Research On Certificateless Aggregate Signature Scheme For Smart Healthcare

As a derivative of the Internet of Things,wireless communication,big data,and cloud computing technologies in the medical field,smart healthcare aims to help healthcare professionals and patients break the limitations of time and space for telemedicine,intelligent monitoring,condition analysis,and other services.With the rapid development of smart healthcare,the traditional medical treatment model has been transformed.In the smart healthcare environment,a number of key indicators such as patients’ heart rate,blood pressure,and body temperature are collected by wearable or implanted medical devices to more accurately monitor the patients’ physical condition and provide a more scientific reference base for doctors.However,while bringing convenience to human life,smart healthcare also has many security risks.Due to the high openness of the public channels in smart healthcare,attackers can easily eavesdrop,tamper,and forge patients’ medical data.In addition,medical data is more sensitive than ordinary data,and once the patients’ identity information is compromised during transmission,it often leads to serious privacy issues.Therefore,whether the communication security of medical data and privacy preservation of patients can be achieved has become an important factor limiting the development of smart healthcare.In this paper,we design an efficient and secure certificateless aggregate signature scheme for secure communication and privacy preservation in the current smart medical environment,and the main work is as follows:(1)A certificateless aggregate signature scheme that can resist public key replacement attacks for smart healthcare is proposed.Firstly,the linear analysis based on cryptography is used to prove that the existing scheme has a security vulnerability that cannot resist public key replacement attacks.Secondly,our scheme uses the identity anonymity mechanism to separate the data and identity of patients,which ensures the identity privacy without significant increase in computation and communication overhead.Finally,based on the elliptic curve discrete logarithm problem under the random oracle model using a formal way to prove that the scheme can achieve security requirements such as unforgeability,integrity,and authentication.(2)A blockchain-based certificateless aggregate signature scheme is proposed.The scheme uses computationally efficient pairing-free operations and is able to meet various security requirements in smart healthcare.Smart contract technology enables authentication of the identity source of medical sensor nodes on the permission chain without the need to know the true identity of the medical sensor nodes,ensuring the trustworthiness of the data source.By combining distributed hash table and blockchain technology to achieve onchain/off-chain storage of medical data,it not only avoids credit problems such as data tampering and privacy leakage that may be brought by centralized medical servers,but also provides access control to medical data by other entities,which greatly reduces the risk of medical data being leaked.According to the performance analysis,the scheme shows a relatively high level of computation and communication overhead compared to other certificateless schemes.(3)A certificateless parallel key-isolated aggregate signature scheme that supports forward/backward security,key update,strong key isolation,and resistance to fully chosenkey attacks is proposed.The scheme employs two independent assisters to update the signing keys alternately,making it impossible for an attacker to determine which assister is updating the signing keys at a certain time period,which greatly reduces the possibility of key leakage.The idea of key agreement ensures that the transmission of the partial private key does not depend on secure channels,which enhances the robustness of the scheme.In addition,the edge computing-based architecture not only reduces the load on the central cloud,but also improves the efficiency and security of the whole system.To resist fully chosen-key attacks,the third type of attackers is proposed under the original security model with two types of attackers,and using a formal way to prove that the scheme can resist signature forgery attacks against three types of attackers under the random oracle model.According to the experimental results,the scheme shows significant performance advantages over existing schemes.