{"title":"协同电子医疗系统中安全服务和数据授权的可表达访问控制方案","authors":"O. Olakanmi, K. Odeyemi","doi":"10.1080/19393555.2021.1926603","DOIUrl":null,"url":null,"abstract":"ABSTRACT Recent technological advancements in health care delivery have paved the way for collaborative monitoring, diagnosis, and treatment of patients, which involve real-time monitoring of patients and remote storage of their health information in the cloud. However, controlling access to the stored health information in the cloud is not only difficult but also susceptible to different privacy- and security-related attacks. Besides, existing access control schemes for e-health do not support delegation of responsibilities, a common phenomenon in health care delivery, making complete adoption of e-health impracticable. In this paper, we propose a security scheme that provides fine-grained expressive access control on patients’ health information for secure data and responsibilities delegation among health officers in collaborative e-health systems. The scheme takes care of the key distribution and attribute or user revocation problems of CP-ABE and supports secure delegation of responsibilities. With this scheme, a health officer can treat patients and securely delegate responsibilities to other health officers within the team without jeopardizing the security and privacy of the patients. Security and performance analysis show that our proposed scheme is efficient, secure, and expressive.","PeriodicalId":103842,"journal":{"name":"Information Security Journal: A Global Perspective","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-06-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"EACS: Expressible Access Control Scheme for Secure Services and Data Delegation in Collaborative E-health System\",\"authors\":\"O. Olakanmi, K. Odeyemi\",\"doi\":\"10.1080/19393555.2021.1926603\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"ABSTRACT Recent technological advancements in health care delivery have paved the way for collaborative monitoring, diagnosis, and treatment of patients, which involve real-time monitoring of patients and remote storage of their health information in the cloud. However, controlling access to the stored health information in the cloud is not only difficult but also susceptible to different privacy- and security-related attacks. Besides, existing access control schemes for e-health do not support delegation of responsibilities, a common phenomenon in health care delivery, making complete adoption of e-health impracticable. In this paper, we propose a security scheme that provides fine-grained expressive access control on patients’ health information for secure data and responsibilities delegation among health officers in collaborative e-health systems. The scheme takes care of the key distribution and attribute or user revocation problems of CP-ABE and supports secure delegation of responsibilities. With this scheme, a health officer can treat patients and securely delegate responsibilities to other health officers within the team without jeopardizing the security and privacy of the patients. Security and performance analysis show that our proposed scheme is efficient, secure, and expressive.\",\"PeriodicalId\":103842,\"journal\":{\"name\":\"Information Security Journal: A Global Perspective\",\"volume\":\"14 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-06-04\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Information Security Journal: A Global Perspective\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1080/19393555.2021.1926603\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Information Security Journal: A Global Perspective","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1080/19393555.2021.1926603","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
EACS: Expressible Access Control Scheme for Secure Services and Data Delegation in Collaborative E-health System
ABSTRACT Recent technological advancements in health care delivery have paved the way for collaborative monitoring, diagnosis, and treatment of patients, which involve real-time monitoring of patients and remote storage of their health information in the cloud. However, controlling access to the stored health information in the cloud is not only difficult but also susceptible to different privacy- and security-related attacks. Besides, existing access control schemes for e-health do not support delegation of responsibilities, a common phenomenon in health care delivery, making complete adoption of e-health impracticable. In this paper, we propose a security scheme that provides fine-grained expressive access control on patients’ health information for secure data and responsibilities delegation among health officers in collaborative e-health systems. The scheme takes care of the key distribution and attribute or user revocation problems of CP-ABE and supports secure delegation of responsibilities. With this scheme, a health officer can treat patients and securely delegate responsibilities to other health officers within the team without jeopardizing the security and privacy of the patients. Security and performance analysis show that our proposed scheme is efficient, secure, and expressive.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
