Abstract
Healthcare Internet of Things (HIoT) systems are a step forward in improving the efficiency and quality of patients’ vital information. The HIoT system collects, encrypts, and outsources the patients’ sensitive data over the cloud server for storage and sharing purposes. Pairing-free ciphertext-policy attribute-based encryption (PF-CPABE) is the prominent solution to provide lightweight and fine-grained access control over shared encrypted healthcare data. However, the existing PF-CPABE constructions suffer from one or more limitations, including a key escrow problem and inefficient user revocation while achieving backward and forward secrecy. In this paper, we propose an Escrow and Pairing Free CP-ABE Scheme (EPFCS) with forward and backward secrecy for HIoT. The proposed EPFCS ensures a key escrow-free HIoT system, facilitates the secure distribution of users’ secret keys without using the secure channel in PF-CPABE, and enables efficient user revocation while achieving forward and backward secrecy even in dynamic healthcare scenarios. The security analysis confirms that the proposed EPFCS ensures confidentiality, key escrow freeness, forward and backward secrecy, and resistance against key collusion attacks. Furthermore, the performance analysis demonstrates that the proposed EPFCS is more effective and efficient in aspects of communication and computation costs than the existing schemes.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Attrapadung, N., Imai, H.: Conjunctive broadcast and attribute-based encryption. In: Shacham, H., Waters, B. (eds.) Pairing 2009. LNCS, vol. 5671, pp. 248–265. Springer, Heidelberg (2009). https://doi.org/10.1007/978-3-642-03298-1_16
Beimel, A.: Secure schemes for secret sharing and key distribution. Ph.D. dissertation, Technion-Israel Institute of technology (1996)
Bethencourt, J., Sahai, A., Waters, B.: Ciphertext-policy attribute-based encryption. In: Symposium on Security and Privacy, SP 2007, pp. 321–334. IEEE (2007). https://doi.org/10.1109/SP.2007.11
Chaudhary, C.K., Sarma, R., Barbhuiya, F.A.: RMA-CPABE: a multi-authority CPABE scheme with reduced ciphertext size for IoT devices. Futur. Gener. Comput. Syst. 138, 226–242 (2023). https://doi.org/10.1016/j.future.2022.08.017
Cui, H., Deng, R.H., Li, Y., Qin, B.: Server-aided revocable attribute-based encryption. In: Askoxylakis, I., Ioannidis, S., Katsikas, S., Meadows, C. (eds.) ESORICS 2016. LNCS, vol. 9879, pp. 570–587. Springer, Cham (2016). https://doi.org/10.1007/978-3-319-45741-3_29
Das, S., Namasudra, S.: Multiauthority CP-ABE based access control model for IoT-enabled healthcare infrastructure. Trans. Ind. Inform. 19(1), 821–829 (2023). https://doi.org/10.1109/TII.2022.3167842
Fan, C.I., Huang, V.S.M., Ruan, H.M.: Arbitrary-state attribute-based encryption with dynamic membership. Trans. Comput. 63(8), 1951–1961 (2014). https://doi.org/10.1109/TC.2013.83
Hur, J.: Improving security and efficiency in attribute-based data sharing. Trans. Knowl. Data Eng. 25(10), 2271–2282 (2013). https://doi.org/10.1109/TKDE.2011.78
Hur, J., Noh, D.K.: Attribute-based access control with efficient revocation in data outsourcing systems. Trans. Parallel Distrib. Syst. 22(7), 1214–1221 (2011). https://doi.org/10.1109/TPDS.2010.203
Karati, A., Amin, R., Biswas, G.P.: Provably secure threshold-based ABE scheme without bilinear map. Arab. J. Sci. Eng. 41, 3201–3213 (2016). https://doi.org/10.1007/s13369-016-2156-9
Lin, G., Hong, H., Sun, Z.: A collaborative key management protocol in ciphertext policy attribute-based encryption for cloud data sharing. Access 5, 9464–9475 (2017). https://doi.org/10.1109/ACCESS.2017.2707126
Odelu, V., Das, A.K., Khurram Khan, M., Choo, K.K.R., Jo, M.: Expressive CP-ABE scheme for mobile devices in IoT satisfying constant-size keys and ciphertexts. Access 5, 3273–3283 (2017). https://doi.org/10.1109/ACCESS.2017.2669940
Sowjanya, K., Dasgupta, M., Ray, S.: A lightweight key management scheme for key-escrow-free ECC-based CP-ABE for IoT healthcare systems. J. Syst. Architect. 117, 102–108 (2021). https://doi.org/10.1016/j.sysarc.2021.102108
Xue, K., Hong, J., Xue, Y., Wei, D.S., Yu, N., Hong, P.: CABE: a new comparable attribute-based encryption construction with 0-encoding and 1-encoding. Trans. Comput. 66(9), 1491–1503 (2017). https://doi.org/10.1109/TC.2017.2693265
Yao, X., Chen, Z., Tian, Y.: A lightweight attribute-based encryption scheme for the internet of things. Futur. Gener. Comput. Syst. 49, 104–112 (2015). https://doi.org/10.1016/j.future.2014.10.010
Acknowledgements
This research was a part of the project “Design and Analysis of Secure and Efficient Smart Contracts Using Blockchain Technology”. It was partially supported by the SEED Money/Research Grant of the author, Dr. Keyur Parmar, Department of Computer Science and Engineering, S. V. National Institute of Technology (NIT), Surat, India.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Bhaskar, S., Parmar, K., Jinwala, D.C. (2023). Escrow and Pairing Free CP-ABE Scheme with Forward and Backward Secrecy for Healthcare Internet of Things. In: Muthukkumarasamy, V., Sudarsan, S.D., Shyamasundar, R.K. (eds) Information Systems Security. ICISS 2023. Lecture Notes in Computer Science, vol 14424. Springer, Cham. https://doi.org/10.1007/978-3-031-49099-6_19
Download citation
DOI: https://doi.org/10.1007/978-3-031-49099-6_19
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-49098-9
Online ISBN: 978-3-031-49099-6
eBook Packages: Computer ScienceComputer Science (R0)