Jinguang Han,Liqun Chen,Steve Schneider,Helen Treharne,Steve Wesemeyer

DOI: https://doi.org/10.48550/arXiv.1706.03016

2018-06-26

Abstract:Electronic tickets (e-tickets) are electronic versions of paper tickets, which enable users to access intended services and improve services' efficiency. However, privacy may be a concern of e-ticket users. In this paper, a privacy-preserving electronic ticket scheme with attribute-based credentials is proposed to protect users' privacy and facilitate ticketing based on a user's attributes. Our proposed scheme makes the following contributions: (1) users can buy different tickets from ticket sellers without releasing their exact attributes; (2) two tickets of the same user cannot be linked; (3) a ticket cannot be transferred to another user; (4) a ticket cannot be double spent; (5) the security of the proposed scheme is formally proven and reduced to well known (q-strong Diffie-Hellman) complexity assumption; (6) the scheme has been implemented and its performance empirically evaluated. To the best of our knowledge, our privacy-preserving attribute-based e-ticket scheme is the first one providing these five features. Application areas of our scheme include event or transport tickets where users must convince ticket sellers that their attributes (e.g. age, profession, location) satisfy the ticket price policies to buy discounted tickets. More generally, our scheme can be used in any system where access to services is only dependent on a user's attributes (or entitlements) but not their identities.

Cryptography and Security

Jaap-Henk Hoepman

DOI: https://doi.org/10.48550/arXiv.2101.09085

2021-01-22

Abstract:This paper studies how to implement a privacy friendly form of ticketing for public transport in practice. The protocols described are inspired by current (privacy invasive) public transport ticketing systems used around the world. The first protocol emulates paper based tickets. The second protocol implements a pay-as-you-go approach, with fares determined when users check-in and check-out. Both protocols assume the use of a smart phone as the main user device to store tickets or travel credit. We see this research as a step towards investigating how to design commonly used infrastructure in a privacy friendly manner in practice, paying particular attention to how to deal with failures.

Cryptography and Security

Hongkai Wang,Yiyang Yao,Qitong Hou,Xiaoyi Wang,Lei Zeng,Weiwei Qiu,Dong He,Qiang Wang

DOI: https://doi.org/10.1109/SSCI47803.2020.9308362

2020-01-01

Abstract:This paper proposes and designs a work ticket system based on blockchain technology to realize employee identity authentication, credible management of work ticket status circulation, and authority control. Allow users to fully control the private key and store it locally, effectively avoiding large-scale information leakage. After the work ticket data is encrypted with a hash algorithm, the private key is used to sign it for storage on the blockchain, which ensures that the work ticket data cannot be tampered with or forged, and the person responsible can be accurately located based on the signature information. In the circulation of work tickets from the distribution to the receiving state, in order to distribute the work tickets to the corresponding receivers more reasonably, this paper combines the Analytic Hierarchy Process in operations research to design the work ticket scheduling algorithm and the contrast matrix is used to define the weights of various characteristics of the receivers, and after the consistency check, the receiver with the highest score is calculated, making the system more intelligent and efficient.

Ghada Arfaoui,Jean-François Lalande,Jacques Traoré,Nicolas Desmoulins,Pascal Berthomé,Saïd Gharout

DOI: https://doi.org/10.48550/arXiv.1505.03048

2015-05-12

Abstract:To ensure the privacy of users in transport systems, researchers are working on new protocols providing the best security guarantees while respecting functional requirements of transport operators. In this paper, we design a secure NFC m-ticketing protocol for public transport that preserves users' anonymity and prevents transport operators from tracing their customers' trips. To this end, we introduce a new practical set-membership proof that does not require provers nor verifiers (but in a specific scenario for verifiers) to perform pairing computations. It is therefore particularly suitable for our (ticketing) setting where provers hold SIM/UICC cards that do not support such costly computations. We also propose several optimizations of Boneh-Boyen type signature schemes, which are of independent interest, increasing their performance and efficiency during NFC transactions. Our m-ticketing protocol offers greater flexibility compared to previous solutions as it enables the post-payment and the off-line validation of m-tickets. By implementing a prototype using a standard NFC SIM card, we show that it fulfils the stringent functional requirement imposed by transport operators whilst using strong security parameters. In particular, a validation can be completed in 184.25 ms when the mobile is switched on, and in 266.52 ms when the mobile is switched off or its battery is flat.

Cryptography and Security

Oscar King,Geoffrey Goodell

2024-07-22

Abstract:Digitisation is often viewed as beneficial to a user. Whereas traditionally, people would physically have to identify to a service, pay for a ticket in cash, or go into a library to access a book, people can now achieve all of this through a click of a button. Such actions may seem functionally identical to their analogue counterparts, but in the digital case, a user's actions are automatically recorded. The recording of user's interactions presents a problem because once the information is collected, it is outside of the control of the person whom it concerns. This issue is only exacerbated by the centralisation of the authentication mechanisms underpinning the aforementioned services, permitting the aggregation and analysis of even more data. This work aims to motivate the need and establish the feasibility of the application of a privacy-enhancing digital token management service to public transit. A proof-of-concept implementation is developed, building upon a design proposed by Goodell and Aste. This implementation was optimised for the public transport use case. Its performance is tested in a local environment to better understand the technical challenges and assess the technical feasibility of the system in a production setting. It was observed that for loads between one and five requests per second the proof-of-concept performs comparably to other contactless payment systems, with a maximum median response time less than two seconds. Due to hardware bottlenecks, reliable throughput in our test environment was limited to five requests per second. The demonstrated throughput and latency indicate that the system can feasibly compete with solutions currently in use. Yet, further work is needed to demonstrate their performance characteristics in an environment similar to that experienced in production.

Computers and Society,Cryptography and Security

Ao Sun,H. Song,Yan Tong,Rongbo Zhu,Shiwei Xu,Zhengwei Ren,Tao Wang

DOI: https://doi.org/10.1109/TITS.2024.3383668

2024-09-01

Abstract:As the Internet of Vehicles (IoV) has become the critical part of Intelligent Vehicular Transportation Systems (IVTS), massive IoV entities (e.g., RSU, OBU, pedestrians’ mobile devices, etc.) get involved into IVTS. At present, one of the biggest challenges with IoV/IVTS is how to maintain a balance between security and privacy. The receivers need to be sure that they are receiving reliable messages from the origin and could trace or link the attacker’s identity, but the tracing or linking may work against the sender’s need for identity privacy. To solve the security and privacy problem, most of current works have proposed authentication solutions to provide anonymous, traceable and unlinkable schemes, which are still vulnerable to either Sybil attacks or quantum attacks. Therefore, we propose the blockchain-based post-quantum anonymous, traceable and linkable authentication scheme by utilizing NIST winner post-quantum algorithms and related post-quantum linkable ring signature. Grounded on the authentication scheme, we also develop key exchange mechanism, which help IoV entities perform efficient message authentication encryption/decryption during P2P communication and broadcast. The security analysis shows that our proposal is resistant to Sybil attack and provides other essential security characteristics including man-in-the-middle-proof and anti-replay. Finally, we perform detailed performance evaluation including each on-chain API execution time, the off-chain communication time and the on-board/on-chain storage requirements. To further evaluate the feasibility of our scheme in the IoV/IVTS environment, we also show the effectiveness of our proposal in a blockchain-based simulation study.

Engineering,Computer Science

Kai Fan,Panfei Song,Zhao Du,Haojin Zhu,Hui Li,Yintang Yang,Xinghua Li,Chao Yang

DOI: https://doi.org/10.1155/2017/4796373

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:As one of the most important techniques in IoT, NFC (Near Field Communication) is more interesting than ever. NFC is a short-range, high-frequency communication technology well suited for electronic tickets, micropayment, and access control function, which is widely used in the financial industry, traffic transport, road ban control, and other fields. However, NFC is becoming increasingly popular in the relevant field, but its secure problems, such as man-in-the-middle-attack and brute force attack, have hindered its further development. To address the security problems and specific application scenarios, we propose a NFC mobile electronic ticket secure payment and verification scheme in the paper. The proposed scheme uses a CS E-Ticket and offline session key generation and distribution technology to prevent major attacks and increase the security of NFC. As a result, the proposed scheme can not only be a good alternative to mobile e-ticket system but also be used in many NFC fields. Furthermore, compared with other existing schemes, the proposed scheme provides a higher security.

Tian Li,Huaqun Wang,Debiao He,Jia Yu

DOI: https://doi.org/10.1109/jiot.2022.3147925

IF: 10.6

2022-01-01

IEEE Internet of Things Journal

Abstract:The Internet of Things (IoT) devices possessed by individuals produce massive amounts of data. The private data onto specific IoT devices can be combined with intelligent platform to provide help for future research and prediction. As an important digital asset, individuals can sell private data to get rewards. Problems, such as privacy, security, and access control prevent individuals from sharing their private data. The blockchain technology is widely used to build an anonymous trading system. In this article, we construct a blockchain-based privacy-preserving and rewarding private data-sharing scheme (BPRPDS) for IoT. A privacy issue worth considering is that the malicious cloud server may establish a behavior profile database of data users (DUs). In the case of anonymity, the transactions of private data sharing are easy to cause disputes. When anonymous DUs are framed, it is hard to protect their rights. With the help of the deniable ring signature and Monero, we realize the behavior profile building prevention and nonframeability of BPRPDS. At the same time, we utilize the licensing technology executed by smart contracts to ensure flexible access control of multisharing. The proposed BPRPDS is provably secure. Performance analysis and experimental results show that BPRPDS is efficient and practical.

computer science, information systems,telecommunications,engineering, electrical & electronic

Kai Fan,Panfei Song,Zhao Du,Haojin Zhu,Hui Li,Yintang Yang,Xinghua Li,Chao Yang

DOI: https://doi.org/10.1007/978-3-319-42836-9_11

2016-01-01

Abstract:As one of the most important techniques in IoT, NFC (Near Field Communication) is more interested than ever. NFC is a short-range, high-frequency communication technology well suited for electronic tickets, micro-payment and access control function, which is widely used in the financial industry, traffic transport, road ban control and other fields. However, NFC is becoming increasingly popular in the relevant field, but its secure problems, such as man-in-the-middle-attack, brute force attack and so on, have hindered its further development. To address the security problems and specific application scenarios, we propose a NFC mobile electronic ticket secure payment and verification scheme in the paper. The proposed scheme uses a CS E-Ticket and offline session key generation and distribution technology to prevent major attacks and increase the security of NFC. As a result, the proposed scheme can not only be a good alternative to mobile e-ticket system but also be used in many NFC fields. Furthermore, compared with other existing schemes, the proposed scheme provides a higher security.

Kai Zhang,Minjun Deng,Bei Gong,Yinbin Miao,Jianting Ning

DOI: https://doi.org/10.1109/jiot.2023.3297601

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Blockchain-based Industrial Internet-of-Things (IIoT) integrates the blockchain technology into the traditional IIoT infrastructure to provide secure and collaborative services. In IIoT, the traffic is usually encrypted using cipher suite (SSL/TLS) for secure communication, which makes it hard for middleboxes to detect malicious activity in the traffic. To address this problem, secure middleboxes that directly perform encrypted traffic inspection have been presented. Recently, a new privacy-preserving deep packet inspection (DPI) system on middlebox for IoT scenarios was proposed, but it suffered from the following two limitations: (i) no support for fast token detection; (ii) no support for tracing abnormal sources. To address the two limitations, we propose BTDPI, a privacy-preserving traceable DPI system that efficiently performs inspection over encrypted traffic in Blockchain-based IIoT. Technically, we adopt a two-layer filter architecture to improve the efficiency of detection, and moreover introduce a new online-offline certificateless aggregate signature with smart contract to design an identity traceability mechanism. The experiment result shows that BTDPI runs 26.7× faster for token detection with 3,000 tokens and 3,000 rules than the state-of-the-art work.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jie Li,Yuanyuan Lin,Yibing Li,Yan Zhuang,Yangjie Cao

DOI: https://doi.org/10.3390/electronics13101901

IF: 2.9

2024-05-14

Electronics

Abstract:The Internet of Vehicles (IoV) connects an isolated individual on the road to share information, which can improve traffic efficiency. However, the promotion of information sharing brings the critical security issues of identity authentication, followed by privacy protection issues in the authentication process in the IoV. In this study, we designed a blockchain-based conditional privacy-preserving authentication scheme for the IoV (BPA). Our scheme implements zero-knowledge proof (ZKP) to verify the identities of vehicles, which moves the authentication process down to the Roadside Units (RSUs) and achieves decentralized authentication at the edge nodes. Moreover, blockchain technology is utilized to synchronize a consistent ledger across all RSUs for recording and disseminating vehicle authentication states, which enhances the overall authentication process efficiency. We provide a theoretical analysis asserting that the BPA ensures enhanced security and effectively protects the privacy of all participating vehicles. Experimental evaluations confirm that our scheme outperforms existing solutions in terms of the computational and communication overhead.

engineering, electrical & electronic,physics, applied,computer science, information systems

Xinghua Shan,Zhiqiang Zhang,Fei Ning,Shida Li,Linlin Dai

DOI: https://doi.org/10.1108/rs-01-2023-0005

2023-04-05

Railway Sciences

Abstract:Purpose With the yearly increase of mileage and passenger volume in China's high-speed railway, the problems of traditional paper railway tickets have become increasingly prominent, including complexity of business handling process, low efficiency of ticket inspection and high cost of usage and management. This paper aims to make extensive references to successful experiences of electronic ticket applications both domestically and internationally. The research on key technologies and system implementation of railway electronic ticket with Chinese characteristics has been carried out. Design/methodology/approach Research in key technologies is conducted including synchronization technique in distributed heterogeneous database system, the grid-oriented passenger service record (PSR) data storage model, efficient access to massive PSR data under high concurrency condition, the linkage between face recognition service platforms and various terminals in large scenarios, and two-factor authentication of the e-ticket identification code based on the key and the user identity information. Focusing on the key technologies and architecture the of existing ticketing system, multiple service resources are expanded and developed such as electronic ticket clusters, PSR clusters, face recognition clusters and electronic ticket identification code clusters. Findings The proportion of paper ticket printed has dropped to 20%, saving more than 2 billion tickets annually since the launch of the application of E-ticketing nationwide. The average time for passengers to pass through the automatic ticket gates has decreased from 3 seconds to 1.3 seconds, significantly improving the efficiency of passenger transport organization. Meanwhile, problems of paper ticket counterfeiting, reselling and loss have been generally eliminated. Originality/value E-ticketing has laid a technical foundation for the further development of railway passenger transport services in the direction of digitalization and intelligence.

Erdong Deng,Huajun Zhang,Peilin Wu,Fei Guo,Zhen Liu,Haojin Zhu,Zhenfu Cao

DOI: https://doi.org/10.1016/j.ins.2019.07.034

IF: 8.1

2019-01-01

Information Sciences

Abstract:Real-time bidding (RTB), one of the major trading mechanisms used for online advertising, allows the advertiser to make an impression-level bid decision. However, the security and privacy concerns of RTB are gaining increasing attention with the recent enforcement of the European Union General Data Protection Regulation (GDPR). In this study, we present a novel privacy-preserving RTB (Pri-RTB) protocol, which aims at preserving both data privacy and utility by performing additively homomorphic encryption on the user profile. To our knowledge, this is the first work to address the privacy issue of the RTB paradigm. We present a formal proof for the security of Pri-RTB under the assumption of the decisional Diffie-Hellman (DDH) problem. We analyze and elaborate the superiority of Pri-RTB over other related works. We also developed a prototype for Pri-RTB and conducted several experiments to evaluate its feasibility and efficiency under different parameters. Our experiments demonstrate that Pri-RTB can work highly efficiently in a practical setting (for example, a scenario with approximately 200 advertisers per auction). (C) 2019 Elsevier Inc. All rights reserved.

Rui Shi,Yang Yang,Huamin Feng,Feng Yuan,Huiqin Xie,Jianyi Zhang

DOI: https://doi.org/10.1016/j.sysarc.2023.102985

IF: 5.836

2023-10-01

Journal of Systems Architecture

Abstract:In order to obtain evidence of a crime timely, most authorities encourage whistleblowers to provide valuable reports by rewarding them with prizes. However, criminals will try their best to delete or tamper with the reports and even threaten and revenge the whistleblowers to escape punishment. Hence, to make the reporting system work, it is essential to ensure the integrity of reported messages and the anonymity of the reporting and rewarding procedures in the reporting system. Most existing schemes for this problem are generally based on ring signatures, which incur high computational overhead and imperfect anonymity. In this paper, we introduce a novel practical blockchain-based privacy-preserving reporting system with rewards dubbed as PriRPT. Specifically, the proposed scheme integrates the permissioned blockchain system, keyed-verification anonymous credential (KVAC), and structure-preserving signatures on equivalence classes (SPS-EQ) to provide reliable auditing of reports, and support anonymous reporting and anonymous rewarding simultaneously. In addition, we achieve higher efficiency in the reporting and rewarding protocol by replacing costly zero-knowledge proofs with KVAC and SPS-EQ. We also formalize the scheme along with security proof and provide rigorous evaluations on an open blockchain platform (JUICE) and a personal laptop to demonstrate its practicability.

computer science, software engineering, hardware & architecture

Jingwei Wang,Junqin Huang,Linghe Kong,Guihai Chen,Dianle Zhou,Joel J. P. C. Rodrigues

DOI: https://doi.org/10.1109/globecom46510.2021.9685366

2021-01-01

Abstract:Internet of Vehicles (IoV) has become an indispensable technology to bridge vehicles, persons and infrastructures, and is promising to make our cities smarter and more connected. It enables vehicles to exchange vehicular data (e.g., GPS, sensors, and brakes) with different entities nearby. However, sharing these vehicular data over the air raises concerns about identity privacy leakage. Besides, the centralized architecture adopted in existing IoV systems is fragile to single point of failure and malicious attacks. With the emergence of blockchain technology, it has the chance to solve these problems due to its features of tamper-proof, traceability and decentralization. In this paper, we propose a privacy-preserving vehicular data sharing framework based on blockchain. In particular, we design an anonymous and auditable data sharing scheme using Zero-Knowledge Proof (ZKP) technol-ogy so as to protect the identity privacy of vehicles while preserving the vehicular data auditability for Trusted Authorities (TAs). In response to high mobility of vehicles, we design an efficient multi-sharding protocol to decrease blockchain communication costs without compromising the blockchain security. We implement a prototype of our framework and conduct extensive experiments and simulations on it. Evaluation and analysis results indicate that our framework can not only strengthen system security and data privacy, but also increase the data authenticity verification efficiency by 5x comparing to existing privacy-preserving schemes.

Jingwei Ye,Xin Kang,Ying-Chang Liang,Sumei Sun

DOI: https://doi.org/10.48550/arXiv.2106.13958

2021-06-26

Abstract:In this paper, we propose a trust-centric privacy-preserving blockchain for dynamic spectrum access in IoT networks. To be specific, we propose a trust evaluation mechanism to evaluate the trustworthiness of sensing nodes and design a Proof-of-Trust (PoT) consensus mechanism to build a scalable blockchain with high transaction-per-second (TPS). Moreover, a privacy protection scheme is proposed to protect sensors' real-time geolocatioin information when they upload sensing data to the blockchain. Two smart contracts are designed to make the whole procedure (spectrum sensing, spectrum auction, and spectrum allocation) run automatically. Simulation results demonstrate the expected computation cost of the PoT consensus algorithm for reliable sensing nodes is low, and the cooperative sensing performance is improved with the help of trust value evaluation <a class="link-external link-http" href="http://mechanism.In" rel="external noopener nofollow">this http URL</a> addition, incentivization and security are also analyzed, which show that our design not only can encourage nodes' participation, but also resist to many kinds of attacks which are frequently encountered in trust-based blockchain systems.

Cryptography and Security,Systems and Control

Bing Han,Qiang Fu,Hongyu Su,Cheng Chi,Chuan Zhang,Jing Wang

DOI: https://doi.org/10.3390/math12192961

IF: 2.4

2024-09-25

Mathematics

Abstract:In the Internet of Things (IoT), the selection of mobile users with IoT-enabled devices plays a crucial role in ensuring the efficiency and accuracy of data collection. The reputation of these mobile users is a key indicator in selecting high-quality participants, as it directly reflects the reliability of the data they submit and their past performance. However, existing approaches often rely on a trusted centralized server, which can lead to single points of failure and increased vulnerability to attacks. Additionally, they may not adequately address the potential manipulation of reputation scores by malicious entities, leading to unreliable and potentially compromised user selection. To address these challenges, we propose PRUS, a privacy-preserving and quality-aware user selection scheme for IoT. By leveraging the decentralized and immutable nature of the blockchain, PRUS enhances the reliability of the user selection process. The scheme utilizes a public-key cryptosystem with distributed decryption to protect the privacy of users' data and reputation, while truth discovery techniques are employed to ensure the accuracy of the collected data. Furthermore, a privacy-preserving verification algorithm using reputation commitment is developed to safeguard against the malicious tampering of reputation scores. Finally, the Dirichlet distribution is used to predict future reputation values, further improving the robustness of the selection process. Security analysis demonstrates that PRUS effectively protects user privacy, and experimental results indicate that the scheme offers significant advantages in terms of communication and computational efficiency.

mathematics

Jishu Wang,Rui Zhu,Tong Li,Fengsen Gao,Qiang Wang,Qiang Xiao

DOI: https://doi.org/10.1109/tvt.2021.3116237

IF: 6.8

2021-11-01

IEEE Transactions on Vehicular Technology

Abstract:An electronic toll collection (ETC) system is one of the most important parts of an intelligent transportation system (ITS), but existing ETC systems are not efficient and have vehicle fee evasion complications. Owing to the traceability and tamper resistance of a blockchain, the combination of a blockchain and ETC system is a feasible way to solve the above problems. However, traditional blockchain (e.g., Bitcoin and Ethereum) has high power consumption and low efficiency. Hence, it cannot be used in ETC systems with high throughput and is not suitable for power-constrained Internet of Things (IoT) devices. In this study, therefore, we propose a blockchain architecture for the ETC system. To curb vehicle fee evasion behavior, thereby reducing the economic loss caused, we propose a vehicle behavior management mechanism based on credit value. Furthermore, to reduce the burden of storage and build a chain of evidence for auditing purposes, we propose an evidence chain framework. To protect the data security in the transaction process, we designed a data protection method to encrypt the transaction data. Additionally, this system is based on an open-source alliance blockchain framework called Hyperledger Fabric, which is more in line with the current application scenarios of ETC systems. We implemented the system on a Raspberry Pi and carried out simulations. The comprehensive evaluation results and analysis show that the system effectively reduces the number of illegal acts, completes the evidence inspection, and improves the security of the data.

telecommunications,engineering, electrical & electronic,transportation science & technology

Shan Jiang,Jiannong Cao,Hanqing Wu,Kongyang Chen,Xiulong Liu

DOI: https://doi.org/10.1016/j.ins.2023.03.121

IF: 8.1

2023-03-29

Information Sciences

Abstract:Recent years have witnessed the development and adoption of blockchain technology in intelligent transportation systems (ITS) because of its authenticity and traceability. However, increasing ITS devices impose grand challenges in privacy-preserving and efficient data sharing. Recent research has demonstrated that integrating searchable symmetric encryption in blockchain enables privacy-preserving data sharing among ITS devices. However, existing solutions focus only on single-keyword searches over encrypted ITS data on the blockchain and suffer from privacy and efficiency issues when extended to multi-keyword scenarios. This work proposes a bloom filter-based multi-keyword search protocol for ITS data with enhanced efficiency and privacy preservation. We design a bloom filter to select a low-frequency keyword from the multiple keywords input by the ITS data owner. The low-frequency keyword can filter out a large portion of the ITS data from the search result, thus significantly reducing the computational cost. Furthermore, each identifier-keyword pair is attached with a pseudorandom tag that enables the completion of a search operation in only one round. In this manner, privacy is preserved because there are no intermediate rounds and results. In addition to the multi-keyword search protocol, we specify the addition and deletion protocols to enable dynamic updates of data records. We conducted a comprehensive performance evaluation of the protocols. The experimental results indicate that the proposed multi-keyword search protocol saves 14.67% query time and 59.96% financial cost.

computer science, information systems

Hui Wang,Yong Xie,Yining Liu,Xiong Li,Phuntsog Dorje

DOI: https://doi.org/10.1109/jiot.2023.3309322

IF: 10.6

2024-01-01

IEEE Internet of Things Journal

Abstract:Electronic Health Records (EHRs) based on the Internet of Things (IoT) can provide real-time health data for quick intelligent medical services and give convenience to many data-sharing scenarios. However, EHRs also face various security threats since they are highly private. To the best of our knowledge, no recognized data-sharing work can satisfy the stringent privacy requirements of EHRs. Motivated by this, we propose a blockchain-based personalized access control EHR sharing scheme with data verifiability, which can safeguard the interests of data owners and users simultaneously. Firstly, we take ciphertext-policy attribute-based encryption to achieve personalized access control for data owners. Secondly, we design an interactive zero-knowledge proof protocol between data owners and users, which can provide authenticity verification of EHR for users and prevent EHR away from forgery. In addition, smart contracts and the interplanetary file system are used to reduce the computation and storage costs of patients. Finally, the security analysis shows that the proposed scheme meets the pre-defined security goals. The performance analysis demonstrates that the proposed scheme is efficient, and can be applied to practical electronic medical record sharing scenarios.