Verifiable outsourced attribute-based encryption scheme for cloud-assisted mobile e-health system

Author

Yinbin MIAO
Feng LI
Xinghua LI
Jianting NING
Hongwei LI
Kim-Kwang Raymond CHOO
Robert H. DENG, Singapore Management UniversityFollow

Publication Type

Journal Article

Publication Date

8-2024

Abstract

The cloud-assisted mobile electronic health (e-health) system facilitates e-health data sharing between healthcare providers and patients, but also raises the security and privacy concerns of e-health data. Although Ciphertext-Policy Attribute-Based Encryption (CP-ABE) has been a promising technique to achieve fine-grained access control over encrypted e-health data, it still incurs high encryption and decryption burdens on mobile users such as smartphones and sensors. In addition, malicious cloud servers may conduct incorrect operations due to various interest incentives (e.g., leaking sensitive information to illegal users, saving computation and storage costs). To solve the above issues, in this paper we first propose an Outsourced CP-ABE (OABE) with verifiable encryption scheme by splitting secret keys corresponding to an attribute set and using the short signature, which not only reduces the encryption and decryption complexities of mobile users but also guarantees that cloud servers correctly perform encryption operations. Then, we extend OABE to construct outsourced CP-ABE with verifiable decryption (OABE+) by utilizing the verifiable tag mechanism, which guarantees that cloud servers correctly conduct the ciphertext transformation. Formal security analysis proves that our schemes are selectively secure against unauthorized accesses and malicious operations. Extensive experiments using various real-world datasets demonstrate that our schemes are efficient and feasible in real applications.

Keywords

Encryption, Servers, Complexity Theory, Access Control, Outsourcing, Task Analysis, Receivers, Mobile E Health System, Outsourced CP ABE, Verifiable Decryption, Verifiable Encryption, Verifiable Tag Mechanism, Encryption Scheme, Attribute Based Encryption

Discipline

Health Information Technology | Information Security

Research Areas

Cybersecurity

Publication

IEEE Transactions on Dependable and Secure Computing

Volume

21

Issue

4

First Page

1845

Last Page

1862

ISSN

1545-5971

Identifier

10.1109/TDSC.2023.3292129

Publisher

Institute of Electrical and Electronics Engineers

Citation

MIAO, Yinbin; LI, Feng; LI, Xinghua; NING, Jianting; LI, Hongwei; CHOO, Kim-Kwang Raymond; and DENG, Robert H.. Verifiable outsourced attribute-based encryption scheme for cloud-assisted mobile e-health system. (2024). IEEE Transactions on Dependable and Secure Computing. 21, (4), 1845-1862.
Available at: https://ink.library.smu.edu.sg/sis_research/9858

Additional URL

https://doi.org/10.1109/TDSC.2023.3292129