基于属性的移动医疗安全系统的设计与实现
摘要移动医疗系统是利用现代无线通信技术及移动设备如个人数字助理PDA、移动手机等来提供便利的医疗服务及信息。移动医疗系统的重要应用之一是随时随地地监控患者的身体状况,并将收集到的患者的健康状况信息传输到服务器端。通常,移动医疗系统处理的数据绝大多数是具有高度敏感性的个人健康信息(Personal Health Information,PHI)。
为了解决目前移动医疗系统中PHI存在的安全与隐私问题,考虑到患者对其自身PHI的自主控制与隐私特权问题,同时又希望PHI能被安全地存储在云端以实现随时随地远程访问的目的。本文提出了一种高效、安全的访问控制方案,重点实现能够运用于移动医疗安全系统中的基于属性加密方案。根据数据请求者不同的身份信息,分配不同的访问权限。最后,我们还测试所提出方案的安全性及性能,实验结果表明:该方案在可接受的通信延迟的开销上,满足了足够的安全需求。42788
关键词:移动医疗系统;安全;隐私;密文策略的基于属性加密方案;访问控制;
毕业论文设计说明书外文摘要
Title Attribute-Based Encryption for Mobile Health Security System:Design and Implementation
Abstract
The aim of Mobile Health System is to facilitate the delivery of health/medical service via modern wireless communication technology and mobile devices such as personal digital assistants (PDA), mobile phone, etc. One of the important applications of mobile health system is the ubiquitous monitoring of patient’s health condition, and the secure transmission and storage of the collected health data in server. Generally, target data of mobile health system is Personal Health Information (PHI) that has highly sensitive characteristic.
To solve the exist security and privacy issues of current mobile heath systems, and considering the privacy and self-control requirement, and the expectation of PHI being stored in server securely to achieve remote access, we propose an efficient and secure attribute-based access control solution, which is suitable for mobile health system. According to different identities of different users, attribute characteristics are assigned to formalize different access privileges. Finally, we analyze the security and discuss the performance of our solution with simulation experiment. The experimental results show that our solution provides sufficient security with reasonable communication latency overhead, which further proves that our solution is applicable to mobile health system.
Keywords Mobile Health; Security; Privacy; Ciphertext-Policy Attribute-Based Encryption (CP-ABE); Access Control
目 次
1 引言 1
1.1 传感器与传感器网络 1
1.2 无线通信技术 1
1.3 远程监控系统的概念 1
1.4 远程监控系统在医疗领域的具体应用 2
2 相关研究工作 4
2.1 公钥系统 4
2.2 基于身份的加密方案 4
2.3 基于属性加密 4
2.4 KP-ABE和CP-ABE方案的提出 5
2.5 CP-ABE和KP-ABE两种方案的比较 6
3 CP-ABE算法 8
3.1 近世代数基础 8
3.2 双线性对