An Efficient and Secure Data Audit Scheme for Cloud-Based EHRs with Recoverable and Batch Auditing  

作　　者：Yuanhang Zhang Xu An Wang Weiwei Jiang Mingyu Zhou Xiaoxuan Xu Hao Liu 

机构地区：[1]College of Cryptography Engineering,Engineering University of People’s Armed Police,Xi’an,710086,China [2]Key Laboratory of Network and Information Security,Engineering University of People’s Armed Police,Xi’an,710086,China [3]School of Information and Communication Engineering,Beijing University of Posts and Telecommunications,Beijing,100876,China

出　　处：《Computers, Materials & Continua》2025年第4期1533-1553,共21页计算机、材料和连续体(英文)

基　　金：supported by National Natural Science Foundation of China(No.62172436);Additionally,it is supported by Natural Science Foundation of Shaanxi Province(No.2023-JC-YB-584);Engineering University of PAP’s Funding for Scientific Research Innovation Team and Key Researcher(No.KYGG202011).

摘　　要：Cloud storage,a core component of cloud computing,plays a vital role in the storage and management of data.Electronic Health Records(EHRs),which document users’health information,are typically stored on cloud servers.However,users’sensitive data would then become unregulated.In the event of data loss,cloud storage providers might conceal the fact that data has been compromised to protect their reputation and mitigate losses.Ensuring the integrity of data stored in the cloud remains a pressing issue that urgently needs to be addressed.In this paper,we propose a data auditing scheme for cloud-based EHRs that incorporates recoverability and batch auditing,alongside a thorough security and performance evaluation.Our scheme builds upon the indistinguishability-based privacy-preserving auditing approach proposed by Zhou et al.We identify that this scheme is insecure and vulnerable to forgery attacks on data storage proofs.To address these vulnerabilities,we enhanced the auditing process using masking techniques and designed new algorithms to strengthen security.We also provide formal proof of the security of the signature algorithm and the auditing scheme.Furthermore,our results show that our scheme effectively protects user privacy and is resilient against malicious attacks.Experimental results indicate that our scheme is not only secure and efficient but also supports batch auditing of cloud data.Specifically,when auditing 10,000 users,batch auditing reduces computational overhead by 101 s compared to normal auditing.

关 键 词：SECURITY cloud computing cloud storage recoverable batch auditing 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]