• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

A Coordinated Ciphertext Policy Attribute-based PHR Access Control with User Accountability

Vol. 12, No.4, April 30, 2018
10.3837/tiis.2018.04.024, Download Paper (Free):

Abstract

The personal health record (PHR) system is a promising application that provides precise information and customized services for health care. To flexibly protect sensitive data, attribute-based encryption has been widely applied for PHR access control. However, escrow, exposure and abuse of private keys still hinder its practical application in the PHR system. In this paper, we propose a coordinated ciphertext policy attribute-based access control with user accountability (CCP-ABAC-UA) for the PHR system. Its coordinated mechanism not only effectively prevents the escrow and exposure of private keys but also accurately detects whether key abuse is taking place and identifies the traitor. We claim that CCP-ABAC-UA is a user-side lightweight scheme. Especially for PHR receivers, no bilinear pairing computation is needed to access health records, so the practical mobile PHR system can be realized. By introducing a novel provably secure construction, we prove that it is secure against selectively chosen plaintext attacks. The analysis indicates that CCP-ABAC-UA achieves better performance in terms of security and user-side computational efficiency for a PHR system.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
Guofeng Lin, Lirong You, Bing Hu, Hanshu Hong and Zhixin Sun, "A Coordinated Ciphertext Policy Attribute-based PHR Access Control with User Accountability," KSII Transactions on Internet and Information Systems, vol. 12, no. 4, pp. 1832-1853, 2018. DOI: 10.3837/tiis.2018.04.024

[ACM Style]
Lin, G., You, L., Hu, B., Hong, H., and Sun, Z. 2018. A Coordinated Ciphertext Policy Attribute-based PHR Access Control with User Accountability. KSII Transactions on Internet and Information Systems, 12, 4, (2018), 1832-1853. DOI: 10.3837/tiis.2018.04.024