Secure Attribute-Based Signature Scheme With Multiple Authorities for Blockchain in Electronic Health Records Systems

Electronic Health Records (EHRs) are entirely controlled by hospitals instead of patients, which complicates seeking medical advices from different hospitals. Patients face a critical need to focus on the details of their own healthcare and restore management of their own medical data. The rapid development of blockchain technology promotes population healthcare, including medical records as well as patient-related data. This technology provides patients with comprehensive, immutable records, and access to EHRs free from service providers and treatment websites. In this paper, to guarantee the validity of EHRs encapsulated in blockchain, we present an attribute-based signature scheme with multiple authorities, in which a patient endorses a message according to the attribute while disclosing no information other than the evidence that he has attested to it. Furthermore, there are multiple authorities without a trusted single or central one to generate and distribute public/private keys of the patient, which avoids the escrow problem and conforms to the mode of distributed data storage in the blockchain. By sharing the secret pseudorandom function seeds among authorities, this protocol resists collusion attack out of $N$ from $N-1$ corrupted authorities. Under the assumption of the computational bilinear Diffie-Hellman, we also formally demonstrate that, in terms of the unforgeability and perfect privacy of the attribute-signer, this attribute-based signature scheme is secure in the random oracle model. The comparison shows the efficiency and properties between the proposed method and methods proposed in other studies.

[1]  Arun Kumar Sangaiah,et al.  Medical JPEG image steganography based on preserving inter-block dependencies , 2017, Comput. Electr. Eng..

[2]  Javier Herranz,et al.  Short Attribute-Based Signatures for Threshold Predicates , 2012, CT-RSA.

[3]  Manoj Prabhakaran,et al.  Attribute-Based Signatures , 2011, CT-RSA.

[4]  Tatsuaki Okamoto,et al.  Efficient Attribute-Based Signatures for Non-Monotone Predicates in the Standard Model , 2014, IEEE Transactions on Cloud Computing.

[5]  I. Kohane,et al.  Public standards and patients' control: how to keep electronic medical records accessible but private. , 2001, BMJ : British Medical Journal.

[6]  Fuchun Guo,et al.  Searchain: Blockchain-based private keyword search in decentralized storage , 2017, Future Gener. Comput. Syst..

[7]  Neil Genzlinger A. and Q , 2006 .

[8]  Brent Waters,et al.  Fuzzy Identity-Based Encryption , 2005, EUROCRYPT.

[9]  Dongqing Xie,et al.  Attribute-based signature and its applications , 2010, ASIACCS '10.

[10]  Weijia Jia,et al.  Efficient and secure attribute-based signature for monotone predicates , 2017, Acta Informatica.

[11]  Li Xu,et al.  Protecting Mobile Health Records in Cloud Computing , 2017, ACM Trans. Embed. Comput. Syst..

[12]  Yusuke Sakai,et al.  Attribute-Based Signatures for Circuits from Bilinear Map , 2016, Public Key Cryptography.

[13]  Melanie Swan,et al.  Blockchain: Blueprint for a New Economy , 2015 .

[14]  Cheng Chen,et al.  Fully Secure Attribute-Based Systems with Short Ciphertexts/Signatures and Threshold Access Structures , 2013, CT-RSA.

[15]  Dalia Khader,et al.  Attribute Based Group Signature with Revocation , 2007, IACR Cryptol. ePrint Arch..

[16]  Jinshu Su,et al.  Multi-authority Attribute-Based Signature , 2011, 2011 Third International Conference on Intelligent Networking and Collaborative Systems.

[17]  Robert H. Deng,et al.  Escrow free attribute-based signature with self-revealability , 2016, Inf. Sci..

[18]  Greg Irving,et al.  How blockchain-timestamped protocols could improve the trustworthiness of medical science. , 2016, F1000Research.

[19]  Ratna Dutta,et al.  Efficient attribute-based signature and signcryption realizing expressive access structures , 2015, International Journal of Information Security.

[20]  Satoshi Nakamoto Bitcoin : A Peer-to-Peer Electronic Cash System , 2009 .

[21]  Manoj Prabhakaran,et al.  Attribute-Based Signatures: Achieving Attribute-Privacy and Collusion-Resistance , 2008, IACR Cryptol. ePrint Arch..