Abstract
As an emerging cryptographic primitive, Ciphertext-Policy Attribute-Based Encryption (CP-ABE) is suitable for the owner to share his personal health records (PHRs) in mobile healthcare systems (mHealth). Before deploying traditional CP-ABE in real mHealth applications, there are three concerns worth considering. First, the scale of pre-defined attribute universe is lack of scalability. Second, the plaintext access policy sent along with the ciphertext would leak the PHR owner's privacy. Third, it is difficult to identify the malicious user who intentionally disclosed his (partial or modified) private key. In this paper, we present HTAC, a fine-grained policy-hiding and traceable access control scheme for mHealth. In HTAC, the attribute universe is exponentially large and unbounded. Each attribute is expressed by an attribute name and an attribute value. In the encryption phase, the value is hidden in the ciphertext and only the generic attribute name is exposed. The malicious user will be precisely identified by searching the identity linked with the suspicious private key in an identity table. We further extend HTAC by removing the identity table and assigning more explicitly responsibility for the authority and the trace center. Then the storage overhead of tracing the malicious users is constant. The security analysis and performance comparison indicate that HTAC and the extended scheme are secure and practicable for real mHealth.
Highlights
Mobile Healthcare system can offer various on-demand and remote healthcare services for patients
Since that the access policy is enforced in the ciphertext, Ciphertext-Policy Attribute-based encryption (ABE) (CP-ABE) [15]–[17] is widely applied to enable the personal health records (PHRs) owner to define the access policy
SYSTEM ARCHITECTURE Fig. 1 depicts the system model of HTAC which is composed of 5 generic entities: (1) Attribute Authority (AA), (2) Cloud Service Provider (CSP), (3) PHR Owner (PO), (4) PHR User (PU), (5) Trace Center (TC)
Summary
Mobile Healthcare system (mHealth) can offer various on-demand and remote healthcare services for patients. There exist various ABE schemes which provided multiple authorities [18]–[21], policy expressiveness [22], [23], adaptively security [24], [25] and attribute revocation [26], [27]. In the large universe ABE, no such bound exists and the public parameter is constant size. No matter the user is authorized or not, he can obtain the plaintext access policy from which he can get some sensitive or private information of the data owner. None of the aforementioned CP-ABE schemes can simultaneously addressed the three main properties of large universe, policy hiding and traceability. We proposed HTAC for mHealth, a large universe, partially-hidden and traceable access control scheme. Our contributions are as follows: 1. Large Universe: No extra bound is imposed on the system attribute universe and the public parameter is constant size
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
