Lightweight and fine‐grained access control for cloud–fog‐based electronic medical record sharing systems

Summary The electronic medical record (EMR) sharing systems promote medical services' efficiency, save human resources, and reduce energy consumption. A number of patients are ready to store their medical records in cloud. Nevertheless, owing to the medical record's privacy sensitivity, se...

Full description

Saved in:
Bibliographic Details
Published in:International journal of communication systems Vol. 34; no. 13
Main Authors: Zhang, Aiqing, Wang, Xiao, Ye, Xinrong, Xie, Xiaojuan
Format: Journal Article
Language:English
Published: Chichester Wiley Subscription Services, Inc 10.09.2021
Subjects:
Access control
Algorithms
Electronic health records
electronic medical record sharing
Encryption
Energy consumption
Health services
Human resources
Keywords
Lightweight
Medical records
Privacy
privacy protection
Searching
Security
Security management
ISSN:1074-5351, 1099-1131
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Summary The electronic medical record (EMR) sharing systems promote medical services' efficiency, save human resources, and reduce energy consumption. A number of patients are ready to store their medical records in cloud. Nevertheless, owing to the medical record's privacy sensitivity, security problems are of critical importance in EMR sharing systems. This work presents a lightweight and fine‐grained access control with data security for EMR sharing by combining fog and cloud using symmetric encryption algorithm and attribute‐based encryption algorithm. Data owners encrypt the medical records with symmetric encryption and store them in cloud. The symmetric key is protected by ciphertext‐policy attribute‐based encryption and stored in fog. The keyword extracted from medical record is encrypted by data owner with key‐policy attribute‐based keyword search encryption and sent to fog. The requesters who satisfy with the keyword ciphertext's access policy can search for the keyword. They are capable of accessing the symmetric key if their attributes satisfy with the symmetric key ciphertext's access policy. The key management method and access control scheme guarantee the medical record's security and privacy. Security analysis demonstrates that our work is able to achieve privacy protection, secure search, fine‐grained access control, and collusion resistance. We present a lightweight and fine‐grained access control with data security for EMR sharing systems by combining fog and cloud using symmetric encryption algorithm and attribute‐based encryption algorithm. Data owners encrypt the medical records with symmetric encryption and the symmetric key is protected by ciphertext‐policy attribute‐based encryption. The keyword extracted from medical record is encrypted by data owner with key‐policy attribute‐based keyword search encryption and sent to fog. The requesters who satisfy with the keyword ciphertext's access policy can search for the keyword and access the symmetric key if their attributes satisfy with the symmetric key ciphertext's access policy.
Bibliography:Funding information
National Natural Science Foundation of China, Grant/Award Numbers: 62072005, 62001246; Natural Science Foundation of Anhui Province, Grant/Award Number: 1808085MF164; Scientific Research Staring Foundation of Anhui Normal University, Grant/Award Number: 2018XJJ40
ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
ISSN:1074-5351
1099-1131
DOI:10.1002/dac.4909