Research On Data Security Sharing Scheme For Medical Internet Of Things

The medical industry is closely related to people’s healthy life.With the continuous development of the internet of things technology,more and more medical institutions choose to use the technology to improve their medical service level,and gradually develop a medical internet of things system.Most of the data in the medical internet of things is related to the medical information and physical information of patients.Once maliciously stolen by illegal personnel,it will bring huge losses to both patients and hospitals,and cause huge social impacts.Therefore,the security and privacy of medical data are very important.In the medical internet of things dominated by medical information systems,most of the data are stored in cloud servers,and the security of patient information and medical data cannot be separated from the guarantee of access control.Attribute-Based Encryption is a widely used solution that can realize fine-grained access control,and can be well used in the medical Internet of Things.This thesis investigates the security risks and privacy protection issues in the current medical IoT data storage and sharing based on attribute encryption,and mainly achieves the following three research results:1.A traceable and revocable medical data sharing scheme based on cloud computing is proposed,which solves the problem that resource-constrained medical IoT devices have high decryption algorithm overhead and lack of effective user tracking and revocation methods in Attribute-Based Encryption.First,by introducing fog nodes,algorithms such as ciphertext storage and outsourcing decryption can be executed by fog nodes closer to the user,which reduces the computing overhead of users on the premise of protecting data security.Secondly,the user’s tracking and revocation functions are designed for behaviors such as user permission changes and users’ intentional or unintentional disclosure of their own keys in Attribute-Based Encryption.Finally,the outsourced decryption mechanism is used to reduce the decryption overhead of the user end in the solution,which saves a lot of bandwidth and decryption time for the user.In terms of functionality and efficiency,we compare the proposed scheme with existing ones,and the results show that the proposed scheme has higher efficiency while ensuring security,and is suitable for data from low-cost resource-constrained devices in medical IoT Store and share scenes.2.A patient-controllable fine-grained sharing scheme of medical data is proposed,which solves the problems of data tampering and privacy leakage faced by patients who cannot independently control ciphertext access and ciphertext stor ed in cloud servers during medical data sharing.The Ciphertext Policy Attribute-Based Encryption is used to protect the patient’s medical data and upload it to the distributed interplanetary file system for storage,while the data index in the distributed interplanetary file system is encrypted by proxy re-encryption and saved in the medical cloud server.The proposed scheme not only realizes the secure storage and fine-grained sharing of medical data,but also enables patients to master the access status of their data.In terms of function and efficiency,we compare the proposed scheme with existing schemes,and the results show that the proposed scheme has higher efficiency while ensuring safety,and is suitable for patient-controllable medical IoT data storage and sharing Scenes.3.A medical data sharing scheme that supports ciphertext re-encryption is proposed,which solves the problems of difficult updating of access policies and excessive decryption overhead in fine-grained sharing of medical data in the cloud environment.A user with decryption authority can generate a re-encryption key and let the cloud server undertake the re-encryption of ciphertext,so as to update the access policy.The cloud server can pre-decrypt the ciphertext,thereby reducing the computational overhead of user decryption.In addition,the user can also verify that the pre-decrypted ciphertext is correct.In terms of functionality and efficiency,we compare the proposed scheme with existing schemes,and the results show that the proposed scheme has higher efficiency while ensuring security,and is suitable for lightweight medical IoT data whose access policy needs to be updated Store and share scenes.