适用于PHR系统的混合属性加密签名方案

doi:10.3969/j.issn.1671-1122.2016.12.007

信息网络安全 ›› 2016, Vol. 16 ›› Issue (12): 46-50.doi: 10.3969/j.issn.1671-1122.2016.12.007

适用于PHR系统的混合属性加密签名方案

陈飞(), 司一帆, 韩益亮

武警工程大学,陕西西安710086

收稿日期:2016-10-15 出版日期:2016-12-20 发布日期:2020-05-13
作者简介:
作者简介：陈飞（1992—）,男,安徽,硕士研究生,主要研究方向为应用密码学;司一帆（1992—）,男,江苏,硕士研究生,主要研究方向为信息隐藏;韩益亮（1977—）,男,甘肃,教授,博士,主要研究方向为密码学。
基金资助:
国家自然科学基金[61572521,61272492];陕西省自然科学基础研究计划项目[2015JM6353]

Hybird Attribute-based Encryption Signature Scheme for PHR System

Fei CHEN(), Yifan Si, Yiliang HAN

Engineering University of Chinese Armed Police Force, Xi’an Shaanxi710086,China

Received:2016-10-15 Online:2016-12-20 Published:2020-05-13

摘要/Abstract

摘要：

PHR系统可以用于个人身体健康信息的交互,但信息的存储往往需要一个第三方服务器,这给用户的隐私信息安全带来了隐患。同时,现有PHR系统仅考虑到服务器的存储优势,并没有考虑到其计算优势。为了有效保护用户个人隐私,提高用户计算效率,文章提出了一个密文策略的外包混合属性加密签名方案,方案结合属性签名隐私保护以及属性加密访问控制的功能,为消息提供机密性、不可伪造性和匿名性,其密钥生成代价小于属性签名与属性加密的简单组合。该方案将接收方大部分的存储和验证以及解密算法中所有的双线性对运算交由云服务器执行,用户只需执行指数运算,有效地节约了用户本地资源。

关键词: PHR系统, 混合属性加密签名, 隐私保护, 外包计算

Abstract:

Personal Health Records could be used in health information exchange, but the storge of information is rely on third servicer, this may lead to the exposure of user’s privacy. And the technology of PHR only considers the service of storge, but, servicer also could provide the outsourced computation. In order to address the security and protect personal privacy, improve the efficiency of users, a ciphertext policy attribute-based hybrid encryption/signature scheme is proposed. Scheme combines the privacy protecting of attribute-based signature and access control of attribute-based encryption, provides the confidentiality, unforgeability and anonymity for message. The cost of key generation is more little than the simply combine of attribute-based signature and attribute-based encryption. The bilinear maps in recipient is outsourced to servicer, user only needs to finish exponent algorithm, so, user’s local resource is saved.

Key words: personal health records system, hybrid attribute-based encryption signature, protect privacy, outsourced computation

中图分类号:

TP309

陈飞, 司一帆, 韩益亮. 适用于PHR系统的混合属性加密签名方案[J]. 信息网络安全, 2016, 16(12): 46-50.

Fei CHEN, Yifan Si, Yiliang HAN. Hybird Attribute-based Encryption Signature Scheme for PHR System[J]. Netinfo Security, 2016, 16(12): 46-50.

图/表 3

参考文献 19

[1]	朱鹏飞,张利琴,李伟,等.交互型电子签名的形式化分析[J]. 信息网络安全,2016(9):31-34.
[2]	KIM M I, JOHNSON K B.Personal Health Records[J]. Journal of the American Medical Informatics Association, 2003, 9(2): 171-180.
[3]	LOHR H, SADEGHI A R, WINDANDY M.Securing the e-health Cloud[C]// ACM.1st ACM International Health Informatics Symposium, November 11-12, 2010. Arlington, Virginia, USA. New York: ACM, 2010: 220-229.
[4]	GOYAL V, PANDEY O, SAHAI A, et al.Attribute-based Encryption for Fine Grained Access Control of Encrypted Data[C]// ACM.13th ACM conference on Computer and Communications Security. October 30-November 3, 2006. Alexandria, Virginia, USA. New York: ACM, 2006: 89-98.
[5]	MAJI H, PRABHAKARAN M, ROSULEK M.Attribute-based Signatures[C]//CT-RSA.The conference on Cryptology CT-RSA 2011. February 14-18, 2011, San Francisco, USA. Berlin: Springer, 2011: 376-392.
[6]	LIU Jianghua, HUANG Xinyi, LIU Joseph, Secure Sharing of Personal Health Records in Cloud Computing: Cihpertext Policy Attribute Based Signcryption[J]. Future Generation Computer Systems, 2015, 52(11): 67-76.
[7]	GAGNE M, NARAYAN S, SAFAVI-NAINI R.Threshold Attribute-based Signcryption[C]// Springer.Proceedings of the 7th International Conference on Security and Cryptography for Networks. September 13-15, 2010. Amalfi, Italy. Berlin: Springer, 2010: 154-171.
[8]	PANDIT T, KUMAR P S, BARUA R.Attribute-based Signcryption: Signer Privacy, Strong Unforgeability and IND-CCA2 Security in Adaptive-predicates Attack[C]//Springer.Proceedings of the 8th International Conference on Provable Security. October 9-10, 2014. Hong Kong, China. Berlin: Springer, 2014: 274-290.
[9]	RAO S Y, DUTTA R.Efficient Attribute-based Signature and Signcryption Realizing Expressive Access Structures[J]. International Journal of Information Security, 2016,15(1): 1-29.
[10]	IBRAIMI L, ASIM M, PETKOVIC M.Secure Mangagement of Personal Health Records by Applying Attribute Based Encryption[C]// IEEE.Proceedings of the 6th International Conference on Wearable, Micro, and Nano Techologies for Personalized Health, June 24-26, 2009. Oslo, Norway. New Jersey:IEEE, 2009: 71-74.
[11]	ZHENG Yao, YU Shucheng, LI Ming, et al.Scalable and Secure Sharing of Personal Health Records in Cloud Computing Using Attribute based Encryption[J]. IEEE Transactions on parallel and distribute systems. 2013, 24(1): 131-143.
[12]	WAGNER P J, DIAS J, HOWARS S, et al.Personal Health Rerecord and Hypertension Control: a Randomized Trial[J]. Journal of the American Medical Informatics Association, 2012, 19(4): 626-634.
[13]	CHEN Cheng, CHEN Jie, LIM Hoonwei, et al.Combined Public-key Schemes:the Case of ABE and ABS[C]//Springer.Proceedings of the Conference on Provable Security 2012. September 26-28, 2012. Chengdu, China. Berlin: Springer, 2012: 53-69.
[14]	GREEN M, HOHENBERGER S, WATERS B.Outsourcing the Decryption of ABE Ciphertexts[C]//ACM.Proceedings of the 20th USENIX Conference on Security. August 8-12, 2011. San Francisco, USA. New York: ACM, 2011: 34-49.
[15]	王皓,郑志华,吴磊,等.自适应安全的外包CP-ABE方案研究[J].计算机研究与发展. 2015,52(10):2270-2280.
[16]	张永强,卢伟龙,唐春明.一种高效实用的基于云服务的数字签名方案研究[J]. 信息网络安全,2016(7):1-6.
[17]	QIN Baodong, DENG Robert H, LIU Shengli, et al.Attribute-based Encryption with Efficient Verifiable Outsourced Decryption[J]. IEEE Transaction on Information Forensics and Security, 2015, 10(7):1384-1393.
[18]	WATER B.Ciphertext Policy Attribute Based Encryption: an Expressive, Efficient, and Provably Secure Realization[C]// ACM.Proceedings of the 14th International Conference on Practice and Theory of Public Key Cryptography, March 6-9, 2011. Taormina, Italy. New York: ACM, 2011: 53-70.
[19]	张言胜,汪学明,仇各各.一种新的动态门限数字签名方案研究[J]. 信息网络安全,2016(6):62-67.

适用于PHR系统的混合属性加密签名方案

Hybird Attribute-based Encryption Signature Scheme for PHR System

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 3

参考文献 19

相关文章 15

编辑推荐

Metrics

本文评价

[1]	唐春明, 林旭慧. 隐私保护集合交集计算协议[J]. 信息网络安全, 2020, 20(1): 9-15.
[2]	汪金苗, 王国威, 王梅, 朱瑞瑾. 面向雾计算的隐私保护与访问控制方法[J]. 信息网络安全, 2019, 19(9): 41-45.
[3]	郝文江, 林云. 互联网企业社会责任现状与启示研究[J]. 信息网络安全, 2019, 19(9): 130-133.
[4]	周权, 许舒美, 杨宁滨. 一种基于ABGS的智能电网隐私保护方案[J]. 信息网络安全, 2019, 19(7): 25-30.
[5]	李怡霖, 闫峥, 谢皓萌. 车载自组织网络的隐私保护综述[J]. 信息网络安全, 2019, 19(4): 63-72.
[6]	赵谱, 崔巍, 郝蓉, 于佳. 一种针对El-Gamal数字签名生成的安全外包计算方案[J]. 信息网络安全, 2019, 19(3): 81-86.
[7]	傅彦铭, 李振铎. 基于拉普拉斯机制的差分隐私保护k-means++聚类算法研究[J]. 信息网络安全, 2019, 19(2): 43-52.
[8]	赵志岩, 吴剑, 康凯. 一种兼顾业务数据安全的隐私保护世系发布方法[J]. 信息网络安全, 2019, 19(12): 29-37.
[9]	胡荣磊, 何艳琼, 曾萍, 范晓红. 一种大数据环境下医疗隐私保护方案设计与实现[J]. 信息网络安全, 2018, 18(9): 48-54.
[10]	李佩丽, 徐海霞, 马添军, 穆永恒. 区块链技术在网络互助中的应用及用户隐私保护[J]. 信息网络安全, 2018, 18(9): 60-65.
[11]	马蓉, 陈秀华, 刘慧, 熊金波. 移动群智感知中用户隐私度量与隐私保护研究[J]. 信息网络安全, 2018, 18(8): 64-72.
[12]	赖成喆, 王文娟. 面向车队的安全且具备隐私保护的移动性管理框架[J]. 信息网络安全, 2018, 18(7): 36-46.
[13]	王乐, 杨哲荣, 刘容京, 王祥. 基于属性加密算法的可穿戴设备系统隐私保护方法研究[J]. 信息网络安全, 2018, 18(6): 77-84.
[14]	张磊, 王斌, 于莉莉. 基于马尔可夫预测的连续查询隐私保护方法[J]. 信息网络安全, 2018, 18(5): 12-12.
[15]	张磊, 王斌, 于莉莉. 基于Hash函数的属性泛化隐私保护方案[J]. 信息网络安全, 2018, 18(3): 14-25.