CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.

With the rapid advancement of information and communication technologies, there is a growing transformation of healthcare systems. A patient's health data can now be centrally stored in the cloud and be shared with multiple healthcare stakeholders, enabling the patient to be collaboratively tre...

Descripción completa

Guardado en:
Detalles Bibliográficos
Autores principales: Kennedy Edemacu, Beakcheol Jang, Jong Wook Kim
Formato: article
Lenguaje:EN
Publicado: Public Library of Science (PLoS) 2021
Materias:
R
Q
Acceso en línea:https://doaj.org/article/422a2ee4570344eab0713d10129e2755
Etiquetas: Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
id oai:doaj.org-article:422a2ee4570344eab0713d10129e2755
record_format dspace
spelling oai:doaj.org-article:422a2ee4570344eab0713d10129e27552021-12-02T20:11:20ZCESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.1932-620310.1371/journal.pone.0250992https://doaj.org/article/422a2ee4570344eab0713d10129e27552021-01-01T00:00:00Zhttps://doi.org/10.1371/journal.pone.0250992https://doaj.org/toc/1932-6203With the rapid advancement of information and communication technologies, there is a growing transformation of healthcare systems. A patient's health data can now be centrally stored in the cloud and be shared with multiple healthcare stakeholders, enabling the patient to be collaboratively treated by more than one healthcare institution. However, several issues, including data security and privacy concerns still remain unresolved. Ciphertext-policy attribute-based encryption (CP-ABE) has shown promising potential in providing data security and privacy in cloud-based systems. Nevertheless, the conventional CP-ABE scheme is inadequate for direct adoption in a collaborative ehealth system. For one, its expressiveness is limited as it is based on a monotonic access structure. Second, it lacks an attribute/user revocation mechanism. Third, the computational burden on both the data owner and data users is linear with the number of attributes in the ciphertext. To address these inadequacies, we propose CESCR, a CP-ABE for efficient and secure sharing of health data in collaborative ehealth systems with immediate and efficient attribute/user revocation. The CESCR scheme is unbounded, i.e., it does not bind the size of the attribute universe to the security parameter, it is based on the expressive and non-restrictive ordered binary decision diagram (OBDD) access structure, and it securely outsources the computationally demanding attribute operations of both encryption and decryption processes without requiring a dummy attribute. Security analysis shows that the CESCR scheme is secure in the selective model. Simulation and performance comparisons with related schemes also demonstrate that the CESCR scheme is expressive and efficient.Kennedy EdemacuBeakcheol JangJong Wook KimPublic Library of Science (PLoS)articleMedicineRScienceQENPLoS ONE, Vol 16, Iss 5, p e0250992 (2021)
institution DOAJ
collection DOAJ
language EN
topic Medicine
R
Science
Q
spellingShingle Medicine
R
Science
Q
Kennedy Edemacu
Beakcheol Jang
Jong Wook Kim
CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
description With the rapid advancement of information and communication technologies, there is a growing transformation of healthcare systems. A patient's health data can now be centrally stored in the cloud and be shared with multiple healthcare stakeholders, enabling the patient to be collaboratively treated by more than one healthcare institution. However, several issues, including data security and privacy concerns still remain unresolved. Ciphertext-policy attribute-based encryption (CP-ABE) has shown promising potential in providing data security and privacy in cloud-based systems. Nevertheless, the conventional CP-ABE scheme is inadequate for direct adoption in a collaborative ehealth system. For one, its expressiveness is limited as it is based on a monotonic access structure. Second, it lacks an attribute/user revocation mechanism. Third, the computational burden on both the data owner and data users is linear with the number of attributes in the ciphertext. To address these inadequacies, we propose CESCR, a CP-ABE for efficient and secure sharing of health data in collaborative ehealth systems with immediate and efficient attribute/user revocation. The CESCR scheme is unbounded, i.e., it does not bind the size of the attribute universe to the security parameter, it is based on the expressive and non-restrictive ordered binary decision diagram (OBDD) access structure, and it securely outsources the computationally demanding attribute operations of both encryption and decryption processes without requiring a dummy attribute. Security analysis shows that the CESCR scheme is secure in the selective model. Simulation and performance comparisons with related schemes also demonstrate that the CESCR scheme is expressive and efficient.
format article
author Kennedy Edemacu
Beakcheol Jang
Jong Wook Kim
author_facet Kennedy Edemacu
Beakcheol Jang
Jong Wook Kim
author_sort Kennedy Edemacu
title CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
title_short CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
title_full CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
title_fullStr CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
title_full_unstemmed CESCR: CP-ABE for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
title_sort cescr: cp-abe for efficient and secure sharing of data in collaborative ehealth with revocation and no dummy attribute.
publisher Public Library of Science (PLoS)
publishDate 2021
url https://doaj.org/article/422a2ee4570344eab0713d10129e2755
work_keys_str_mv AT kennedyedemacu cescrcpabeforefficientandsecuresharingofdataincollaborativeehealthwithrevocationandnodummyattribute
AT beakcheoljang cescrcpabeforefficientandsecuresharingofdataincollaborativeehealthwithrevocationandnodummyattribute
AT jongwookkim cescrcpabeforefficientandsecuresharingofdataincollaborativeehealthwithrevocationandnodummyattribute
_version_ 1718374879456133120