Attribute-based searchable encrypted electronic medical record system and encryption method

Abstract

The invention discloses an attribute-based searchable encrypted electronic medical record system and an encryption method. The system comprises a key distribution center and a cloud storage center, wherein the key distribution center generates public parameters and a master key to initialize the system; the key distribution center generates and distributes keys containing user attributes to users;a data owner sets an access strategy before uploading medical record data, encrypts the data, and then uploads the data to the cloud storage center; a data visitor generates a trap door according tokeywords and the keys, and provides a query request to the cloud storage center; and after receiving the query request, the cloud storage center determines to return corresponding encrypted data to the data visitor according to the trap door and keyword ciphertexts. According to the scheme of the invention, the difficulty of key management in a multi-user environment can be reduced, data users canbe supported to accurately query the keywords of the ciphertexts, guessing attacks of the keywords can be resisted, and the leakage of privacy data can be effectively prevented.

Description

technical field [0001] The invention relates to cryptography technology in cloud computing, in particular to an attribute-based searchable encrypted electronic medical record system and an encryption method. Background technique [0002] With the rapid development of electronic medical systems and cloud computing, many enterprise users and individuals have begun to migrate data to cloud server storage, so as to avoid cumbersome local data management and obtain more convenient services. The emergence of emerging services brings convenience to users, but also brings security risks. For data stored in the cloud, users do not want employees in the cloud service center to be able to query their own information at will. is particularly important. In order to ensure data security and user privacy, data is generally stored in the cloud server in the form of ciphertext, but after traditional encryption technology encrypts a large amount of data and uploads it to the cloud, it is dif...

AI Technical Summary

Problems solved by technology

[0004] With the development of cloud storage, the theory of cryptography has been further improved and has been continuously applied to practical scenarios. A searchable electronic medical record scheme controlled by patients to encrypt and protect personal privacy has been proposed, but this scheme requires high key management costs. Retrieval operations require multiple interactions, and the search efficiency is not high

The searchable encryption scheme based on CP-ABE (Ciphertext Policy Attribute Based Encryption System) solves the problem of search efficiency, but it directly uploads the key to the cloud server without encryption, which leads to the problem of key leakage

Subsequently, an encryption scheme for assigning search server keywords to search attributes was proposed, which prevented the key leakage problem, realized the access control of keyword searches, and could resist offline or online keyword guessing attacks, but the complexity of the scheme was high. And in practice, no more than ten attribute policies will be set during encryption and search

Some scholars have proposed a hidden strategy attribute retrievable encryption scheme that can resist keyword guessing attacks. It can resist keyword attacks by hiding access strategies. The key is not changed during the process, and the security of the scheme is low

Images