Publication Type

Journal Article

Version

publishedVersion

Publication Date

1-2018

Abstract

Electronic Health Record (EHR) is a digital health documentary. It contains not only the health-related records but also the personal sensitive information. Therefore, how to reliably share EHR through the cloud is a challenging issue. Ciphertext-policy attribute-based encryption (CP-ABE) is a promising cryptography prototype, which can achieve fine-grained access control as well as one-to-many encryption. In CP-ABE, access policy is attached to the ciphertext, and however, the access policy is not protected, which will also cause some privacy leakage. In this paper, we propose a policy preserving EHR system on the basis of CP-ABE. Specifically, we designed an algorithm, which can hide the entire access policy as well as recover the hidden attributes from the access matrix. The subsequent evaluation of element insert, lookup, and recovery shows that our proposed scheme only introduces light-weighted overhead cost. The security analysis indicates that the scheme is selectively secure under q-BDHE assumption.

Keywords

Attribute cuckoo filter (ACF), access control, cloud computing, CP-ABE, Electronic Health Record (EHR), policy preserving

Discipline

Health Information Technology | Information Security

Research Areas

Cybersecurity

Publication

IEEE Access

Volume

6

First Page

53698

Last Page

53708

ISSN

2169-3536

Identifier

10.1109/ACCESS.2018.2871170

Publisher

Institute of Electrical and Electronics Engineers (IEEE): OAJ / IEEE

Copyright Owner and License

Publisher

Additional URL

https://doi.org/10.1109/ACCESS.2018.2871170

Download

Share

COinS