Yang Yang,Bixia Yi,Yonghua Zhan,Minming Huang

DOI: https://doi.org/10.1007/978-981-19-8445-7_19

2022-01-01

Abstract:Many sanitizable signature schemes have been proposed to facilitate and secure the secondary use of medical data. These schemes allow a patient, authorized by the doctor, to modify and re-sign his/her electronic health record (EHR) to hide sensitive information and the new signature can be verified successfully. However, this may lead to fraud because patients may forge medical records for profit. To further standardize sanitization and reduce the sanitizers power, this paper proposes a new limited sanitizable signature scheme, which allows the signer to not only decide which message blocks can be modified but also determine the maximum of modifiable blocks and the expiration time for sanitization. We also propose a secure EHR sharing scheme suitable for medical scenarios based on the above limited sanitizable signature to realize privacy preserving medical data sharing. Finally, the security analysis and experimental results show that the security and efficiency of our scheme can be accepted.

Yang Ming,Xiaopeng Yu,Xiaoqin Shen

DOI: https://doi.org/10.1109/access.2020.3018488

IF: 3.9

2020-01-01

IEEE Access

Abstract:Healthcare Internet of Things (IoT) is an emerging paradigm, which can provide comprehensive and different types of health services and enable various types of medical sensors to monitor patient's health conditions. In the healthcare IoT, patient is deployed with a variety of medical sensors, which continuously monitors and collects patient's sensitive health data that needs specially protection for preventing privacy leakage. To safely send multiple different health data monitored by multiple different medical sensors to multiple corresponding healthcare professionals in one data report, several multi-message and multi-receiver signcryption schemes have been introduced by employing the traditional public key cryptography, identity-based cryptography or certificateless cryptography. However, these schemes suffer from the certificate management, key escrow and key distribution problem. Besides, due to the resource-constraint property of medical sensors, they are unsuitable for healthcare IoT in terms of both performance and privacy requirements. To solve these issues, this paper introduces an efficient anonymous certificate-based multi-message and multi-receiver signcryption scheme for healthcare IoT, where the certificate-based cryptography and elliptic curve cryptography are combined to simplify the certificate management problem, eliminate the key escrow problem, solve the key distribution problem and ensure the privacy-preserving. Furthermore, the security analysis suggests that the proposed scheme is able to achieve the confidentiality, unforgeability, receiver anonymity, sender anonymity and decryption fairness; the performance evaluation indicates that the proposed scheme brings to the lower computation cost and communication cost in comparison to the existing schemes.

Yonghua Zhan,Yang Yang,Bixia Yi,Renjie He,Rui Shi,Xianghan Zheng

DOI: https://doi.org/10.1016/j.comcom.2024.107935

IF: 5.047

2024-09-13

Computer Communications

Abstract:With the widespread use of mobile communication and smart devices in the medical field, mobile healthcare has gained significant attention due to its ability to overcome geographical limitations and provide more efficient and high-quality medical services. In mobile healthcare, various instruments and wearable device data are collected, encrypted, and uploaded to the cloud, accessible to medical professionals, researchers, and insurance companies, among others. However, ensuring the security and privacy of healthcare data in the context of mobile networks has been a highly challenging issue.Certificateless signature schemes allow patients to conceal their respective privacy information for different sharing needs. Nevertheless, existing mobile healthcare data protection solutions suffer from costly certificate management and the inability to restrict signature verifiers. This paper proposes a certificateless designated verifier sanitizable signature for mobile healthcare scenarios, aiming to enhance the security and privacy of mobile healthcare data. This scheme enables the sanitization of sensitive data without the need for certificate management and allows for the specification of signature verifiers. This ensures the confidentiality of medical data, protects patient privacy, and prevents unauthorized access to healthcare data.Through security analysis and experimental comparisons, it is demonstrated that the proposed scheme is both efficient and effectively ensures data security and user privacy. Therefore, it is well-suited for privacy protection in mobile healthcare data.

computer science, information systems,telecommunications,engineering, electrical & electronic

Jianghua Liu,Lei Xu,Bruce Gu,Lei Cui,Fei Zhu

DOI: https://doi.org/10.1007/978-3-031-23020-2_25

2022-01-01

Abstract:Smart healthcare, as an examplar domain, is empowered by the remarkable miniaturization of sensors and the proliferation of smart devices, which lead to the production of massive amounts of healthcare data. Smart healthcare in the future is expected as a health service system that uses wearable devices, IoT, and mobile internet to dynamically collect and deliver healthcare data and then intelligently provide healthcare services. However, security is increasingly being challenged due to the highly valuable data transformed in such a healthcare network that might be tampered with by malicious users or disclosed without considering the privacy of patients. These pose new challenges for improving healthcare services' safety, quality, and efficiency. In this paper, we propose a redactable signature scheme (RSS) with a short signature and fine-grained sharing control for authenticating the integrity and authenticity of healthcare data while preserving the privacy of patients in the smart healthcare system. The security analysis of our construction shows that it achieves unforgeability and unlinkability. Finally, the efficiency comparison with other related solutions indicates that our scheme could solve the security issues for healthcare data sharing in the smart healthcare system with less computational and communication overhead.

Rui Guo,Huixian Shi,Qinglan Zhao,Dong Zheng

DOI: https://doi.org/10.1109/access.2018.2801266

IF: 3.9

2018-01-01

IEEE Access

Abstract:Electronic Health Records (EHRs) are entirely controlled by hospitals instead of patients, which complicates seeking medical advices from different hospitals. Patients face a critical need to focus on the details of their own healthcare and restore management of their own medical data. The rapid development of blockchain technology promotes population healthcare, including medical records as well as patient-related data. This technology provides patients with comprehensive, immutable records, and access to EHRs free from service providers and treatment websites. In this paper, to guarantee the validity of EHRs encapsulated in blockchain, we present an attribute-based signature scheme with multiple authorities, in which a patient endorses a message according to the attribute while disclosing no information other than the evidence that he has attested to it. Furthermore, there are multiple authorities without a trusted single or central one to generate and distribute public/private keys of the patient, which avoids the escrow problem and conforms to the mode of distributed data storage in the blockchain. By sharing the secret pseudorandom function seeds among authorities, this protocol resists collusion attack out of N from N - 1 corrupted authorities. Under the assumption of the computational bilinear Diffie-Hellman, we also formally demonstrate that, in terms of the unforgeability and perfect privacy of the attribute-signer, this attribute-based signature scheme is secure in the random oracle model. The comparison shows the efficiency and properties between the proposed method and methods proposed in other studies.

Ruo MO,Jian-feng MA,Xi-meng LIU,Tao ZHANG

DOI: https://doi.org/10.3969/j.issn.0372-2112.2017.11.019

2017-01-01

Abstract:In the Electronic Health Record system,users update their health data frequendy.If users keep the authentication of these data with the signature scheme in existence,it will lead to the leakage of their identity privacy and huge computation cost.Aiming at tackling the problems above,we propose a novel scheme called attribute-based sanitizable signature supporting dendritic access structure which obfuscates the user identity with attribute sets and introduces an authorized semitrust third-party—sanitizer.The security analysis demonstrates that our scheme achieves the anonymity of users and is unforgeable under selective-predicate chosen-message attack in the standard model.Through comparison,our scheme not only reduces the signing computation overhead of users,but also supports the dendritic access structure which can provide flexibly fine-grained access control under large-scale attribute sets.

Zijian Bao,Debiao He,Huaqun Wang,Min Luo,Cong Peng

DOI: https://doi.org/10.1109/jiot.2023.3284968

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:Recently, with the rapid improvement of e-health technology, a large amount of precious medical data has been accumulated in different entities, such as hospitals, clinics, and medical institutions, promoting the development of data sharing in e-health services. However, most of them lacks fine-grained functionalities: selective linkability and traceability, which are critical in an e-health environment. Furthermore, we observe that existing schemes mostly rely on centralized storage centers, which will lead to a single point of failure and privacy disclosure. In this article, we first construct a group signature scheme SLTGS suitable for a data sharing environment. It supports selectively linking two different message-signature pairs to the same signer. Further, it provides an algorithm to trace the signer. Then, based on the SLTGS scheme, we leverage distributed technology (i.e., interplanetary file system (IPFS) and blockchain) and attribute-based encryption to propose a distributed data sharing scheme. We claim that our scheme meets anonymity, accountability, linkability, traceability, fine-grained and efficient access control, and distributed storage. Moreover, the proposed data sharing scheme yields a practical performance making it suitable for e-health applications.

Qing Fan,Yumeng Xie,Chuan Zhang,Ximeng Liu,Liehuang Zhu

DOI: https://doi.org/10.1109/tsc.2024.3451145

IF: 11.019

2024-10-11

IEEE Transactions on Services Computing

Abstract:The e-health system enables online healthcare by supporting health data transmission services on medical platforms. Considering the frequent privacy breaches in e-health systems and the issuance of relevant regulations, it is important to ensure the authenticity and privacy of health data. Existing e-health systems either fail to provide data authenticity or neglect privacy protection after patients leave the system. In this article, we put forward a secure and efficient e-health system for data transmission, named PPED, to solve this dilemma. In PPED, we explore a regular signature and a forward-secure signature, which guarantee data authenticity and give the signature a valid period. Then, a specific epochal signature scheme is designed by combining two signature schemes with the time-lock puzzle. Since expired epochal signatures are forgeable, patients after leaving the e-health system can forge expired signatures to deny their relationship with the signed data, thus achieving privacy protection. Detailed security analysis demonstrates the PPED realizes data authenticity and user privacy. Extensive experiments evaluate our system and the results show it is practical in terms of running time.

computer science, information systems, software engineering

Ruo Mo,Jianfeng Ma,Ximeng Liu,Qi Li

DOI: https://doi.org/10.1007/978-3-319-89500-0_3

2018-01-01

Abstract:In the Electronic Health Record (EHR) system, digital signature is utilized to prevent the medical data from being tampered. However, users update their medical data frequently and have to sign these medical data from scratch after updating. Besides, traditional signature attests the identity of the individual signing the records, which leads to vast computation cost and the privacy leakage. In this paper, we obfuscate users identity information with attribute sets and introduce a semi-trusted participant–sanitizer to propose the Flexible Attribute-Based Sanitizable Signature (FABSS) scheme. We prove that our scheme is unforgeable under generic group model. Through comparison, the FABSS scheme not only reduces the users computation overhead, but also supports flexible access structures to implement expressively fine-grained access control.

Yihao Hu,Chunguang Huang,Hai Cheng

DOI: https://doi.org/10.1016/j.comcom.2024.02.020

IF: 5.047

2024-02-28

Computer Communications

Abstract:Smart healthcare overcomes the limitations of time and space, allowing users to access medical and health services anywhere and anytime, thus improving the quality and efficiency of these services. However, due to its excessive reliance on wireless public networks, smart healthcare faces challenges and issues related to communication security. As a result, authentication and key agreement are critical as the first line of defense for smart healthcare communications. Over the past few years, numerous authentication and key agreement schemes have been proposed by experts and scholars, but most of these schemes are not applicable to practical scenarios due to their lack of security and efficiency. To address these issues, we propose an elliptic curve-based certificateless conditional privacy-preserving authentication and key agreement scheme. This scheme does not require endorsement from a Certificate Authority (CA) and features lightweight and secure properties, making it suitable for resource-limited smart healthcare communication. In addition, the security of the proposed scheme is proven under the random oracle model, and its safety is supplemented using BAN logic. Finally, performance analysis reveals that the proposed scheme not only satisfies security property and can withstand general attacks but also offers certain advantages in communication efficiency.

computer science, information systems,telecommunications,engineering, electrical & electronic

Zhenpeng Liu,Lele Ren,Ruilin Li,Qiannan Liu,Yonggang Zhao

DOI: https://doi.org/10.1016/j.cose.2022.102858

2022-10-01

Abstract:More and more companies, institutions and organizations are choosing to put vast amounts of data on the cloud. However, applications such as multimedia office, e-government and e-health systems need to withhold some data in order to hide highly confidential information when uploading to the cloud. A new data integrity auditing scheme is proposed to protect the privacy information and share the data. The idea of sanitizable signature is used to sanitize the private data to protect the privacy and generate effective signatures to verify the integrity of the data. At the same time, the identity-based encryption auditing mechanism simplifies the complex certificate management and improves the audit efficiency. The stability of the scheme is verified by calculating the Computational Diffie-Hellman Problem (CDHP) and Discrete Logarithm Problem (DLP) in the stochastic prediction model. The performance of the proposed scheme is evaluated by simulation experiments, which proves that the proposed scheme is safe and effective.

computer science, information systems

Aoran Lu,Weihai Li,Yuanzhi Yao,Nenghai Yu

DOI: https://doi.org/10.1109/DSC53577.2021.00022

2021-01-01

Abstract:With the flourishing of the e-healthcare industry, electronic health record (EHR) systems are being widely deployed, bringing new challenges in fine-grained authentication and tracing. Malicious publishers might upload improper files to the system, causing horrible harm to patients. Consequently, it is quite important to make sure that file publishers in EHR system can be easily authenticated and traced. Identity-based signatures provide coarse-grained authentication which only briefly tells identities. But attribute-based signatures can tell more details, making fine-grained authentication possible. In this paper, we propose an efficient traceable constant-size attribute-based ring signature scheme for electronic health record system, focusing on fine-grained authentication and traceability of file publishers. We give formal definitions of syntax and the security model and then propose a concrete scheme with a pair of link flags to achieve traceability. The security of our scheme is eventually proved under Diffie-Hellman assumptions in the standard model.

Fei Zhu,Xun Yi,Alsharif Abuadbba,Ibrahim Khalil,Surya Nepal,Xinyi Huang

DOI: https://doi.org/10.1109/tsusc.2022.3211298

2023-01-01

IEEE Transactions on Sustainable Computing

Abstract:The healthcare Internet of Things (IoT) is rapidly becoming an invaluable tool in the healthcare industry. However, sharing data in healthcare IoT raises many security and privacy concerns, such as how to ensure data integrity, source authentication, and data privacy. Redactable signature schemes ( ${{\sf RSS}}$ s) could be a feasible solution to address this question because it allows a signature holder to independently delete the privacy-sensitive part of the authenticated data without invalidating the respective signature. This flexible data sharing mechanism not only protects data privacy but also saves bandwidth. However, the state-of-the-art ${{\sf RSS}}$ s suffer from either the costly public key management problem or the secret key escrow problem. Another drawback of these schemes lies in their computation and communication overheads and hence are quite expensive for constrained devices. To address these challenging issues, in this work, we first propose the notion of certificateless ${{\sf RSS}}$ . We then provide an efficient instantiation of our scheme and prove its security under cryptographic assumptions. Our construction supports batch verification and redaction control, which further saves bandwidth and enhances the security of shared data by preventing the dishonest holder from arbitrarily editing data. Moreover, the comparison analysis of theory and experiment with more recent works shows the practicability of our design.

Chengzhe Lai,Zhe Ma,Rui Guo,Dong Zheng

DOI: https://doi.org/10.1007/s12083-022-01303-w

2022-03-08

Abstract:In order to solve the problem of medical data sharing difficulties among medical institutions, we propose a secure medical data sharing scheme based on traceable ring signature and blockchain. Firstly, a certificateless traceable ring signature algorithm based on distributed key generation is proposed to provide data integrity with privacy preservation. Secondly, the smart contract combined with access control and Self-Controlling Object (SCO) can realize the decryption outsourcing and data sharing. In addition, the proposed scheme uses the InterPlanetary File System (IPFS) to store the oceans of medical privacy data, and encrypts the hash index to store, which improves the efficiency of data sharing. Finally, integrated with the blockchain, we can select the proxy node and upload the SCO package to the blockchain node for data sharing by using consensus mechanism. The security analysis shows that the scheme can realize the electronic health record (EHR) source tracking while achieving secure data sharing and privacy protection. In the performance evaluation, we compare the functionality with other schemes and conclude that our scheme is well-functional. Also, the time-consuming simulation of the algorithms in our scheme using the PBC library reflects a high practicality. The results show that the proposed scheme is secure in terms of medical data sharing and privacy protection, and feasible for data source tracking.

computer science, information systems,telecommunications

Wenxin Hu,Yidan Chai,Xue Chen,Chao Zheng

DOI: https://doi.org/10.1109/icccs55155.2022.9845850

2022-01-01

Abstract:Advances in medical science and technology continue to drive the development of e-healthcare, with Electronic Medical Records (EMRs) consisting of medical information such as patient consultation records and bodily data being gradually popularized in the form of cloud sharing. The sharing of EMR effectively enhances the effectiveness and reliability of healthcare services. However, the highly sensitive EMRs are susceptible to tampering and misuse during the EMR sharing, which poses a tremendous threat to patients’ privacy and the security of e-health. Further, EMRs are extremely vulnerable to quantum computing attacks during the process of sharing in cloud, which will be the most significant bottleneck in the advancement of e-healthcare systems. To tackle the foregoing issues, we present a lattice-based ring signature scheme for secure EMR sharing on the cloud. To begin with, we implement EMR sharing with medical cloud. Then, we set a lattice-based ring signature scheme to ensure user anonymity, EMR and signature unforgeability, while resisting quantum attacks. Further, we require all EMR-related users to perform multiparty confirmation signatures on the EMR. In conlusion, the security analysis and performance evaluation indicate that our scheme guarantees correctness, anonymity, and unforgeability, while outperforming other existing schemes.

Qiu Zhang,Yinxia Sun,Yang Lu,Guoqiang Zhang

DOI: https://doi.org/10.1016/j.jisa.2024.103892

IF: 4.96

2024-10-24

Journal of Information Security and Applications

Abstract:Cloud computing has revolutionized in the healthcare industry, particularly in the management and accessibility of Electronic health records (EHR). However, maintaining the integrity and authenticity of EHR in cloud environments remains a crucial concern. To tackle this challenge, certificateless proxy re-signature is a promising cryptographic primitive for developing a practical EHR sharing system in the cloud. User revocation is a necessary issue in such system, but revocation introduces a new challenge, namely the continued validity of signatures from revoked users. A conventional method to solve this problem is to make the unrevoked users re-sign those valid EHR by using their current signing keys, which brings a lot of burden to the users. Therefore, we should establish an efficient mechanism to ensure that only signatures of valid data from non-revoked users can pass verification. In this paper, we propose a notion called revocable certificateless proxy re-signature with signature evolution (RCLPRS-SE), which allows for dynamic management of users and the ability to update signatures efficiently in accordance with evolving data requirements. We present a concrete construction of RCLPRS-SE and provide formal security proofs in the standard model. Compared with the existing related works, our scheme has a significant advantage in terms of signature updating efficiency.

computer science, information systems

You Sun,Rui Zhang,Xin Wang,Kaiqiang Gao,Ling Liu

DOI: https://doi.org/10.1109/icccn.2018.8487349

2018-01-01

Abstract:Blockchain is one of the technology innovations for sharing data across organizations through a peer to peer overlay network. Many blockchain- based data sharing applications, such as sharing Electronic Health Records (EHRs) among different Care Delivery Organizations (CDOs), require privacy preserving verification services with dual capabilities. On one hand, the users want to verify the authenticity of EHR data as well as the identity of the signer. On the other hand, the signer wants to keep his real identity private such that others cannot trace and infer his identity information. However, typical blockchain systems that use pseudonyms as public keys, such as Bitcoin's blockchain, cannot support such privacy-preserving verification. In such systems, it is hard to verify the authenticity of signer's identity, and adversaries or curious parties can guess the real identity from the series of statements and actions taken with a specific pseudonym through inference attacks, such as by transaction graph analysis. In this paper, we propose a decentralized attribute- based signature scheme for healthcare blockchain, which provides efficient privacy-preserving verification of authenticity of EHR data and signer's identity. We also describe a holistic on-chain and off- chain collaborative storage system for efficient storage and verification EHR data. The analysis and experiments show that our scheme is effective and deployable.

Wenjin Lei,Yidong Li,Yingpeng Sang,Hong Shen

DOI: https://doi.org/10.1109/icebe.2016.019

2016-01-01

Abstract:Based on smart devices and wireless communication infrastructure, the Electronic Medical Records (EMR) systems become more and more popular in hospitals by reason of its convenient operation, remote access, data integrity, facilitated resources sharing, statistical analysis and many other advantages. When entering an EMR system, patients can be treated by many kinds of services and also leave their privacy to the providers. It is a viable method to protect a patient's privacy in EMR by anonymous authentication, where identity of the patient is verified without demonstrating the true identity to the authenticator. This paper proposes an enhanced secure anonymous authentication scheme, based on smart card and biometrics with key agreement. According to security analysis, our scheme is secure against many types of attacks, including those not prevented by previous work, such as the smart card loss attack and impersonation attack. The performance of our scheme is also analyzed and compared with previous work, which shows that our scheme is more efficient in the computation cost.

Chanying Huang,Hwaseong Lee,Dong Hoon Lee

DOI: https://doi.org/10.1007/s10916-011-9774-2

IF: 4.92

2011-01-01

Journal of Medical Systems

Abstract:Recent Advances in Wireless Body Area Networks (WBANs) offer unprecedented opportunities and challenges to the development of pervasive electronic healthcare (E-Healthcare) monitoring system. In E-Healthcare system, the processed data are patients' sensitive health data that are directly related to individuals' privacy. For this reason, privacy concern is of great importance for E-Healthcare system. Current existing systems for E-Healthcare services, however, have not yet provided sufficient privacy protection for patients. In order to offer adequate security and privacy, in this paper, we propose a privacy-enhanced scheme for patients' physical condition monitoring, which achieves dual effects: (1) providing unlinkability of health records and individual identity, and (2) supporting anonymous authentication and authorized data access. We also conduct a simulation experiment to evaluate the performance of the proposed scheme. The experimental results demonstrate that the proposed scheme achieves better performance in terms of computational complexity, communication overheads and querying efficiency compared with previous results.

Liehuang Zhu,Yumeng Xie,Yuao Zhou,Qing Fan,Chuan Zhang,Ximeng Liu

DOI: https://doi.org/10.1016/j.future.2023.07.031

2023-01-01

Abstract:The Healthcare Internet of Things (HIoT) system enables remote monitor patient health state and feedback on medical treatments timely. The success of HIoT relies on how to share health data securely and efficiently. Existing solutions either fail to ensure the security or incur significant overheads. In this paper, we put forward an efficient and secure health data sharing scheme for HIoT systems, named ESDS, to solve this dilemma. In ESDS, we first signcrypt the health data collected by IoT devices to protect patient privacy and ensure data authenticity. Next, we aggregate N signatures for N pieces of different health data into a short signature, which significantly reduces storage space and transmission size, i.e., from O(N) to O(1). Then, we apply local verifiability to verify one piece of health data under the aggregated signature. With this property, a doctor only needs one auxiliary message generated by the patient to check the target message without obtaining whole health data, which improves system verification efficiency. Extensive security analysis and performance evaluation show that ESDS is secure and efficient.