一种属性基可搜索加密的医疗数据共享方案

A Medical Data Sharing Scheme with Attribute-Based Searchable Encryption

实现医疗数据共享不仅可以避免医疗资源的大量浪费,而且能推动医疗科技创新、提高医疗服务质量。面对爆炸式增长的医疗数据,云服务器凭借其强大的性能成为医疗机构存储数据的首选。出于安全因素考虑,存储在云服务器中的数据通常是经过加密处理的,虽然这样可以保证数据的机密性,但是不利于用户进行后续的数据检索与共享。为解决以上问题,提出一种属性基可搜索加密的医疗数据共享方案。该方案结合区块链技术以及属性基可搜索加密技术,在一对多数据共享场景下实现用户搜索权限的细粒度访问控制,同时解决了因用户属性发生变化而对应的细粒度搜索权限需要及时撤销的问题。此外,该方案还实现了访问策略隐藏以及多关键字可搜索加密,进一步提高了方案的安全性以及密文检索效率。通过安全性证明以及性能分析,结果表明该方案是安全且高效的。

Realizing medical data sharing can not only avoid a large waste of medical resources,but also promote medical technology innovation and improve the quality of medical services.In the face of explosive growth of medical data,cloud servers have become the first choice for medical institutions to store data due to their powerful performance.For security reasons,the data stored in the cloud server is usually encrypted,which ensures the confidentiality of the data,but is not conducive to subsequent data retrieval and sharing.In order to solve the above problems,a medical data sharing scheme with attribute-based searchable encryption is proposed.Combining blockchain technology and attribute-based searchable encryption technology,the scheme realizes fine-grained access control of user search permissions in one-to-many data sharing scenarios,and solves the problem that the fine-grained search permissions corresponding to changes in user attributes need to be revoked in time.In addition,the scheme also implements access policy hiding and multi-keyword searchable encryption,which further improves the security of the scheme and the efficiency of ciphertext retrieval.Through safety proof and performance analysis,the results show that the scheme is safe and efficient.