Research On Adaptive Authorization Access And Integrity Verification For Medical Cloud Data Service

With the advent of the era of medical cloud data,more and more medical institutions have basically completed the upgrade of modern medical information systems and uploaded massive medical private data to medical cloud servers,thus saving local medical data storage and management costs.When medical data is uploaded to the cloud server,it is also faced with the challenge of data privacy and integrity.With the rapid development of Internet + medical and medical data sharing technology,Medical big data,as the data basis of such applications,contains a lot of patient privacy information.Big data’s privacy security issues have seriously restricted the development of medical data mining and analysis applications.Outsourcing medical big data encrypted storage in the cloud can effectively alleviate the problem of privacy disclosure,but ciphertext storage will lead to inconvenience of data access,which brings new challenges to medical big data shared access.The existing flexible authorization solutions for encrypted data are mainly based on methods such as CP-ABE,which requires data owners to define data access policies in advance,but in reality,patients,as data owners of medical data,often lack relevant background knowledge to formulate data access policies.At the same time,the existing scheme does not support access control authorization in emergency scenarios,but in the medical big data application,when the patient is unable to authorize the data user to access the ciphertext medical data,it will lead to unpredictable consequences.According to the application requirements of encrypted medical big data sharing service in cloud environment,an adaptive authorization access method based on attribute encryption is proposed to realize flexible and secure medical data access authorization in normal and emergency situations.While patients can enjoy the convenience of cloud computing,they will also bear certain security risks,among which,if the integrity and correctness of medical data cannot be guaranteed,it will also hinder the smooth progress of medical assistance operations.The integrity of medical cloud data has also become an issue that must be paid attention to in medical cloud services.Because of the magnanimity of medical cloud data,it is a huge workload to test the integrity of all medical data.The existing scheme supports that in the case of limited medical data,verifiers(who can be patients or emergency contacts or medical personnel)can verify the integrity and correctness of the medical and health data stored in the medical cloud server and return the results to ensure the correctness and availability of the medical and health data.When the patient uploads the medical data,the medical data can be signed by the homomorphic verification tag for subsequent verification when it is stored in the cloud.Due to the fact that the patient does not respond,the existing scheme does not support data integrity verification in emergency,and the patient cannot sign the new medical data in the non-response state.At this time,it is necessary for the emergency contact person to sign the new or modified data and then re-sign the patient to ensure the subsequent data integrity verification.In order to meet the requirements of medical data integrity verification in cloud environment,this paper proposes a medical cloud data integrity verification protocol based on proxy re-signature to achieve flexible and accurate medical data integrity verification in emergency.This paper theoretically proves the security of the proposed authorization method and authentication method,and the experimental results show that it is also better than the existing authorized access and authentication methods in terms of running efficiency.