Towards achieving efficient access control of medical data with both forward and backward secrecy

• Published in: Computer communications Vol. 189; pp. 36 - 52
• Main Authors: Panda, Suryakanta, Mondal, Samrat, Dewri, Rinku, Das, Ashok Kumar
• Format: Journal Article
• Language: English
• Published: Elsevier B.V 01.05.2022
• Subjects: Access policy update; Attribute-based encryption; Backward security; Cloud security; Dynamic access control; Forward security; Access policy update; Backward security; Attribute-based encryption; Forward security; Cloud security; Dynamic access control
• ISSN: 0140-3664; 1873-703X
• DOI: 10.1016/j.comcom.2022.03.001

Healthcare service providers store the patients’ electronic medical records in the cloud in order to provide high quality healthcare services. Patients’ sensitive data is typically encrypted before storing in the cloud. However, it gives rise to a new challenge, namely access control over encrypted data. Attribute-Based Encryption (ABE) is a promising cryptographic technique to achieve the fine grained access control on outsourced encrypted data. Traditional ABE schemes assume a fixed access policy that is not suitable for the present dynamic environment. Although some ABE schemes with a dynamic access control policy have been proposed in the literature, these schemes have not addressed forward security, backward security, and user revocation after a policy update. In this paper, we propose an ABE scheme that supports access policy updates, and also provides forward security, backward security and user revocation at the same time. We have formally shown that the proposed scheme is Chosen Plaintext Attack (CPA)-secure under the Decisional Bilinear Diffie–Hellman (DBDH) assumption. Finally, the performance analysis exhibits that the proposed scheme is efficient in communication and computation, and is also suitable for resource constrained devices.