Department of Computer Science, St.Joseph's College of Arts and Science for Women, Hosur, Tamilnadu, India.
Department of Computer Science and Engineering, Adhiyamaan College of Engineering, Hosur, Tamilnadu, India.
J Med Syst. 2019 May 7;43(6):171. doi: 10.1007/s10916-019-1301-x.
Cloud-based Personal Health Record (PHR) in the electronic and information system has become next generation cloud platform for facilitating efficient, secure and scalable data access to foster the collaborative care. Data owner prefers to outsource their confidential electronic data to the cloud for effective retrieval and storage without provoking the depletion or losses due to data management and maintenance. Secure data sharing and searching are vital. Be that as it may, secure search for the outsourced data is a formidable errand, which may easily incur the leakage of sensitive personal information. In this research, we propose a novel diversified access control framework composed of User Usage Based Encryption (UUBE) which is normally based on the searchable encryption scheme. In the UUBE demonstrate, Usage is mapped as credential/accreditation with time allotment to each event, where the event is considered as security trait or a privacy attribute. Data user/client can decipher an event if and only if there is a match between the accreditation and credential related to the event. A searchable encryption enables efficient routing of encrypted events using data or feature extraction algorithm as an important technique. Multicredential routing is modelled as an event dissemination strategy to strengthen weak data user confidentiality. The data user is permitted to maintain the accreditations/credentials as per their usage category. Private keys are assigned to the user/client as labels with the accreditations or credentials. A data owner/proprietor associates and relates each enciphered event with a set of credentials.
基于云的个人健康记录(PHR)在电子和信息系统中已成为下一代云平台,可促进高效、安全和可扩展的数据访问,以促进协作式护理。数据所有者更愿意将其机密电子数据外包给云,以实现有效检索和存储,而不会因数据管理和维护而导致数据耗尽或丢失。安全的数据共享和搜索至关重要。即便如此,对外包数据进行安全搜索仍然是一项艰巨的任务,这很容易导致敏感个人信息的泄露。在这项研究中,我们提出了一种新的多样化访问控制框架,该框架由通常基于可搜索加密方案的用户使用基础加密(UUBE)组成。在 UUBE 演示中,Usage 被映射为与时间分配相关的凭证/认证,其中事件被视为安全特征或隐私属性。只有在与事件相关的认证和凭证之间存在匹配时,数据用户/客户端才能对事件进行解密。可搜索加密可使用数据或特征提取算法作为重要技术来有效地路由加密事件。多凭证路由被建模为一种事件分发策略,以增强弱数据用户的机密性。数据用户可以根据其使用类别维护认证/凭证。私钥作为标签与认证或凭证一起分配给用户/客户端。数据所有者/所有者将每个加密事件与一组凭证相关联和相关联。
