面向云端的安全高效的电子健康记录  被引量：5

作　　者：屠袁飞 张成真 TU Yuan-fei;ZHANG Cheng-zhen(College of Computer Science and Technology,Nanjing University of Technology,Nanjing 211816,China)

机构地区：[1]南京工业大学计算机科学与技术学院

出　　处：《计算机科学》2020年第2期294-299,共6页Computer Science

基　　金：国家自然科学基金(61572263,61272084);江苏省高校自然科学研究重大项目(11KJA520002);高等学校博士学科点专项科研基金(20113223110003);中国博士后科学基金(2015M581794);江苏省博士后科研资助计划(1501023C)~~

摘　　要：随着移动设备的发展和普及,基于体域网(Body Area Network,BAN)的电子健康记录正变得越来越流行。人们将从体域网中获取的医疗数据备份到云端,导致几乎任何地方的医疗人员都能够使用移动终端来访问用户的医疗数据。但是对于一些病患来说,这些医疗数据属于个人隐私,他们只想让拥有某些权限的人查看。文中提出了一种高效、安全的细粒度访问控制方案,不仅实现了授权用户对云存储中医疗数据的访问,而且还支持某些特权医生对记录进行修改。为了提高整个系统的效率,加入了先匹配再解密的手段,用于执行解密测试而不解密。此外,该方案将双线性配对操作外包给网关,而不会泄露数据内容,因此在很大程度上消除了用户的解密开销。性能评估显示所提解决方案在计算、通信和存储方面的效率得到了显著提高。With the development and popularty of mobile devices,Electronic Health Record-based BAN is becoming more and more popular.People can back up the medical data acquired by the Body Area Network(BAN)to the cloud,which makes it possible for medical workers to accessed the user’s medical data using mobile terminals almost anywhere.However,for some patients,these medical data are personal privacy and they only want to be accessed by someone with some rights.This paper proposed an efficient and secure fine-grained access control scheme,which not only enables authorized users to access medical data stored in the cloud,but also supports some privileged doctors to write records.In order to improve effciency of whole system,a method of matching before decryption is added to perform decryption tests without decryption.In addition,this scheme can outsource the bilinear pairing operation to the gateway without leaking the data content so that eliminates the user’s computation overhead.Performance evaluation shows that efficiency of proposed solution in computating,communication and storage has been significantly improved.

关 键 词：电子健康记录 体域网 医疗数据 隐私 访问控制 

分 类 号：TP309.7[自动化与计算机技术—计算机系统结构]