Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems
•In this paper, we study conjunctive multi-key searchable encryption with attribute-based access control for HER systems. Compared with the existing multi-key searchable encryption (MKSE) schemes, our solution has the following four advantages:•Our scheme has more flexible attribute access policy. D...
Gespeichert in:
| Veröffentlicht in: | Computer standards and interfaces 2022-08, Vol.82, p.103606, Article 103606 |
|---|---|
| Hauptverfasser: | , , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | 103606 |
| container_title | Computer standards and interfaces |
| container_volume | 82 |
| creator | Li, Wanhua Xu, Lingling Wen, Yamin Zhang, Fangguo |
| description | •In this paper, we study conjunctive multi-key searchable encryption with attribute-based access control for HER systems. Compared with the existing multi-key searchable encryption (MKSE) schemes, our solution has the following four advantages:•Our scheme has more flexible attribute access policy. Data owners do not make access control for everyone but for people with certain attribute sets.•Our scheme supports conjunctive keyword search. Data users can obtain results more accurately due to this feature.•Our scheme gets rid of secure channels for key transmission. In some MKSE schemes, users transfer secret keys with secure channels which increases the communication overhead.•Our scheme can resist keyword guessing attack while most other MKSE schemes can not achieve this security. Compared with the existing attribute-based keyword search (ABKS) schemes, our solution has the following two advantages:•We hide the attribute values with just a small price which may reveal the data users privacy.•In our solution, users privacy does not rely on the trusted authority. The secret keys of the data owners and the data users are generated by themselves.
With the growing demands of online access to health services, multiple medical institutions store their encrypted electronic health records (EHR) on the cloud and share them with the specified doctors and researchers. Multi-key searchable encryption (MKSE) is very suitable for this case for the sake of the privacy of patients and the system effeciency. In MKSE, multiple data owners can encrypt the data with their own secret keys and upload them to the remote cloud server. In order to search all the encrypted data on the cloud for a keyword, an authorized user only needs to generate a single trapdoor whose length is independent on the number of the data owners. MKSE allows multiple data owners to share their data with users efficiently. In this paper, we present an efficient MKSE scheme which supports fine-grained access control and conjunctive keyword searches. Both the control policy and keyword expressivity of our scheme are more flexible than the existing MKSE schemes. Meanwhile, our scheme can resist the keyword guessing attack. We will simulate our MKSE scheme and show that it is practical in the real world applications. |
| doi_str_mv | 10.1016/j.csi.2021.103606 |
| format | Article |
| fullrecord | <record><control><sourceid>proquest_cross</sourceid><recordid>TN_cdi_proquest_journals_2666965946</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><els_id>S092054892100101X</els_id><sourcerecordid>2666965946</sourcerecordid><originalsourceid>FETCH-LOGICAL-c325t-e34a27d921def7d379405ad00831a099842ea17733525959ae7cda2dcceae32c3</originalsourceid><addsrcrecordid>eNp9kE1LAzEQhoMoWKs_wFvA89Z87CYbPElRKxQE0XNIk1matd3UJFvZf--W9expGHifeYcHoVtKFpRQcd8ubPILRhgddy6IOEMzWktWSELrczQjipGiKmt1ia5SagkhTHA5Q3oZurbvbPZHwPt-l33xBQNOYKLdms0OMHQ2DofsQ4d_fN5ik3P0mz5DsTEJHDbWQkrYhi7HsMNNiPhp9Y7TkDLs0zW6aMwuwc3fnKPP56eP5apYv728Lh_XheWsygXw0jDpFKMOGum4VCWpjCOk5tQQpeqSgaFScl6xSlXKgLTOMDd2G-DM8jm6m-4eYvjuIWXdhj52Y6VmQgglKlWKMUWnlI0hpQiNPkS_N3HQlOiTR93q0aM-edSTx5F5mBgY3z96iDpZP0oB5yPYrF3w_9C_PON70w</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2666965946</pqid></control><display><type>article</type><title>Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems</title><source>Elsevier ScienceDirect Journals</source><creator>Li, Wanhua ; Xu, Lingling ; Wen, Yamin ; Zhang, Fangguo</creator><creatorcontrib>Li, Wanhua ; Xu, Lingling ; Wen, Yamin ; Zhang, Fangguo</creatorcontrib><description>•In this paper, we study conjunctive multi-key searchable encryption with attribute-based access control for HER systems. Compared with the existing multi-key searchable encryption (MKSE) schemes, our solution has the following four advantages:•Our scheme has more flexible attribute access policy. Data owners do not make access control for everyone but for people with certain attribute sets.•Our scheme supports conjunctive keyword search. Data users can obtain results more accurately due to this feature.•Our scheme gets rid of secure channels for key transmission. In some MKSE schemes, users transfer secret keys with secure channels which increases the communication overhead.•Our scheme can resist keyword guessing attack while most other MKSE schemes can not achieve this security. Compared with the existing attribute-based keyword search (ABKS) schemes, our solution has the following two advantages:•We hide the attribute values with just a small price which may reveal the data users privacy.•In our solution, users privacy does not rely on the trusted authority. The secret keys of the data owners and the data users are generated by themselves.
With the growing demands of online access to health services, multiple medical institutions store their encrypted electronic health records (EHR) on the cloud and share them with the specified doctors and researchers. Multi-key searchable encryption (MKSE) is very suitable for this case for the sake of the privacy of patients and the system effeciency. In MKSE, multiple data owners can encrypt the data with their own secret keys and upload them to the remote cloud server. In order to search all the encrypted data on the cloud for a keyword, an authorized user only needs to generate a single trapdoor whose length is independent on the number of the data owners. MKSE allows multiple data owners to share their data with users efficiently. In this paper, we present an efficient MKSE scheme which supports fine-grained access control and conjunctive keyword searches. Both the control policy and keyword expressivity of our scheme are more flexible than the existing MKSE schemes. Meanwhile, our scheme can resist the keyword guessing attack. We will simulate our MKSE scheme and show that it is practical in the real world applications.</description><identifier>ISSN: 0920-5489</identifier><identifier>EISSN: 1872-7018</identifier><identifier>DOI: 10.1016/j.csi.2021.103606</identifier><language>eng</language><publisher>Amsterdam: Elsevier B.V</publisher><subject>Access control ; Attribute-based ; Conjunctive keyword search ; EHR ; Electronic health records ; Encryption ; Health care facilities ; Health services ; Keywords ; Multi-key ; Physicians ; Searchable encryption</subject><ispartof>Computer standards and interfaces, 2022-08, Vol.82, p.103606, Article 103606</ispartof><rights>2021</rights><rights>Copyright Elsevier BV Aug 2022</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c325t-e34a27d921def7d379405ad00831a099842ea17733525959ae7cda2dcceae32c3</citedby><cites>FETCH-LOGICAL-c325t-e34a27d921def7d379405ad00831a099842ea17733525959ae7cda2dcceae32c3</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://www.sciencedirect.com/science/article/pii/S092054892100101X$$EHTML$$P50$$Gelsevier$$H</linktohtml><link.rule.ids>314,776,780,3536,27903,27904,65309</link.rule.ids></links><search><creatorcontrib>Li, Wanhua</creatorcontrib><creatorcontrib>Xu, Lingling</creatorcontrib><creatorcontrib>Wen, Yamin</creatorcontrib><creatorcontrib>Zhang, Fangguo</creatorcontrib><title>Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems</title><title>Computer standards and interfaces</title><description>•In this paper, we study conjunctive multi-key searchable encryption with attribute-based access control for HER systems. Compared with the existing multi-key searchable encryption (MKSE) schemes, our solution has the following four advantages:•Our scheme has more flexible attribute access policy. Data owners do not make access control for everyone but for people with certain attribute sets.•Our scheme supports conjunctive keyword search. Data users can obtain results more accurately due to this feature.•Our scheme gets rid of secure channels for key transmission. In some MKSE schemes, users transfer secret keys with secure channels which increases the communication overhead.•Our scheme can resist keyword guessing attack while most other MKSE schemes can not achieve this security. Compared with the existing attribute-based keyword search (ABKS) schemes, our solution has the following two advantages:•We hide the attribute values with just a small price which may reveal the data users privacy.•In our solution, users privacy does not rely on the trusted authority. The secret keys of the data owners and the data users are generated by themselves.
With the growing demands of online access to health services, multiple medical institutions store their encrypted electronic health records (EHR) on the cloud and share them with the specified doctors and researchers. Multi-key searchable encryption (MKSE) is very suitable for this case for the sake of the privacy of patients and the system effeciency. In MKSE, multiple data owners can encrypt the data with their own secret keys and upload them to the remote cloud server. In order to search all the encrypted data on the cloud for a keyword, an authorized user only needs to generate a single trapdoor whose length is independent on the number of the data owners. MKSE allows multiple data owners to share their data with users efficiently. In this paper, we present an efficient MKSE scheme which supports fine-grained access control and conjunctive keyword searches. Both the control policy and keyword expressivity of our scheme are more flexible than the existing MKSE schemes. Meanwhile, our scheme can resist the keyword guessing attack. We will simulate our MKSE scheme and show that it is practical in the real world applications.</description><subject>Access control</subject><subject>Attribute-based</subject><subject>Conjunctive keyword search</subject><subject>EHR</subject><subject>Electronic health records</subject><subject>Encryption</subject><subject>Health care facilities</subject><subject>Health services</subject><subject>Keywords</subject><subject>Multi-key</subject><subject>Physicians</subject><subject>Searchable encryption</subject><issn>0920-5489</issn><issn>1872-7018</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2022</creationdate><recordtype>article</recordtype><recordid>eNp9kE1LAzEQhoMoWKs_wFvA89Z87CYbPElRKxQE0XNIk1matd3UJFvZf--W9expGHifeYcHoVtKFpRQcd8ubPILRhgddy6IOEMzWktWSELrczQjipGiKmt1ia5SagkhTHA5Q3oZurbvbPZHwPt-l33xBQNOYKLdms0OMHQ2DofsQ4d_fN5ik3P0mz5DsTEJHDbWQkrYhi7HsMNNiPhp9Y7TkDLs0zW6aMwuwc3fnKPP56eP5apYv728Lh_XheWsygXw0jDpFKMOGum4VCWpjCOk5tQQpeqSgaFScl6xSlXKgLTOMDd2G-DM8jm6m-4eYvjuIWXdhj52Y6VmQgglKlWKMUWnlI0hpQiNPkS_N3HQlOiTR93q0aM-edSTx5F5mBgY3z96iDpZP0oB5yPYrF3w_9C_PON70w</recordid><startdate>202208</startdate><enddate>202208</enddate><creator>Li, Wanhua</creator><creator>Xu, Lingling</creator><creator>Wen, Yamin</creator><creator>Zhang, Fangguo</creator><general>Elsevier B.V</general><general>Elsevier BV</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>202208</creationdate><title>Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems</title><author>Li, Wanhua ; Xu, Lingling ; Wen, Yamin ; Zhang, Fangguo</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c325t-e34a27d921def7d379405ad00831a099842ea17733525959ae7cda2dcceae32c3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2022</creationdate><topic>Access control</topic><topic>Attribute-based</topic><topic>Conjunctive keyword search</topic><topic>EHR</topic><topic>Electronic health records</topic><topic>Encryption</topic><topic>Health care facilities</topic><topic>Health services</topic><topic>Keywords</topic><topic>Multi-key</topic><topic>Physicians</topic><topic>Searchable encryption</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Li, Wanhua</creatorcontrib><creatorcontrib>Xu, Lingling</creatorcontrib><creatorcontrib>Wen, Yamin</creatorcontrib><creatorcontrib>Zhang, Fangguo</creatorcontrib><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>Computer standards and interfaces</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Li, Wanhua</au><au>Xu, Lingling</au><au>Wen, Yamin</au><au>Zhang, Fangguo</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems</atitle><jtitle>Computer standards and interfaces</jtitle><date>2022-08</date><risdate>2022</risdate><volume>82</volume><spage>103606</spage><pages>103606-</pages><artnum>103606</artnum><issn>0920-5489</issn><eissn>1872-7018</eissn><abstract>•In this paper, we study conjunctive multi-key searchable encryption with attribute-based access control for HER systems. Compared with the existing multi-key searchable encryption (MKSE) schemes, our solution has the following four advantages:•Our scheme has more flexible attribute access policy. Data owners do not make access control for everyone but for people with certain attribute sets.•Our scheme supports conjunctive keyword search. Data users can obtain results more accurately due to this feature.•Our scheme gets rid of secure channels for key transmission. In some MKSE schemes, users transfer secret keys with secure channels which increases the communication overhead.•Our scheme can resist keyword guessing attack while most other MKSE schemes can not achieve this security. Compared with the existing attribute-based keyword search (ABKS) schemes, our solution has the following two advantages:•We hide the attribute values with just a small price which may reveal the data users privacy.•In our solution, users privacy does not rely on the trusted authority. The secret keys of the data owners and the data users are generated by themselves.
With the growing demands of online access to health services, multiple medical institutions store their encrypted electronic health records (EHR) on the cloud and share them with the specified doctors and researchers. Multi-key searchable encryption (MKSE) is very suitable for this case for the sake of the privacy of patients and the system effeciency. In MKSE, multiple data owners can encrypt the data with their own secret keys and upload them to the remote cloud server. In order to search all the encrypted data on the cloud for a keyword, an authorized user only needs to generate a single trapdoor whose length is independent on the number of the data owners. MKSE allows multiple data owners to share their data with users efficiently. In this paper, we present an efficient MKSE scheme which supports fine-grained access control and conjunctive keyword searches. Both the control policy and keyword expressivity of our scheme are more flexible than the existing MKSE schemes. Meanwhile, our scheme can resist the keyword guessing attack. We will simulate our MKSE scheme and show that it is practical in the real world applications.</abstract><cop>Amsterdam</cop><pub>Elsevier B.V</pub><doi>10.1016/j.csi.2021.103606</doi></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 0920-5489 |
| ispartof | Computer standards and interfaces, 2022-08, Vol.82, p.103606, Article 103606 |
| issn | 0920-5489 1872-7018 |
| language | eng |
| recordid | cdi_proquest_journals_2666965946 |
| source | Elsevier ScienceDirect Journals |
| subjects | Access control Attribute-based Conjunctive keyword search EHR Electronic health records Encryption Health care facilities Health services Keywords Multi-key Physicians Searchable encryption |
| title | Conjunctive multi-key searchable encryption with attribute-based access control for EHR systems |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-27T06%3A24%3A03IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_cross&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Conjunctive%20multi-key%20searchable%20encryption%20with%20attribute-based%20access%20control%20for%20EHR%20systems&rft.jtitle=Computer%20standards%20and%20interfaces&rft.au=Li,%20Wanhua&rft.date=2022-08&rft.volume=82&rft.spage=103606&rft.pages=103606-&rft.artnum=103606&rft.issn=0920-5489&rft.eissn=1872-7018&rft_id=info:doi/10.1016/j.csi.2021.103606&rft_dat=%3Cproquest_cross%3E2666965946%3C/proquest_cross%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2666965946&rft_id=info:pmid/&rft_els_id=S092054892100101X&rfr_iscdi=true |