Efficient, Revocable, and Privacy-Preserving Fine-Grained Data Sharing With Keyword Search for the Cloud-Assisted Medical IoT System

The cloud-assisted medical Internet of Things (MIoT) has played a revolutionary role in promoting the quality of public medical services. However, the practical deployment of cloud-assisted MIoT in an open healthcare scenario raises the concern on data security and user's privacy. Despite endea...

Full description

Saved in:
Bibliographic Details
Published inIEEE journal of biomedical and health informatics Vol. 26; no. 5; pp. 2041 - 2051
Main Authors Bao, Yangyang, Qiu, Weidong, Tang, Peng, Cheng, Xiaochun
Format Journal Article
LanguageEnglish
Published United States IEEE 01.05.2022
The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Subjects
Access control
Algorithms
Attribute-based encryption
Bioinformatics
Cloud computing
Computer applications
Computer Security
Computing time
Cryptography
Cybersecurity
Data retrieval
Encryption
Health services
Humans
Information Dissemination
Information sharing
Internet of medical things
Internet of Things
Keyword search
Keywords
medical Internet of Things
Medical services
Privacy
searchable encryption
Searching
Security
Online AccessGet full text
ISSN2168-2194
2168-2208
2168-2208
DOI10.1109/JBHI.2021.3100871

Cover

More Information
Summary:The cloud-assisted medical Internet of Things (MIoT) has played a revolutionary role in promoting the quality of public medical services. However, the practical deployment of cloud-assisted MIoT in an open healthcare scenario raises the concern on data security and user's privacy. Despite endeavors by academic and industrial community to eliminate this concern by cryptographic methods, resource-constrained devices in MIoT may be subject to the heavy computational overheads of cryptographic computations. To address this issue, this paper proposes an efficient, revocable, privacy-preserving fine-grained data sharing with keyword search (ERPF-DS-KS) scheme, which realizes the efficient and fine-grained access control and ciphertext keyword search, and enables the flexible indirect revocation to malicious data users. A pseudo identity-based signature mechanism is designed to provide the data authenticity. We analyze the security properties of our proposed scheme, and via the theoretical comparison and experimental results we demonstrate that for the resource-constrained devices in the patient and doctor side of MIoT, in comparison with other related schemes, ERPF-DS-KS just consumes the lightweight and constant size communication/storage as well as computational time cost. For the keyword search, compared with related schemes, the cloud can quickly check whether a ciphertext contains the specified keyword with slight computations in the online phase. This further demonstrates that ERPF-DS-KS is efficient and practical in the cloud-assisted MIoT scenario.
Bibliography:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 14
content type line 23
ISSN:2168-2194
2168-2208
2168-2208
DOI:10.1109/JBHI.2021.3100871