Abstract
Recently, attribute-based keyword search (ABKS) schemes have been used to provide fine-grained search over encrypted data on eHealth cloud in the Internet of Things (IoT) platforms. As compared to conventional public key encryption with keyword search (PEKS) schemes, ABKS schemes provide more powerful and flexible search operations which allow encrypted data to be retrieved by multiple users that satisfy set of attributes. However, there are still some limitations and security issues on the existing ABKS schemes. Many of the existing ABKS schemes only support for the encryption of keyword and require a separate cryptographic primitive to encrypt the message. Also, most of the schemes cannot resist offline keyword guessing attacks by inside attackers (i.e., the honest-but-curious servers). A secure-channel is needed for most of the ABKS schemes to transmit the trapdoors between the server and receivers. To solve these problems, we propose a secure-channel free ciphertext-policy decryptable attribute-based keyword search (CP-DABKS) scheme. The proposed scheme allows the authorised user who satisfy the access structure to decrypt the ciphertext. Our scheme not only resists the insider keyword guessing attack, but also eliminates the secure channel for trapdoor transmission. We formally define and prove the security of the proposed CP-DABKS scheme. We also demonstrate its application on an eHealth cloud platform.
Highlights
With the development of internet technology, cloud platforms have widely been used for different applications due to its powerful storage and computing capabilities
To solve the security issues and limitations of the existing ABKS schemes, we propose a secure-channel free ciphertext-policy decryptable attribute-based keyword search (CP-DABKS) scheme
We describe the construction of our proposed CP-DABKS scheme as follows
Summary
With the development of internet technology, cloud platforms have widely been used for different applications due to its powerful storage and computing capabilities. In order to protect the confidentiality of data, EHRs are usually encrypted before uploading to the cloud platforms It is challenging for a medical practitioner to retrieve encrypted EHRs based on certain keywords or criteria associated to the encrypted documents. Inside attackers are malicious insiders, i.e., the server, which may launch attacks based on the results of running the test function in addition to keyword ciphertexts and trapdoors received from the senders and receivers Based on these two types of attackers, keyword guessing attacks are generally categorised into outside and inside KGAs. The concept of attribute-based encryption (ABE) was first proposed by Sahai and Waters [8] in 2005. The patient or the local hospital uploads the encrypted keywords and access structure as well as ciphertext of health records to the telemedicine cloud platform.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
