DAMFSD：灵活安全的分散授权模型

IF 6 3区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Internet of Things Pub Date : 2024-08-08 DOI:10.1016/j.iot.2024.101317

{"title":"DAMFSD：灵活安全的分散授权模型","authors":"","doi":"10.1016/j.iot.2024.101317","DOIUrl":null,"url":null,"abstract":"<div><p>During the digital age of healthcare, it is crucial to utilize medical data scattered across different healthcare institutions to improve diagnostic precision and customize treatment strategies. A common solution to achieve this is establishing an authorization service that facilitates secure sharing of medical data and promotes interoperability among various healthcare institutions. However, there is a risk of a single point of failure because the majority of authorization systems in use rely on a central trusted service. This paper proposes DAMFSD, a decentralized authorization model with flexible and secure permissions delegation for medical data sharing. Specifically, patients can transfer their permissions to reliable institutions or individuals for flexible management and delegation while they retain control and monitor their permissions. We use cryptographic techniques for secure and fine-grained delegation and smart contracts to enable decentralized and flexible delegation. Finally, we performed a security analysis to demonstrate DAMFSD’s feasibility and conducted a performance evaluation on the permissioned blockchain to show its applicability.</p></div>","PeriodicalId":29968,"journal":{"name":"Internet of Things","volume":null,"pages":null},"PeriodicalIF":6.0000,"publicationDate":"2024-08-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://www.sciencedirect.com/science/article/pii/S2542660524002580/pdfft?md5=787404f049712bac3b89330049936352&pid=1-s2.0-S2542660524002580-main.pdf","citationCount":"0","resultStr":"{\"title\":\"DAMFSD: A decentralized authorization model with flexible and secure delegation\",\"authors\":\"\",\"doi\":\"10.1016/j.iot.2024.101317\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><p>During the digital age of healthcare, it is crucial to utilize medical data scattered across different healthcare institutions to improve diagnostic precision and customize treatment strategies. A common solution to achieve this is establishing an authorization service that facilitates secure sharing of medical data and promotes interoperability among various healthcare institutions. However, there is a risk of a single point of failure because the majority of authorization systems in use rely on a central trusted service. This paper proposes DAMFSD, a decentralized authorization model with flexible and secure permissions delegation for medical data sharing. Specifically, patients can transfer their permissions to reliable institutions or individuals for flexible management and delegation while they retain control and monitor their permissions. We use cryptographic techniques for secure and fine-grained delegation and smart contracts to enable decentralized and flexible delegation. Finally, we performed a security analysis to demonstrate DAMFSD’s feasibility and conducted a performance evaluation on the permissioned blockchain to show its applicability.</p></div>\",\"PeriodicalId\":29968,\"journal\":{\"name\":\"Internet of Things\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":6.0000,\"publicationDate\":\"2024-08-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://www.sciencedirect.com/science/article/pii/S2542660524002580/pdfft?md5=787404f049712bac3b89330049936352&pid=1-s2.0-S2542660524002580-main.pdf\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Internet of Things\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S2542660524002580\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Internet of Things","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2542660524002580","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

在数字医疗时代，利用分散在不同医疗机构的医疗数据来提高诊断精确度和定制治疗策略至关重要。实现这一目标的常见解决方案是建立授权服务，以促进医疗数据的安全共享和不同医疗机构之间的互操作性。然而，由于目前使用的大多数授权系统都依赖于中央可信服务，因此存在单点故障的风险。本文提出的 DAMFSD 是一种去中心化的授权模型，具有灵活、安全的权限授权，适用于医疗数据共享。具体来说，患者可以将自己的权限转移给可靠的机构或个人，以便进行灵活的管理和授权，而自己则保留对权限的控制和监控。我们使用加密技术实现安全、细粒度的授权，并使用智能合约实现分散、灵活的授权。最后，我们进行了安全分析以证明 DAMFSD 的可行性，并在权限区块链上进行了性能评估以证明其适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

DAMFSD: A decentralized authorization model with flexible and secure delegation

During the digital age of healthcare, it is crucial to utilize medical data scattered across different healthcare institutions to improve diagnostic precision and customize treatment strategies. A common solution to achieve this is establishing an authorization service that facilitates secure sharing of medical data and promotes interoperability among various healthcare institutions. However, there is a risk of a single point of failure because the majority of authorization systems in use rely on a central trusted service. This paper proposes DAMFSD, a decentralized authorization model with flexible and secure permissions delegation for medical data sharing. Specifically, patients can transfer their permissions to reliable institutions or individuals for flexible management and delegation while they retain control and monitor their permissions. We use cryptographic techniques for secure and fine-grained delegation and smart contracts to enable decentralized and flexible delegation. Finally, we performed a security analysis to demonstrate DAMFSD’s feasibility and conducted a performance evaluation on the permissioned blockchain to show its applicability.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Internet of Things Multiple-

CiteScore

3.60

自引率

5.10%

发文量

115

审稿时长

37 days

期刊介绍： Internet of Things; Engineering Cyber Physical Human Systems is a comprehensive journal encouraging cross collaboration between researchers, engineers and practitioners in the field of IoT & Cyber Physical Human Systems. The journal offers a unique platform to exchange scientific information on the entire breadth of technology, science, and societal applications of the IoT. The journal will place a high priority on timely publication, and provide a home for high quality. Furthermore, IOT is interested in publishing topical Special Issues on any aspect of IOT.