Revocable and verifable weighted attribute-based encryption with collaborative access for electronic health record in cloud  

作　　者：Ximing Li Hao Wang Sha Ma Meiyan Xiao Qiong Huang 

机构地区：[1]College of Mathematics and Informatics,South China Agricultural University,Guangzhou 510000,Guangdong,China

出　　处：《Cybersecurity》2025年第1期189-207,共19页网络空间安全科学与技术(英文)

基　　金：supported in part by the National Natural Science Foundation of China under Grant 61872409,Grant 61872152 and Grant 62272174;in part by Guangdong Basic and Applied Basic Research Foundation under Grant 2020A1515010751;in part by the Guangdong Major Project of Basic and Applied Basic Research under Grant 2019B030302008;in part by the Science and Technology Program of Guangzhou under Grant 201902010081;in part by Guangdong Basic and Applied Basic Research Foundation under Grant 2023A1515011194.

摘　　要：The encryption of user data is crucial when employing electronic health record services to guarantee the security of the data stored on cloud servers.Attribute-based encryption(ABE)scheme is considered a powerful encryption technique that ofers fexible and fne-grained access control capabilities.Further,the multi-user collaborative access ABE scheme additionally supports users to acquire access authorization through collaborative works.However,the existing multi-user collaborative access ABE schemes do not consider the diferent weights of collaboration users.Therefore,using these schemes for weighted multi-user collaborative access results in redundant attributes,which inevitably reduces the efciency of the ABE scheme.This paper proposes a revocable and verifable weighted attribute-based encryption with collaborative access scheme(RVWABE-CA),which can provide efcient weighted multi-user collaborative access,user revocation,and data integrity verifcation,as the fundamental cornerstone for establishing a robust framework to facilitate secure sharing of electronic health records in a public cloud environment.In detail,this scheme employs a novel weighted access tree to eliminate redundant attributes,utilizes encryption version information to control user revocation,and establishes Merkle Hash Tree for data integrity verifcation.We prove that our scheme is resistant against chosen plaintext attack.The experimental results demonstrate that our scheme has signifcant computational efciency advantages compared to related works,without increasing storage or communication overhead.Therefore,the RVWABE-CA scheme can provide an efcient and fexible weighted collaborative access control and user revocation mechanism as well as data integrity verifcation for electronic health record systems.

关 键 词：Revocable attribute-based encryption Data verifcation Collaborative access Electronic health record 

分 类 号：TP3[自动化与计算机技术—计算机科学与技术]