本文已被:浏览 188次 下载 601次
Received:February 22, 2024 Revised:March 19, 2024
Received:February 22, 2024 Revised:March 19, 2024
中文摘要: 本文旨在解决共享医疗数据场景下的群组用户授权管理与完整性验证问题. 首先, 为防止群组用户越权操作, 引入授权标识符, 医疗数据持有者凭授权标识符, 结合用户身份完成权限分配; 而授权标识符的数学构造可有效保证其不可伪造性. 其次, 为记录撤销用户并剥夺其访问权限, 引入基于跳表设计的撤销用户表; 跳表的快速查找和插入的特性, 使方案撤销用户的开销仅为${\mathrm{O}}(\log n)$. 随后, 完善了共享数据完整性验证的具体流程与数学设计. 最后通过安全性分析和仿真实验证明了方案的安全性和高效性.
Abstract:This study is designed to address the issues of group user authorization management and integrity verification for shared medical data. First, to prevent group users from overstepping their authority, authorization identifiers are introduced. Medical data owners use authorization identifiers to allocate different access rights to group users, according to user identities. The mathematical construction of authorization identifiers effectively ensures that it cannot be forged. Second, to record revoked users and deprive them of access rights, a revoked user list based on a skip list is introduced. As skip list can support fast lookup and insertion, the overhead of revoking a user is only O(logn). Afterward, the concrete process and mathematical design of shared data integrity verification are improved. Finally, the security analysis and simulation experiments prove the security and efficiency of the scheme.
keywords: cloud storage security integrity verification medical data group user authorization management
文章编号: 中图分类号: 文献标志码:
基金项目:
引用文本:
张邓凡,袁艺林,杨帆,李子臣.支持组用户授权管理的共享数据完整性验证方案.计算机系统应用,2024,33(8):98-107
ZHANG Deng-Fan,YUAN Yi-Lin,YANG Fan,LI Zi-Chen.Integrity Verification Scheme for Shared Data Enabling Group User Authorization Management.COMPUTER SYSTEMS APPLICATIONS,2024,33(8):98-107
张邓凡,袁艺林,杨帆,李子臣.支持组用户授权管理的共享数据完整性验证方案.计算机系统应用,2024,33(8):98-107
ZHANG Deng-Fan,YUAN Yi-Lin,YANG Fan,LI Zi-Chen.Integrity Verification Scheme for Shared Data Enabling Group User Authorization Management.COMPUTER SYSTEMS APPLICATIONS,2024,33(8):98-107
