Zhang Jiayuan, Guo Rongxin, Shi Yifan, Tang Wanting
College of Information Science and Engineering, Huaqiao University, Xiamen 361021, China.
College of Engineering, Huaqiao University, Quanzhou 362021, China.
Math Biosci Eng. 2024 Jun 3;21(6):6167-6189. doi: 10.3934/mbe.2024271.
Many current electronic medical record (EMR) sharing schemes that use proxy re-encryption and blockchain do not fully consider the potential threat of malicious node impersonation attacks. This oversight could lead to data leakage as attackers masquerade as legitimate users or proxy nodes during the sharing process. To deal with this problem, we propose an EMR sharing scheme based on proxy re-encryption and blockchain to protect against impersonation attacks. First, we prevent the potential threat of impersonation attacks by generating a shared temporary key and assigning tasks to multiple proxy nodes. Second, we use a random function to ensure that the selection of encrypted proxy nodes is fair. Third, we use a combination of blockchain and the InterPlanetary File System to solve the problem of insufficient storage capacity of shared processes and ensure the storage security of EMRs. Through the security proof, our scheme guarantees anti-impersonation, anti-collusion, and anti-chosen plaintext attack capability in the sharing process of EMRs. Additionally, experiments on the blockchain platform, namely Chain33, show that our scheme significantly increases efficiency.
许多当前使用代理重加密和区块链的电子病历(EMR)共享方案并未充分考虑恶意节点伪装攻击的潜在威胁。这种疏忽可能导致数据泄露,因为攻击者在共享过程中伪装成合法用户或代理节点。为了解决这个问题,我们提出了一种基于代理重加密和区块链的EMR共享方案,以防范伪装攻击。首先,我们通过生成共享临时密钥并将任务分配给多个代理节点来防止伪装攻击的潜在威胁。其次,我们使用随机函数确保加密代理节点的选择是公平的。第三,我们使用区块链和星际文件系统的组合来解决共享过程中存储容量不足的问题,并确保EMR的存储安全。通过安全证明,我们的方案在EMR共享过程中保证了抗伪装、抗勾结和抗选择明文攻击的能力。此外,在区块链平台Chain33上进行的实验表明,我们的方案显著提高了效率。
