Secure search for encrypted personal health records from big data NoSQL databases in cloud

As the healthcare industry adopts the use of cloud to store personal health record (PHR), there is a need to ensure that we maintain the ability to perform efficient search on encrypted data (stored in the cloud). In this paper, we propose a secure searchable encryption scheme, which is designed to...

Full description

Saved in:
Bibliographic Details
Published inComputing Vol. 102; no. 6; pp. 1521 - 1545
Main Authors Chen, Lanxiang, Zhang, Nan, Sun, Hung-Min, Chang, Chin-Chen, Yu, Shui, Choo, Kim-Kwang Raymond
Format Journal Article
LanguageEnglish
Published Vienna Springer Vienna 01.06.2020
Springer Nature B.V
Subjects
Algorithms
Artificial Intelligence
Computer Appl. in Administrative Data Processing
Computer Communication Networks
Computer Science
Data search
Encryption
Health
Information Systems Applications (incl.Internet)
Personal health
Queries
Software Engineering
Personal health records
Range query
NoSQL database
Multi-keyword
68P25
Order-revealing encryption
94A60
Searchable encryption
Online AccessGet full text

Cover

More Information
Summary:As the healthcare industry adopts the use of cloud to store personal health record (PHR), there is a need to ensure that we maintain the ability to perform efficient search on encrypted data (stored in the cloud). In this paper, we propose a secure searchable encryption scheme, which is designed to search on encrypted personal health records from a NoSQL database in semi-trusted cloud servers. The proposed scheme supports almost all query operations available in plaintext database environments, especially multi-dimensional, multi-keyword searches with range query. Specifically, in the proposed scheme, an Adelson-Velsky Landis (AVL) tree is utilized to construct the index, and an order-revealing encryption (ORE) algorithm is used to encrypt the AVL tree and realize range query. As document-based databases are probably the most popular NoSQL database, due to their flexibility, high efficiency, and ease of use, MongoDB, a document-based NoSQL database, is chosen to store the encrypted PHR data in our scheme. Experimental results show that the scheme can achieve secure and practical searchable encryption for PHRs. A comparison of the range query demonstrates that the time overhead of our ORE-based scheme is 25.5% shorter than that of the mOPE-based Arx (an encrypted database system) scheme.
ISSN:0010-485X
1436-5057
DOI:10.1007/s00607-019-00762-z