Affiliations 

  • 1 School of Computer Science and Information Technology, Devi Ahilya Vishwavidyalaya, Indore 452001, India
  • 2 SKITM College, Indore 452020, India
  • 3 Department of Information Technology, VNR Vignana Jyothi Institute of Engineering and Technology, Hyderabad 500090, India
  • 4 Department of CSE, SRM University, Amaravati 522240, India
  • 5 School of Computer Science, SCS Taylors University, Subang Jaya 47500, Malaysia
  • 6 Department of Computer Science, College of Computers and Information Technology, Taif University, Taif 21944, Saudi Arabia
  • 7 Department of Special Education, College of Education, King Saud University, Riyadh 145111, Saudi Arabia
  • 8 Department of Information Technology, College of Computers and Information Technology, Taif University, Taif 21944, Saudi Arabia
Sensors (Basel), 2023 Feb 27;23(5).
PMID: 36904822 DOI: 10.3390/s23052617

Abstract

With continuous advancements in Internet technology and the increased use of cryptographic techniques, the cloud has become the obvious choice for data sharing. Generally, the data are outsourced to cloud storage servers in encrypted form. Access control methods can be used on encrypted outsourced data to facilitate and regulate access. Multi-authority attribute-based encryption is a propitious technique to control who can access encrypted data in inter-domain applications such as sharing data between organizations, sharing data in healthcare, etc. The data owner may require the flexibility to share the data with known and unknown users. The known or closed-domain users may be internal employees of the organization, and unknown or open-domain users may be outside agencies, third-party users, etc. In the case of closed-domain users, the data owner becomes the key issuing authority, and in the case of open-domain users, various established attribute authorities perform the task of key issuance. Privacy preservation is also a crucial requirement in cloud-based data-sharing systems. This work proposes the SP-MAACS scheme, a secure and privacy-preserving multi-authority access control system for cloud-based healthcare data sharing. Both open and closed domain users are considered, and policy privacy is ensured by only disclosing the names of policy attributes. The values of the attributes are kept hidden. Characteristic comparison with similar existing schemes shows that our scheme simultaneously provides features such as multi-authority setting, expressive and flexible access policy structure, privacy preservation, and scalability. The performance analysis carried out by us shows that the decryption cost is reasonable enough. Furthermore, the scheme is demonstrated to be adaptively secure under the standard model.

* Title and MeSH Headings from MEDLINE®/PubMed®, a database of the U.S. National Library of Medicine.