Designated server proxy re-encryption with boolean keyword search for E-Health Clouds

IF 3.8 2区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Information Security and Applications Pub Date : 2024-05-23 DOI:10.1016/j.jisa.2024.103783

Boli Hu , Kai Zhang , Junqing Gong , Lifei Wei , Jianting Ning

{"title":"Designated server proxy re-encryption with boolean keyword search for E-Health Clouds","authors":"Boli Hu , Kai Zhang , Junqing Gong , Lifei Wei , Jianting Ning","doi":"10.1016/j.jisa.2024.103783","DOIUrl":null,"url":null,"abstract":"<div><p>E-Health Cloud can provide remote, accurate, real-time, intelligent information services for healthcare. Despite the benefits brought by data outsourcing, it may also cause data breaches and compromise user privacy. Searchable encryption can provide data security and search services in the encrypted data domain. However, in E-Health Cloud, users may have some other special needs, such as sharing their health information with doctors during the treatment period and updating the data access right when they transfer from one hospital to another. Some works introduced the primitive proxy re-encryption with public keyword search (Re-PEKS) to meet the above needs. However, the state-of-the-art solutions cannot support expressive boolean query, and its search cost time increases linearly with total number of outsourced documents, this is very impractical in huge E-Health Cloud system. An efficient Re-PEKS scheme termed PRTDs is proposed in this article to address this problem. PRTDs supports sub-linear boolean query, time controlled data sharing, and re-encryption to change data users simultaneously. To compare PRTDs with the most advanced time-enabled Re-PEKS scheme, we also implement exhaustive comparative experiments on HUAWEI Cloud with the Enron dataset, and the results show that PRTDs has a better performance on encryption and searching.</p></div>","PeriodicalId":48638,"journal":{"name":"Journal of Information Security and Applications","volume":"83 ","pages":"Article 103783"},"PeriodicalIF":3.8000,"publicationDate":"2024-05-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Security and Applications","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2214212624000863","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

E-Health Cloud can provide remote, accurate, real-time, intelligent information services for healthcare. Despite the benefits brought by data outsourcing, it may also cause data breaches and compromise user privacy. Searchable encryption can provide data security and search services in the encrypted data domain. However, in E-Health Cloud, users may have some other special needs, such as sharing their health information with doctors during the treatment period and updating the data access right when they transfer from one hospital to another. Some works introduced the primitive proxy re-encryption with public keyword search (Re-PEKS) to meet the above needs. However, the state-of-the-art solutions cannot support expressive boolean query, and its search cost time increases linearly with total number of outsourced documents, this is very impractical in huge E-Health Cloud system. An efficient Re-PEKS scheme termed PRTDs is proposed in this article to address this problem. PRTDs supports sub-linear boolean query, time controlled data sharing, and re-encryption to change data users simultaneously. To compare PRTDs with the most advanced time-enabled Re-PEKS scheme, we also implement exhaustive comparative experiments on HUAWEI Cloud with the Enron dataset, and the results show that PRTDs has a better performance on encryption and searching.

查看原文本刊更多论文

利用布尔关键字搜索为电子健康云指定服务器代理重新加密

电子医疗云可以为医疗保健提供远程、准确、实时、智能的信息服务。尽管数据外包带来了好处，但也可能造成数据泄露，损害用户隐私。可搜索加密可在加密数据域提供数据安全和搜索服务。然而，在电子健康云中，用户可能还有其他一些特殊需求，如在治疗期间与医生共享健康信息，从一家医院转到另一家医院时更新数据访问权限等。为满足上述需求，一些研究引入了带有公共关键词搜索的原始代理重加密（Re-PEKS）。然而，最先进的解决方案无法支持表达式布尔查询，而且其搜索成本时间随外包文件总数的增加而线性增加，这在庞大的电子医疗云系统中非常不切实际。针对这一问题，本文提出了一种高效的 Re-PEKS 方案，即 PRTDs。PRTDs 支持亚线性布尔查询、时间控制的数据共享以及同时更换数据用户的重新加密。为了将 PRTDs 与最先进的时间启用 Re-PEKS 方案进行比较，我们还在 HUAWEI 云上使用安然数据集进行了详尽的对比实验，结果表明 PRTDs 在加密和搜索方面具有更好的性能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Information Security and Applications Computer Science-Computer Networks and Communications

CiteScore

10.90

自引率

5.40%

发文量

206

审稿时长

56 days

期刊介绍： Journal of Information Security and Applications (JISA) focuses on the original research and practice-driven applications with relevance to information security and applications. JISA provides a common linkage between a vibrant scientific and research community and industry professionals by offering a clear view on modern problems and challenges in information security, as well as identifying promising scientific and "best-practice" solutions. JISA issues offer a balance between original research work and innovative industrial approaches by internationally renowned information security experts and researchers.