with thousands of records, each of length thousands of alleles, and it scales almost linearly with both the database size and the length of the sequences in it. As an example, in the datasets of the recent iDASH competition, after a one-time preprocessing of around 12 seconds, it takes around a second to find the nearest five records to a query, in a size-500 dataset of length- 3500 sequences. This is 2-3 orders of magnitude faster than using state-of-the-art secure protocols with existing edit distance algorithms.

Md Nazmus Sadat,Md Momin Al Aziz,Noman Mohammed,Feng Chen,Shuang Wang,Xiaoqian Jiang

DOI: https://doi.org/10.48550/arXiv.1703.02577

2017-03-08

Abstract:Recent studies demonstrate that effective healthcare can benefit from using the human genomic information. For instance, analysis of tumor genomes has revealed 140 genes whose mutations contribute to cancer. As a result, many institutions are using statistical analysis of genomic data, which are mostly based on genome-wide association studies (GWAS). GWAS analyze genome sequence variations in order to identify genetic risk factors for diseases. These studies often require pooling data from different sources together in order to unravel statistical patterns or relationships between genetic variants and diseases. In this case, the primary challenge is to fulfill one major objective: accessing multiple genomic data repositories for collaborative research in a privacy-preserving manner. Due to the sensitivity and privacy concerns regarding the genomic data, multi-jurisdictional laws and policies of cross-border genomic data sharing are enforced among different regions of the world. In this article, we present SAFETY, a hybrid framework, which can securely perform GWAS on federated genomic datasets using homomorphic encryption and recently introduced secure hardware component of Intel Software Guard Extensions (Intel SGX) to ensure high efficiency and privacy at the same time. Different experimental settings show the efficacy and applicability of such hybrid framework in secure conduction of GWAS. To the best of our knowledge, this hybrid use of homomorphic encryption along with Intel SGX is not proposed or experimented to this date. Our proposed framework, SAFETY is up to 4.82 times faster than the best existing secure computation technique.

Cryptography and Security

Mete Akgün,Nico Pfeifer,Oliver Kohlbacher

DOI: https://doi.org/10.1093/bioinformatics/btac070

IF: 5.8

2022-02-12

Bioinformatics

Abstract:Abstract Motivation Diagnosis and treatment decisions on genomic data have become widespread as the cost of genome sequencing decreases gradually. In this context, disease–gene association studies are of great importance. However, genomic data are very sensitive when compared to other data types and contains information about individuals and their relatives. Many studies have shown that this information can be obtained from the query-response pairs on genomic databases. In this work, we propose a method that uses secure multi-party computation to query genomic databases in a privacy-protected manner. The proposed solution privately outsources genomic data from arbitrarily many sources to the two non-colluding proxies and allows genomic databases to be safely stored in semi-honest cloud environments. It provides data privacy, query privacy and output privacy by using XOR-based sharing and unlike previous solutions, it allows queries to run efficiently on hundreds of thousands of genomic data. Results We measure the performance of our solution with parameters similar to real-world applications. It is possible to query a genomic database with 3 000 000 variants with five genomic query predicates under 400 ms. Querying 1 048 576 genomes, each containing 1 000 000 variants, for the presence of five different query variants can be achieved approximately in 6 min with a small amount of dedicated hardware and connectivity. These execution times are in the right range to enable real-world applications in medical research and healthcare. Unlike previous studies, it is possible to query multiple databases with response times fast enough for practical application. To the best of our knowledge, this is the first solution that provides this performance for querying large-scale genomic data. Availability and implementation https://gitlab.com/DIFUTURE/privacy-preserving-variant-queries. Supplementary information Supplementary data are available at Bioinformatics online.

biochemical research methods,biotechnology & applied microbiology,mathematical & computational biology

Yandong Zheng,Rongxing Lu,Jun Shao,Yonggang Zhang,Hui Zhu

DOI: https://doi.org/10.1109/wcsp.2019.8927885

2019-01-01

Abstract:Genomic data have seen tremendous growth recently due to the advancement in DNA sequencing technologies and are being generated at an ever-higher velocity. The similarity between two genomic data records can be measured by the edit distance, which has significant applications in disease diagnosis and treatment. At the same time, due to the limited storage and computational resources at the local data owner, a typical solution for the edit distance computation is to outsource the genomic data to a powerful cloud. However, as the genomic data are sensitive and the cloud server is not fully trusted, there are privacy considerations during the edit distance computation. Apart from data privacy, efficiency also needs to be taken into consideration. In order to deal with the privacy and efficiency issues, in this paper, we propose an efficient and privacy-preserving edit distance computation scheme for a single data owner and single cloud server scenario. In specific, we first design an index technique to reduce the computational cost and communication overhead of the genomic data outsourcing, and introduce a fast edit distance computation technique to speed up the edit distance query. Then, we propose an efficient and privacy-preserving edit distance computation scheme by deploying the homomorphic encryption technique, which can well preserve the private information including genomic data records and edit distances. Besides, security analysis shows that the proposed scheme is privacy-preserving and performance evaluation validates the efficiency of the proposed scheme.

Jie Xu,Zhenxing Xu,Peter Walker,Fei Wang

DOI: https://doi.org/10.1609/aaai.v34i04.6121

2020-01-01

Proceedings of the AAAI Conference on Artificial Intelligence

Abstract:Privacy concerns on sharing sensitive data across institutions are particularly paramount for the medical domain, which hinders the research and development of many applications, such as cohort construction for cross-institution observational studies and disease surveillance. Not only that, the large volume and heterogeneity of the patient data pose great challenges for retrieval and analysis. To address these challenges, in this paper, we propose a Federated Patient Hashing (FPH) framework, which collaboratively trains a retrieval model stored in a shared memory while keeping all the patient-level information in local institutions. Specifically, the objective function is constructed by minimization of a similarity preserving loss and a heterogeneity digging loss, which preserves both inter-data and intra-data relationships. Then, by leveraging the concept of Bregman divergence, we implement optimization in a federated manner in both centralized and decentralized learning settings, without accessing the raw training data across institutions. In addition to this, we also analyze the convergence rate of the FPH framework. Extensive experiments on real-world clinical data set from critical care are provided to demonstrate the effectiveness of the proposed method on similar patient matching across institutions.

Chang Xu,Zijian Chan,Liehuang Zhu,Rongxing Lu,Yunguo Guan,Kashif Sharif

DOI: https://doi.org/10.1016/j.csi.2023.103746

2023-04-14

Abstract:The advancements and adoption of cloud-assisted ehealthcare systems have enabled the storage of massive electronic medical records (EMRs) in the cloud for efficient and easy access. A direct benefit of EMRs is the ability of patients to search for EMRs that are similar to their own in the cloud for use as references. These similar EMRs can help a patient find appropriate medical services quickly. However, for large-scale ehealthcare systems, challenges remain with respect to ensuring the efficiency and privacy of these queries. In this study, we construct an efficient and privacy-preserving similar EMR query scheme to help patients find similar EMRs to reference in a large-scale ehealthcare system. Specifically, we propose a coarse-grained query method based on a binary decision tree to find a set of EMRs corresponding to the patient's set of medical-symptom keywords. We also design a fine-grained query method to find similar EMRs that meet the threshold set by the patient. A detailed security analysis shows that the proposed scheme is secure. The efficiency of the proposed method in a large-scale ehealthcare system is verified experimentally.

computer science, software engineering, hardware & architecture

Jiawei Yuan,Bradley Malin,Francois Modave,Yi Guo,William R. Hogan,Elizabeth Shenkman,Jiang Bian

DOI: https://doi.org/10.1016/j.jbi.2016.12.008

IF: 8

2017-01-01

Journal of Biomedical Informatics

Abstract:Background: The last few years have witnessed an increasing number of clinical research networks (CRNs) focused on building large collections of data from electronic health records (EHRs), claims, and patient-reported outcomes (PROs). Many of these CRNs provide a service for the discovery of research cohorts with various health conditions, which is especially useful for rare diseases.Background: Supporting patient privacy can enhance the scalability and efficiency of such processes; however, current practice mainly relies on policy, such as guidelines defined in the Health Insurance Portability and Accountability Act (HIPAA), which are insufficient for CRNs (e.g., HIPAA does not require encryption of data which can mitigate insider threats). By combining policy with privacy enhancing technologies we can enhance the trustworthiness of CRNs. The goal of this research is to determine if searchable encryption can instill privacy in CRNs without sacrificing their usability.Methods: We developed a technique, implemented in working software to enable privacy-preserving cohort discovery (PPCD) services in large distributed CRNs based on elliptic curve cryptography (ECC). This technique also incorporates a block indexing strategy to improve the performance (in terms of computational running time) of PPCD. We evaluated the PPCD service with three real cohort definitions: (1) elderly cervical cancer patients who underwent radical hysterectomy, (2) oropharyngeal and tongue cancer patients who underwent robotic transoral surgery, and (3) female breast cancer patients who underwent mastectomy) with varied query complexity. These definitions were tested in an encrypted database of 7.1 million records derived from the publically available Healthcare Cost and Utilization Project (HCUP) Nationwide Inpatient Sample (NIS). We assessed the performance of the PPCD service in terms of (1) accuracy in cohort discovery, (2) computational running time, and (3) privacy. afforded to the underlying records during PPCD.Results: The empirical results indicate that the proposed PPCD can execute cohort discovery queries in a reasonable amount of time, with query runtime in the range of 165-262 s for the 3 use cases, with zero compromise in accuracy. We further show that the search performance is practical because it supports a highly parallelized design for secure evaluation over encrypted records. Additionally, our security analysis shows that the proposed construction is resilient to standard adversaries.Conclusions: PPCD services can be designed for clinical research networks. The security construction presented in this work specifically achieves high privacy guarantees by preventing both threats originating from within and beyond the network. (C) 2016 Elsevier Inc. All rights reserved.

Yaxi Yang,Jian Weng,Yao Tong,Jia-Nan Liu,Zhenghao Wu,Leo Yu Zhang,Anjia Yang

DOI: https://doi.org/10.1109/tdsc.2023.3266292

2024-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Presently, similar sequence search is a fundamental technique in genomic data research. Patients or researchers, who want to check whether they or their research objects have genetic diseases or potential illnesses, need to query similar sequences with their genes in certain genomic databases. As a consequence, this may raise privacy issues since the genomic data are regarded as an identifier of each individual and contain lots of sensitive information. Up to date, some solutions have been brought up for achieving secure similarity search over genomic data, but they are still defective in searching exact similar sequences, supporting fine-grained access control, preventing side information leakage, and being built on strong security models at the same time. In this paper, aiming at the above challenge, we propose a maliciously secure similar sequence search scheme with fine-grained access control over genomic data, named PriGenX. Based on oblivious transfer and authenticated garbling techniques, our scheme also supports secure access control with anonymity for protecting the identity of each party preventing side information leakage, and implementing a flexible over-threshold similarity search. Experimental results and security analysis indicate that our scheme is scalable and maliciously secure.

Zian Zhang,Haiyong Bao,Rongxing Lu,Cheng Huang,Beibei Li

DOI: https://doi.org/10.1109/jiot.2023.3317334

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:Extensive research has been conducted on efficient and privacy-preserving similarity queries in eHealthcare, aiming at disease diagnosis based on similar patients while protecting the outsourced sensitive healthcare data. In this article, a new secure similarity query scheme named keyword-oriented multidimensional similarity query (KMSQ) is proposed for eHealthcare. Different from the state-of-the-art similar works, our proposed scheme enables users to query historical similar patients' records based on their multidimensional physiological characteristics and symptom keywords (two data types) at the same time. Although the query can be securely performed sequentially by formerly proposed schemes, we carefully tailor a binary-decision-PB ( BD-PB) tree to index the two data types simultaneously for efficient queries. Furthermore, inspired by the Hilbert exclusion condition and the properties of the polynomial function, an efficient query algorithm based on the BD-PB tree is designed in a filtration-verification manner, which further greatly improves the computational efficiency of queries, especially on the server side. To ensure secure query on untrusted clouds, the BD-PB tree-based KMSQ is protected through multiple encryption techniques. Specifically, function-hiding inner product preserving encryption (FHIPPE) is modified and combined with a lightweight matrix encryption technique to achieve secure data filtration. In addition, a symmetric homomorphic encryption (SHE) scheme is utilized to ensure secure verification that each candidate record in the filtration result satisfies the query requirements. Security analysis demonstrates the modified FHIPPE (MFHIPPE) and our proposed scheme meet the necessary security properties under the honest-but-curious model. Finally, extensive experiments are also conducted to show that KMSQ is computationally efficient.

Wang Chenghong,Yichen Jiang,Noman Mohammed,Feng Chen,Xiaoqian Jiang,Md Momin Al Aziz,Md Nazmus Sadat,Shuang Wang

2018-04-16

Abstract:As genomic data are usually at large scale and highly sensitive, it is essential to enable both efficient and secure analysis, by which the data owner can securely delegate both computation and storage on untrusted public cloud. Counting query of genotypes is a basic function for many downstream applications in biomedical research (e.g., computing allele frequency, calculating chi-squared statistics, etc.). Previous solutions show promise on secure counting of outsourced data but the efficiency is still a big limitation for real world applications. In this paper, we propose a novel hybrid solution to combine a rigorous theoretical model (homomorphic encryption) and the latest hardware-based infrastructure (i.e., Software Guard Extensions) to speed up the computation while preserving the privacy of both data owners and data users. Our results demonstrated efficiency by using the real data from the personal genome project.

Yuchen Zhang,Wenrui Dai,Xiaoqian Jiang,Hongkai Xiong,Shuang Wang

DOI: https://doi.org/10.1186/1472-6947-15-s5-s5

IF: 3.298

2015-01-01

BMC Medical Informatics and Decision Making

Abstract:Background: The increasing availability of genome data motivates massive research studies in personalized treatment and precision medicine. Public cloud services provide a flexible way to mitigate the storage and computation burden in conducting genome-wide association studies (GWAS). However, data privacy has been widely concerned when sharing the sensitive information in a cloud environment.Methods: We presented a novel framework (FORESEE: Fully Outsourced secuRe gEnome Study basEd on homomorphic Encryption) to fully outsource GWAS (i.e., chi-square statistic computation) using homomorphic encryption. The proposed framework enables secure divisions over encrypted data. We introduced two division protocols (i.e., secure errorless division and secure approximation division) with a trade-off between complexity and accuracy in computing chi-square statistics.Results: The proposed framework was evaluated for the task of chi-square statistic computation with two case-control datasets from the 2015 iDASH genome privacy protection challenge. Experimental results show that the performance of FORESEE can be significantly improved through algorithmic optimization and parallel computation. Remarkably, the secure approximation division provides significant performance gain, but without missing any significance SNPs in the chi-square association test using the aforementioned datasets.Conclusions: Unlike many existing HME based studies, in which final results need to be computed by the data owner due to the lack of the secure division operation, the proposed FORESEE framework support complete outsourcing to the cloud and output the final encrypted chi-square statistics.

Yuchen Zhang,H. Xiong,K. Lauter,Xiaoqian Jiang

2015-01-01

Abstract:The biomedical community benefits from the increasing availability of genomic data, which enables institutions and researchers to develop personalized treatment and discover precision medicine. However, privacy and confidentiality of genomic data have been becoming a major concern for both patients and researchers in the data storage, transfer and analysis phases. In this paper, we proposed protocols for Secure Editdistance Computation over homomoRphic Encrypted daTa (SECRET), which leverages Homomorphic Encryption (HME) to securely outsource both genomic data and edit-distance computation in an untrusted cloud environment without sacrificing data privacy. The proposed SECRET protocols develop both binary-vector HME comparison primitives and improved integer based counterparts for exact edit distance computation. Furthermore, we improved the efficiency of secure edit distance calculation by using an optimized pathfinding based approach. Parallel implementation is also investigated to improve the performance in concurrently calculating multiple sequence pairs. Experimental results demonstrate that the computational costs of the proposed protocol are significantly reduced in comparison to the existing state-of-the-art HME-based method.

Feng Chen,Chenghong Wang,Wenrui Dai,Xiaoqian Jiang,Noman Mohammed,Md Momin Al Aziz,Md Nazmus Sadat,Cenk Sahinalp,Kristin Lauter,Shuang Wang

DOI: https://doi.org/10.1186/s12920-017-0281-2

2017-07-01

BMC Medical Genomics

Abstract:BackgroundAdvances in DNA sequencing technologies have prompted a wide range of genomic applications to improve healthcare and facilitate biomedical research. However, privacy and security concerns have emerged as a challenge for utilizing cloud computing to handle sensitive genomic data.MethodsWe present one of the first implementations of Software Guard Extension (SGX) based securely outsourced genetic testing framework, which leverages multiple cryptographic protocols and minimal perfect hash scheme to enable efficient and secure data storage and computation outsourcing.ResultsWe compared the performance of the proposed PRESAGE framework with the state-of-the-art homomorphic encryption scheme, as well as the plaintext implementation. The experimental results demonstrated significant performance over the homomorphic encryption methods and a small computational overhead in comparison to plaintext implementation.ConclusionsThe proposed PRESAGE provides an alternative solution for secure and efficient genomic data outsourcing in an untrusted cloud by using a hybrid framework that combines secure hardware and multiple crypto protocols.

genetics & heredity

Charlotte Bonte,Eleftheria Makri,Amin Ardeshirdavani,Jaak Simm,Yves Moreau,Frederik Vercauteren

DOI: https://doi.org/10.1186/s12859-018-2541-3

IF: 3.307

2018-12-01

BMC Bioinformatics

Abstract:BackgroundThe deployment of Genome-wide association studies (GWASs) requires genomic information of a large population to produce reliable results. This raises significant privacy concerns, making people hesitate to contribute their genetic information to such studies.ResultsWe propose two provably secure solutions to address this challenge: (1) a somewhat homomorphic encryption (HE) approach, and (2) a secure multiparty computation (MPC) approach. Unlike previous work, our approach does not rely on adding noise to the input data, nor does it reveal any information about the patients. Our protocols aim to prevent data breaches by calculating the χ2 statistic in a privacy-preserving manner, without revealing any information other than whether the statistic is significant or not. Specifically, our protocols compute the χ2 statistic, but only return a yes/no answer, indicating significance. By not revealing the statistic value itself but only the significance, our approach thwarts attacks exploiting statistic values. We significantly increased the efficiency of our HE protocols by introducing a new masking technique to perform the secure comparison that is necessary for determining significance.ConclusionsWe show that full-scale privacy-preserving GWAS is practical, as long as the statistics can be computed by low degree polynomials. Our implementations demonstrated that both approaches are efficient. The secure multiparty computation technique completes its execution in approximately 2 ms for data contributed by one million subjects.

biochemical research methods,biotechnology & applied microbiology,mathematical & computational biology

Yanmin Gong,Chi Zhang,Yaodan Hu,Yuguang Fang

DOI: https://doi.org/10.1109/glocom.2016.7842172

2016-01-01

Abstract:Using genetic profiles of individuals for tailored diagnosis and treatment has great promise in the healthcare industry. Despite of the rapid growth in genome-aware medicine, genome-aware health monitoring has not been studied as well. A major stumbling block is the privacy issues of such applications. In addition to privacy concerns in a traditional health monitoring system, i.e., the privacy of users' biomedical sensing data and the protection of the proprietary health monitoring program, severe privacy concerns arise when users' genomic data are integrated into the health monitoring program due to the reidentification and phenotype attacks based on the DNA profile and the relevance of DNA information in a family. In this paper, we investigate these privacy risks and propose a privacy-preserving approach for genome-aware health monitoring. In our approach, users can only learn the diagnostic results based on their genomic and biomedical sensing data, while the the healthcare service provider learns nothing. Security analysis and performance evaluations are conducted to illustrate the effectiveness and efficiency of the proposed approach.

Xiaosan Lei,Xiaoyan Zhu,Haotian Chi,Shunrong Jiang

DOI: https://doi.org/10.1109/iccchina.2015.7448649

2015-01-01

Abstract:The rapid development of genomic technologies, especially the DNA sequencing progress, greatly decreases the costs in genome sequencing, which leads to a high availability of genomic data in the near future (e.g., medical test and healthcare). Meanwhile, the increasing popularity of smartphones and mobile connectivity makes it an inevitable trend to use genomic data on mobile devices. However, since one's genomic information is the ultimate identifier of an individual and contains sensitive private data (e.g., disease predispositions, ancestry information, etc.), the use of genomic data may raise serious privacy concerns. Therefore, it is necessary to find ways of using genomic data on mobile devices without disclosure and abuse of the individual's privacy. In this paper, we provide a general framework for storing and processing genomic data privately, in which dynamic symmetric searchable encryption (DSSE) is employed for users to efficiently retrieve their needed genomic data from the Cloud Storage Provider (CSP). Then, users can implement the genetic disease susceptibility test with these genomic data on their mobile devices. Our proposed framework can achieve a higher privacy preserving level at a lower computation cost. Performance evaluation shows the effectiveness and practicality of the proposed scheme.