Publication Type

Journal Article

Version

acceptedVersion

Publication Date

1-2022

Abstract

Healthcare Internet-of-Things (IoT) is an emerging paradigm that enables embedded devices to monitor patients vital signals and allows these data to be aggregated and outsourced to the cloud. The cloud enables authorized users to store and share data to enjoy on-demand services. Nevertheless, it also causes many security concerns because of the untrusted network environment, dishonest cloud service providers and resource-limited devices. To preserve patients' privacy, existing solutions usually apply cryptographic tools to offer access controls. However, fine-grained access control among authorized users is still a challenge, especially for lightweight and resource-limited end-devices. In this paper, we propose a novel healthcare IoT system fusing advantages of attribute-based encryption, cloud and edge computing, which provides an efficient, flexible, secure fine-grained access control mechanism with data verification in healthcare IoT network without any secure channel and enables data users to enjoy the lightweight decryption. We also define the formal security models and present security proofs for our proposed scheme. The extensive comparison and experimental simulation demonstrate that our scheme has better performance than existing solutions.

Keywords

Internet-of-Things, access control, cloud computing, edge computing, attribute-based encryption

Discipline

Health Information Technology | Information Security

Research Areas

Cybersecurity

Publication

IEEE Transactions on Cloud Computing

Volume

10

Issue

1

First Page

474

Last Page

490

ISSN

2168-7161

Identifier

10.1109/TCC.2019.2936481

Publisher

Institute of Electrical and Electronics Engineers (IEEE)

Copyright Owner and License

Authors

Additional URL

https://doi.org/10.1109/TCC.2019.2936481

Download

Share

COinS