Secure collaborative EHR Sharing using multi-authority attribute-based proxy re-encryption in Web 3.0

IF 4.4 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2024-10-10 DOI:10.1016/j.comnet.2024.110851

Pengfei Duan , Hongmin Gao , Yushi Shen , Zhetao Guo , Zhaofeng Ma , Tian Tian , Yuqing Zhang

{"title":"Secure collaborative EHR Sharing using multi-authority attribute-based proxy re-encryption in Web 3.0","authors":"Pengfei Duan , Hongmin Gao , Yushi Shen , Zhetao Guo , Zhaofeng Ma , Tian Tian , Yuqing Zhang","doi":"10.1016/j.comnet.2024.110851","DOIUrl":null,"url":null,"abstract":"<div><div>Web 3.0 represents a transformative shift toward a decentralized, intelligent, and user-centric Internet. Existing electronic health record (EHR) sharing systems depend on centralized cloud servers for storage and management, with hospitals serving as primary custodians. This centralization often results in patients losing control and visibility over their EHR data, including who accesses it and how it is utilized, which contradicts the decentralized principles of Web 3.0. In this context, we propose a multi-authority attribute-based proxy re-encryption scheme that facilitates collaborative EHR sharing in Web 3.0. Our design allows the updating of ciphertext policies, thereby eliminating the need for frequent re-encryption of plaintext data amid varying cross-domain access policies. Furthermore, our scheme utilizes blockchain technology to create a decentralized and transparent environment that enables traceable cross-domain EHR sharing records. Additionally, we integrate hybrid encryption with decentralized data hosting platforms, significantly reducing the on-chain storage burden. The use of smart contracts automates the cross-domain EHR sharing and guarantees a fair distribution of benefits among all participants. Security analysis confirms that our scheme is secure against chosen plaintext attacks and resistant to collusion. Performance analysis and simulation experiments validate the efficiency and robustness of our scheme.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"255 ","pages":"Article 110851"},"PeriodicalIF":4.4000,"publicationDate":"2024-10-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128624006832","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

Web 3.0 represents a transformative shift toward a decentralized, intelligent, and user-centric Internet. Existing electronic health record (EHR) sharing systems depend on centralized cloud servers for storage and management, with hospitals serving as primary custodians. This centralization often results in patients losing control and visibility over their EHR data, including who accesses it and how it is utilized, which contradicts the decentralized principles of Web 3.0. In this context, we propose a multi-authority attribute-based proxy re-encryption scheme that facilitates collaborative EHR sharing in Web 3.0. Our design allows the updating of ciphertext policies, thereby eliminating the need for frequent re-encryption of plaintext data amid varying cross-domain access policies. Furthermore, our scheme utilizes blockchain technology to create a decentralized and transparent environment that enables traceable cross-domain EHR sharing records. Additionally, we integrate hybrid encryption with decentralized data hosting platforms, significantly reducing the on-chain storage burden. The use of smart contracts automates the cross-domain EHR sharing and guarantees a fair distribution of benefits among all participants. Security analysis confirms that our scheme is secure against chosen plaintext attacks and resistant to collusion. Performance analysis and simulation experiments validate the efficiency and robustness of our scheme.

查看原文本刊更多论文

在 Web 3.0 中使用基于属性的多授权代理再加密技术实现安全的协作式电子病历共享

Web 3.0 代表着向分散、智能和以用户为中心的互联网的转型。现有的电子病历（EHR）共享系统依赖于集中式云服务器进行存储和管理，医院是主要的保管者。这种集中化往往导致患者失去对其电子病历数据的控制权和可见性，包括谁访问这些数据以及如何使用这些数据，这与 Web 3.0 的去中心化原则相矛盾。在这种情况下，我们提出了一种基于多授权属性的代理再加密方案，以促进 Web 3.0 中电子病历的协作共享。我们的设计允许更新密文策略，从而消除了在跨域访问策略变化时频繁重新加密明文数据的需要。此外，我们的方案利用区块链技术创建了一个去中心化的透明环境，实现了可追溯的跨域电子病历共享记录。此外，我们还将混合加密与去中心化数据托管平台相结合，大大减轻了链上存储的负担。智能合约的使用实现了跨域电子病历共享的自动化，并保证了所有参与者之间利益的公平分配。安全分析证实，我们的方案可安全抵御选择明文攻击，并可抵御串通。性能分析和模拟实验验证了我们方案的效率和稳健性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.