Loading...

Attribute-based Access Control in Electronic Health Using Cloud Computing

Chegenizadeh, Mostafa | 2019

505 Viewed
  1. Type of Document: M.Sc. Thesis
  2. Language: Farsi
  3. Document No: 52352 (05)
  4. University: Sharif University of Technology
  5. Department: Electrical Engineering
  6. Advisor(s): Aref, Mohammad Reza; Mohajeri, Javad
  7. Abstract:
  8. The internet of things is a network of interconnected things (people, electronic devices, mechanical machines, etc.) that are able to transfer data. The applications of internet of things in electronic health (eHealth) are becoming increasingly interested. Deployment of eHealth facilitates the access of users to healthcare services, and improves the quality of the services. Using cloud computing provides the accessibility of healthcare services, and enables a data owner to share his health data with doctors and healthcare service providers. Health data is considered sensitive. So, leakage of any information about it endangers data owner privacy. Attribute-based encryption is a cryptographic solution for providing the confidentiality of data which is outsourced to a cloud, and controlling the access to the data. Attribute-based access control mechanisms enable the data owner to share his data, provide the confidentiality of the outsourced data against the cloud, and prevent unauthorized data users from accessing the data. Also, these mechanisms provide fine-grained access control as the data owner can define a different access policy on each part of his data. However, in eHealth, if an attacker can understand the attributes of authorized data users, then he can obtain some information about the health conditions and diseases of the data owner. So, to preserve the privacy of the data owner, the defined access policies should be hidden. Moreover, the data owner should be able to update his defined access policies efficiently. Also, the encryption and decryption algorithms should be efficient. Therefore, the computational and communicational costs of running the encryption/decryption algorithm, and updating the access policies should be low. In this thesis, an anonymous attribute-based access control system is represented which supports efficient access policy update. The represented scheme meets the security and performance requirements of eHealth in a cloud-based architecture. The scheme provides confidentiality and fine-grained access control, and hides the access policies. Moreover, online/offline encryption makes using resource-limited devices possible. In addition, even by accessing to the firmware of the devices, an attacker cannot decrypt the data that is stored on the cloud. Security and performance analysis and the comparison with existing schemes show that the represented scheme meets more security and performance requirements in comparison with similar schemes, and low computational and communicational costs are incurred by the data owner, data users and the device that collects health information and sends it to the cloud
  9. Keywords:
  10. Access Control ; Attribute Based Encryption ; Cloud Computing ; Electronic Health ; Privacy ; Internet of Things ; Privacy Preserving

 Digital Object List

 Bookmark