| Telemedicine is a new technique to achieve online medical treatment.It takes use of Internet,multimedia,and sensor technologies to provide medical services for patients.The main advantage of telemedicine is convenience.However,due to the open environment,it may confront secure risks.Therefore,how to establish secure protection mechanisms for medical data has become one of key points in the telemedicine applications.In this thesis,we make use of privacy protection and cryptographic techniques to build authentication and access control protocols.For solving the problem of information leakage in the telemedicine system,this thesis proposes an authentication scheme by using elliptic curve encryption.The random number and timestamp are used to complete mutual authentications among patients,doctors,medical institutions,and cloud servers.There is no requirement of secure channel in the process of information transmission.This scheme uses public key encryption and symmetric encryption to protect the privacy of the transmitted information.The digital signature is used to guarantee the integrity and non-repudiation of medical data.The cloud server only stores the medical data and cannot recover the patient’s information.By using the formal analysis,the proposed scheme is able to resist well-known attacks.Moreover,it has better efficiency than previous schemes in terms of the communication cost.For solving the problem of limited resources in the telemedicine system,this thesis constructs a data access control scheme by using certificateless signcryption.The proposed scheme make use of the certificateless mechanism to accomplish the signcryption of the medical data.It can ensure the confidentiality of the data.This scheme does not use time-consuming operations such as bilinear operation or exponential operation.So,it has lower computational cost.The signcryption mechanism is used in the access control scheme.The user can sign and encrypt the information simultaneously.The time stamp mechanism guarantees the freshness of the requested message.At the same time,the proposed scheme provides the revoke function.This implies that the security of the system is heightened.By using the oracle model,this scheme can provide various security services such as the confidentiality and unforgeability.Moreover,the performance analysis demonstrates that it is lightweight,and has better efficiency than previous schemes. |
PDF Full Text Request