Enabling Authorized Encrypted Search for Multi-Authority Medical Databases

Lei Xu, Shifeng Sun, Xingliang Yuan, Joseph K. Liu, Cong Zuo, Chungen Xu*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

17 Citations (Scopus)

Abstract

E-medical records are sensitive and should be stored in a medical database in encrypted form. However, simply encrypting these records will eliminate data utility and interoperability of the existing medical database system because encrypted records are no longer searchable. Moreover, multiple authorities could be involved in controlling and sharing the private medical records of clients. However, authorizing different clients to search and access records originating from multiple authorities in a secure and scalable manner is a nontrivial matter. To address the above issues, we propose an authorized searchable encryption scheme under a multi-authority setting. Specifically, our proposed scheme leverages the RSA function to enable each authority to limit the search capability of different clients based on clients' privileges. To improve scalability, we utilize multi-authority attribute-based encryption to allow the authorization process to be performed only once even over policies from multiple authorities. We conduct rigorous security and cost analysis, and perform experimental evaluations to demonstrate that the proposed scheme introduces moderate overhead to existing searchable encryption schemes.

Original languageEnglish
Article number8668554
Pages (from-to)534-546
Number of pages13
JournalIEEE Transactions on Emerging Topics in Computing
Volume9
Issue number1
DOIs
Publication statusPublished - 1 Jan 2021
Externally publishedYes

Keywords

  • Multi-authority
  • cloud storage
  • e-medical system
  • encrypted data search
  • forward security

Fingerprint

Dive into the research topics of 'Enabling Authorized Encrypted Search for Multi-Authority Medical Databases'. Together they form a unique fingerprint.

Cite this