本文選題：云計算 + 個人健康記錄��； 參考：《電子與信息學(xué)報》2017年05期

【摘要】：隨著云計算的發(fā)展,越來越多的用戶在使用個人健康記錄(PHR)云管理系統(tǒng),由于PHR包含了患者的隱私信息,因此一般在將PHR上傳到云平臺之前會先對其進行加密�；诒容^的加密(CBE)在基于屬性的訪問策略中實現(xiàn)了時間比較,然而CBE加密時間與訪問策略中的屬性數(shù)目線性增長,從而導(dǎo)致其開銷過大;同時,方案難以實時撤銷用戶的訪問權(quán)限。該文提出支持用戶撤銷的細(xì)粒度訪問控制(FGUR)方案,通過將屬性層次引入到CBE中,同時結(jié)合廣播密文策略的基于屬性加密(BCP-ABE),高效地實現(xiàn)PHR云管理系統(tǒng)中的細(xì)粒度訪問控制及用戶實時撤銷。實驗結(jié)果表明,與CBE相比,FGUR方案在加密開銷和動態(tài)訪問權(quán)限方面具有更好的性能。
[Abstract]:With the development of cloud computing, more and more users use personal health records (PHR) cloud management system. Because PHR contains patient's privacy information, it usually encrypts PHR before uploading it to cloud platform. Contrastion-based encryption implements time comparison in attribute-based access policies. However, the CBE encryption time increases linearly with the number of attributes in the access policy, which results in excessive overhead. It is difficult for the scheme to revoke the user's access rights in real time. In this paper, a fine-grained access control scheme supporting user revocation is proposed, which introduces attribute hierarchy into CBE. At the same time, the fine-grained access control and real-time revocation of users in PHR cloud management system are realized efficiently by combining the attribute encryption based BCP-ABE with broadcast ciphertext policy. Experimental results show that the proposed scheme has better performance in terms of encryption overhead and dynamic access rights than CBE.
【作者單位】： 湖南大學(xué)信息科學(xué)與工程學(xué)院;中南大學(xué)信息科學(xué)與工程學(xué)院;湖南科技大學(xué)計算機科學(xué)與工程學(xué)院;
【基金】：國家自然科學(xué)基金(61632009,61402161) 湖南省科技廳項目(2015JJ3046) 賽爾網(wǎng)絡(luò)下一代互聯(lián)網(wǎng)技術(shù)創(chuàng)新項目(NGII 20150408)~~
【分類號】：TP393.08
，

本文編號：1830097