Intrusion Detection System for Electronic Health Record Sharing in Consumer-Centric Healthcare Devices Using Attribute-Based Encryption

IF 10.9 2区计算机科学 Q1 ENGINEERING, ELECTRICAL & ELECTRONIC

IEEE Transactions on Consumer Electronics Pub Date : 2025-04-17 DOI:10.1109/TCE.2025.3558351

Kamiya Pithode;Pushpinder Singh Patheja

{"title":"Intrusion Detection System for Electronic Health Record Sharing in Consumer-Centric Healthcare Devices Using Attribute-Based Encryption","authors":"Kamiya Pithode;Pushpinder Singh Patheja","doi":"10.1109/TCE.2025.3558351","DOIUrl":null,"url":null,"abstract":"To address the challenges of inflexible privilege changes and vulnerability to collusion attacks in electronic health record (EHR) sharing, this paper proposes a multi-authority system designed to resist such attacks on consumer-centric healthcare devices. The system achieves attribute revocation through version control, where the attribute authority provides updated keys to non-revoked users and updates the ciphertext, ensuring that users without the updated keys can no longer access the data. To optimize data access efficiency, the scheme offloads most computations to the cloud server. Each attribute authority generates its own public-private key pair to prevent collusion attacks. Security analysis demonstrates that the scheme is secure against chosen plaintext attacks under the concrete cryptographic assumptions model. Experimental results show that the proposed scheme significantly reduces decryption overhead, achieving at least a 52.56% reduction compared to existing multi-authority schemes.","PeriodicalId":13208,"journal":{"name":"IEEE Transactions on Consumer Electronics","volume":"71 2","pages":"5942-5949"},"PeriodicalIF":10.9000,"publicationDate":"2025-04-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Consumer Electronics","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10967513/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"ENGINEERING, ELECTRICAL & ELECTRONIC","Score":null,"Total":0}

引用次数: 0

Abstract

To address the challenges of inflexible privilege changes and vulnerability to collusion attacks in electronic health record (EHR) sharing, this paper proposes a multi-authority system designed to resist such attacks on consumer-centric healthcare devices. The system achieves attribute revocation through version control, where the attribute authority provides updated keys to non-revoked users and updates the ciphertext, ensuring that users without the updated keys can no longer access the data. To optimize data access efficiency, the scheme offloads most computations to the cloud server. Each attribute authority generates its own public-private key pair to prevent collusion attacks. Security analysis demonstrates that the scheme is secure against chosen plaintext attacks under the concrete cryptographic assumptions model. Experimental results show that the proposed scheme significantly reduces decryption overhead, achieving at least a 52.56% reduction compared to existing multi-authority schemes.

查看原文本刊更多论文

以消费者为中心的医疗设备中使用基于属性加密的电子健康记录共享入侵检测系统

为了解决电子健康记录（EHR）共享中不灵活的权限变化和易受合谋攻击的挑战，本文提出了一种针对以消费者为中心的医疗保健设备抵御此类攻击的多权限系统。系统通过版本控制实现属性撤销，属性授权机构将更新后的密钥提供给未被撤销的用户，并更新密文，保证没有更新密钥的用户无法再访问数据。为了优化数据访问效率，该方案将大部分计算任务卸载到云服务器上。每个属性授权机构生成自己的公私密钥对，以防止串通攻击。安全性分析表明，在具体的密码假设模型下，该方案对选择明文攻击是安全的。实验结果表明，该方案显著降低了解密开销，与现有的多权威方案相比，至少降低了52.56%。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Transactions on Consumer Electronics 工程技术-电信学

CiteScore

7.70

自引率

9.30%

发文量

审稿时长

3.3 months

期刊介绍： The main focus for the IEEE Transactions on Consumer Electronics is the engineering and research aspects of the theory, design, construction, manufacture or end use of mass market electronics, systems, software and services for consumers.