• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Accountable Attribute-based Encryption with Public Auditing and User Revocation in the Personal Health Record System

Vol. 15, No. 1, January 31, 2021
10.3837/tiis.2021.01.017, Download Paper (Free):

Abstract

In the system of ciphertext policy attribute-based encryption (CP-ABE), only when the attributes of data user meets the access structure established by the encrypter, the data user can perform decryption operation. So CP-ABE has been widely used in personal health record system (PHR). However, the problem of key abuse consists in the CP-ABE system. The semi-trusted authority or the authorized user to access the system may disclose the key because of personal interests, resulting in illegal users accessing the system. Consequently, aiming at two kinds of existing key abuse problems: (1) semi-trusted authority redistributes keys to unauthorized users, (2) authorized users disclose keys to unauthorized users, we put forward a CP-ABE scheme that has authority accountability, user traceability and supports arbitrary monotonous access structures. Specifically, we employ an auditor to make a fair ruling on the malicious behavior of users. Besides, to solve the problem of user leaving from the system, we use an indirect revocation method based on trust tree to implement user revocation. Compared with other existing schemes, we found that our solution achieved user revocation at an acceptable time cost. In addition, our scheme is proved to be fully secure in the standard model.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
W. Zhang, Y. Wu, H. Xiong and Z. Qin, "Accountable Attribute-based Encryption with Public Auditing and User Revocation in the Personal Health Record System," KSII Transactions on Internet and Information Systems, vol. 15, no. 1, pp. 302-322, 2021. DOI: 10.3837/tiis.2021.01.017.

[ACM Style]
Wei Zhang, Yi Wu, Hu Xiong, and Zhiguang Qin. 2021. Accountable Attribute-based Encryption with Public Auditing and User Revocation in the Personal Health Record System. KSII Transactions on Internet and Information Systems, 15, 1, (2021), 302-322. DOI: 10.3837/tiis.2021.01.017.