scholarly journals Secure and Privacy-Preserving Data Sharing and Collaboration in Mobile Healthcare Social Networks of Smart Cities

2017 ◽  
Vol 2017 ◽  
pp. 1-12 ◽  
Author(s):  
Qinlong Huang ◽  
Licheng Wang ◽  
Yixian Yang
Keyword(s):  
Social Networks ◽  
Data Sharing ◽  
Service Providers ◽  
Smart Cities ◽  
Data Encryption ◽  
Health Data ◽  
Security And Privacy ◽  
Broadcast Encryption ◽  
Social Data ◽  
Mobile Healthcare

Mobile healthcare social networks (MHSN) integrated with connected medical sensors and cloud-based health data storage provide preventive and curative health services in smart cities. The fusion of social data together with real-time health data facilitates a novel paradigm of healthcare big data analysis. However, the collaboration of healthcare and social network service providers may pose a series of security and privacy issues. In this paper, we propose a secure health and social data sharing and collaboration scheme in MHSN. To preserve the data privacy, we realize secure and fine-grained health data and social data sharing with attribute-based encryption and identity-based broadcast encryption techniques, respectively, which allows patients to share their private personal data securely. In order to achieve enhanced data collaboration, we allow the healthcare analyzers to access both the reencrypted health data and the social data with authorization from the data owner based on proxy reencryption. Specifically, most of the health data encryption and decryption computations are outsourced from resource-constrained mobile devices to a health cloud, and the decryption of the healthcare analyzer incurs a low cost. The security and performance analysis results show the security and efficiency of our scheme.

scholarly journals Location-sharing protocol for privacy protection in mobile online social networks

2021 ◽  
Vol 2021 (1) ◽  
Author(s):  
Ou Ruan ◽  
Lixiao Zhang ◽  
Yuanyuan Zhang
Keyword(s):  
Social Networks ◽  
Private Information ◽  
Online Social Networks ◽  
Smart Cities ◽  
Location Based Services ◽  
Broadcast Encryption ◽  
Location Sharing ◽  
Identity Privacy ◽  
And Performance ◽  
Network Server

AbstractLocation-based services are becoming more and more popular in mobile online social networks (mOSNs) for smart cities, but users’ privacy also has aroused widespread concern, such as locations, friend sets and other private information. At present, many protocols have been proposed, but these protocols are inefficient and ignore some security risks. In the paper, we present a new location-sharing protocol, which solves two issues by using symmetric/asymmetric encryption properly. We adopt the following methods to reduce the communication and computation costs: only setting up one location server; connecting social network server and location server directly instead of through cellular towers; avoiding broadcast encryption. We introduce dummy identities to protect users’ identity privacy, and prevent location server from inferring users’ activity tracks by updating dummy identities in time. The details of security and performance analysis with related protocols show that our protocol enjoys two advantages: (1) it’s more efficient than related protocols, which greatly reduces the computation and communication costs; (2) it satisfies all security goals; however, most previous protocols only meet some security goals.

scholarly journals Privacy and Security Issues in Online Social Networks

2018 ◽  
Vol 10 (12) ◽  
pp. 114 ◽  
Author(s):  
Shaukat Ali ◽  
Naveed Islam ◽  
Azhar Rauf ◽  
Ikram Din ◽  
Mohsen Guizani ◽  
...  
Keyword(s):  
Social Networks ◽  
Online Social Networks ◽  
Virtual Communities ◽  
Service Providers ◽  
Security And Privacy ◽  
Security Issue ◽  
Sensitive Data ◽  
Privacy And Security ◽  
Security Issues ◽  
Social Sphere

The advent of online social networks (OSN) has transformed a common passive reader into a content contributor. It has allowed users to share information and exchange opinions, and also express themselves in online virtual communities to interact with other users of similar interests. However, OSN have turned the social sphere of users into the commercial sphere. This should create a privacy and security issue for OSN users. OSN service providers collect the private and sensitive data of their customers that can be misused by data collectors, third parties, or by unauthorized users. In this paper, common security and privacy issues are explained along with recommendations to OSN users to protect themselves from these issues whenever they use social media.

scholarly journals Adaptive Secure Cross-Cloud Data Collaboration with Identity-Based Cryptography and Conditional Proxy Re-Encryption

2018 ◽  
Vol 2018 ◽  
pp. 1-12 ◽  
Author(s):  
Qinlong Huang ◽  
Yue He ◽  
Wei Yue ◽  
Yixian Yang
Keyword(s):  
Service Providers ◽  
Cloud Service ◽  
Security And Privacy ◽  
Broadcast Encryption ◽  
Cloud Data ◽  
Identity Based ◽  
Identity Based Cryptography ◽  
And Performance ◽  
Cryptographic Techniques ◽  
Data Collaboration

Data collaboration in cloud computing is more and more popular nowadays, and proxy deployment schemes are employed to realize cross-cloud data collaboration. However, data security and privacy are the most serious issues that would raise great concerns from users when they adopt cloud systems to handle data collaboration. Different cryptographic techniques are deployed in different cloud service providers, which makes cross-cloud data collaboration to be a deeper challenge. In this paper, we propose an adaptive secure cross-cloud data collaboration scheme with identity-based cryptography (IBC) and proxy re-encryption (PRE) techniques. We first present a secure cross-cloud data collaboration framework, which protects data confidentiality with IBC technique and transfers the collaborated data in an encrypted form by deploying a proxy close to the clouds. We then provide an adaptive conditional PRE protocol with the designed full identity-based broadcast conditional PRE algorithm, which can achieve flexible and conditional data re-encryption among ciphertexts encrypted in identity-based encryption manner and ciphertexts encrypted in identity-based broadcast encryption manner. The extensive analysis and experimental evaluations demonstrate the well security and performance of our scheme, which meets the secure data collaboration requirements in cross-cloud scenarios.

scholarly journals CrowdMed-II: a blockchain-based framework for efficient consent management in health data sharing

2022 ◽  
Author(s):  
Chaochen Hu ◽  
Chao Li ◽  
Guigang Zhang ◽  
Zhiwei Lei ◽  
Mira Shah ◽  
...  
Keyword(s):  
Data Sharing ◽  
Service Providers ◽  
Heterogeneous Data ◽  
Health Data ◽  
Smart Contracts ◽  
Management Framework ◽  
Execution Costs ◽  
Traditional Health ◽  
Centralized Management ◽  
Health Service Providers

AbstractThe healthcare industry faces serious problems with health data. Firstly, health data is fragmented and its quality needs to be improved. Data fragmentation means that it is difficult to integrate the patient data stored by multiple health service providers. The quality of these heterogeneous data also needs to be improved for better utilization. Secondly, data sharing among patients, healthcare service providers and medical researchers is inadequate. Thirdly, while sharing health data, patients’ right to privacy must be protected, and patients should have authority over who can access their data. In traditional health data sharing system, because of centralized management, data can easily be stolen, manipulated. These systems also ignore patient’s authority and privacy. Researchers have proposed some blockchain-based health data sharing solutions where blockchain is used for consensus management. Blockchain enables multiple parties who do not fully trust each other to exchange their data. However, the practice of smart contracts supporting these solutions has not been studied in detail. We propose CrowdMed-II, a health data management framework based on blockchain, which could address the above-mentioned problems of health data. We study the design of major smart contracts in our framework and propose two smart contract structures. We also introduce a novel search contract for searching patients in the framework. We evaluate their efficiency based on the execution costs on Ethereum. Our design improves on those previously proposed, lowering the computational costs of the framework. This allows the framework to operate at scale and is more feasible for widespread adoption.

scholarly journals Accelerating Health Data Sharing: A Solution Based on the Internet of Things and Distributed Ledger Technologies (Preprint)

2019 ◽  
Author(s):  
Xiaochen Zheng ◽  
Shengjing Sun ◽  
Raghava Rao Mukkamala ◽  
Ravi Vatrapu ◽  
Joaquín Ordieres-Meré
Keyword(s):  
Health Care ◽  
Internet Of Things ◽  
Data Sharing ◽  
Data Access ◽  
Health Data ◽  
Security And Privacy ◽  
Access Management ◽  
Related Data ◽  
Distributed Ledger ◽  
Health Related

BACKGROUND Huge amounts of health-related data are generated every moment with the rapid development of Internet of Things (IoT) and wearable technologies. These big health data contain great value and can bring benefit to all stakeholders in the health care ecosystem. Currently, most of these data are siloed and fragmented in different health care systems or public and private databases. It prevents the fulfillment of intelligent health care inspired by these big data. Security and privacy concerns and the lack of ensured authenticity trails of data bring even more obstacles to health data sharing. With a decentralized and consensus-driven nature, distributed ledger technologies (DLTs) provide reliable solutions such as blockchain, Ethereum, and IOTA Tangle to facilitate the health care data sharing. OBJECTIVE This study aimed to develop a health-related data sharing system by integrating IoT and DLT to enable secure, fee-less, tamper-resistant, highly-scalable, and granularly-controllable health data exchange, as well as build a prototype and conduct experiments to verify the feasibility of the proposed solution. METHODS The health-related data are generated by 2 types of IoT devices: wearable devices and stationary air quality sensors. The data sharing mechanism is enabled by IOTA’s distributed ledger, the Tangle, which is a directed acyclic graph. Masked Authenticated Messaging (MAM) is adopted to facilitate data communications among different parties. Merkle Hash Tree is used for data encryption and verification. RESULTS A prototype system was built according to the proposed solution. It uses a smartwatch and multiple air sensors as the sensing layer; a smartphone and a single-board computer (Raspberry Pi) as the gateway; and a local server for data publishing. The prototype was applied to the remote diagnosis of tremor disease. The results proved that the solution could enable costless data integrity and flexible access management during data sharing. CONCLUSIONS DLT integrated with IoT technologies could greatly improve the health-related data sharing. The proposed solution based on IOTA Tangle and MAM could overcome many challenges faced by other traditional blockchain-based solutions in terms of cost, efficiency, scalability, and flexibility in data access management. This study also showed the possibility of fully decentralized health data sharing by replacing the local server with edge computing devices.

scholarly journals A Privacy-Preserving Attribute-Based Encryption System for Data Sharing in Smart Cities

2021 ◽  
Vol 2021 ◽  
pp. 1-15
Author(s):  
Xieyang Shen ◽  
Chuanhe Huang ◽  
Danxin Wang ◽  
Jiaoli Shi
Keyword(s):  
Data Sharing ◽  
Service Providers ◽  
Smart Cities ◽  
Information Leakage ◽  
Cloud Service ◽  
Data Access ◽  
Smart Devices ◽  
Fine Grained ◽  
Data Access Control ◽  
High Level

Information leakage and efficiency are the two main concerns of data sharing in cloud-aided IoT. The main problem is that smart devices cannot afford both energy and computation costs and tend to outsource data to a cloud server. Furthermore, most schemes focus on preserving the data stored in the cloud but omitting the access policy is typically stored in unencrypted form. In this paper, we proposed a fine-grained data access control scheme based on CP-ABE to implement access policies with a greater degree of expressiveness as well as hidden policies from curious cloud service providers. Moreover, to mitigate the extra computation cost generated by complex policies, an outsourcing service for decryption can be used by data users. Further experiments and extensive analysis show that we significantly decrease the communication and computation overhead while providing a high-level security scheme compared with the existing schemes.

scholarly journals Securing E-health Data using Ciphertext-Policy Attribute-Based Encryption with Dynamic User Revocation

2019 ◽  
Vol 8 (3) ◽  
pp. 7244-7250
Keyword(s):  
Access Control ◽  
Service Providers ◽  
Health Data ◽  
Security And Privacy ◽  
Unique Identifier ◽  
Fine Grained ◽  
Attribute Based Encryption ◽  
User Revocation ◽  
Role Based ◽  
Ciphertext Policy

E-health systems hold a massive amount of medical data that is stored and shared across healthcare service providers to deliver health facilities. However, security and privacy worries increase when sharing this data over distributed settings. As a result, Cryptography techniques have been considered to secure e-health data from unauthorized access. The Ciphertext Policy Attribute-Based Encryption (CP-ABE) is commonly utilized in such a setting, which provides role-based and fine-grained access control over encrypted data. The CP-ABE suffers from the problem of user revocation where the entire policy must be changed even when only one user is revoked or removed from the policy. In this paper, we proposed a CP-ABE based access control model to support user revocation efficiently. Specifically, the proposed model associates a unique identifier to each user. This identifier is added to the policy attributes and removed dynamically when the user is added/revoked. A tree structure (PolicyPathTree) is designed specifically for our model. It can facilitate fast access to policy's attributes during the verification process; The model is analyzed using Information Theory Tools. Results show that our model outperforms other notable work in terms of computational overheads.,

scholarly journals Social Networks and Customer Relationship Development at the Saudi Telecommunication Service Providers

2016 ◽  
Vol 8 (4) ◽  
pp. 77 ◽  
Author(s):  
Mahmoud Abdel Hamid Saleh
Keyword(s):  
Social Networks ◽  
Saudi Arabia ◽  
Customer Relationship Management ◽  
Service Providers ◽  
Strong Association ◽  
Relationship Management ◽  
Relationship Development ◽  
Customer Relationship ◽  
Security And Privacy ◽  
Telecommunication Service

<p>This paper is aimed at examining the relationship between the use of social networks and customer relationship development at the three telecommunication service providers in Saudi Arabia. It is also aimed at identifying some factors that may influence the companies’ relationships with their customers. Drawing on previous research, the researcher has selected three factors related to customers on social networks: trust and loyalty, service assessment, and information engagement. The study revealed a strong association of the use of social networks with the company’s customer relationship development, trust and loyalty, and service assessment, but not with information engagement. The findings also demonstrated significant positive associations of trust and loyalty, and service assessment with customer relationship development. However, an insignificant positive relationship was found between information engagement and customer relationship development. To leverage the effectiveness of customer relationship management at telecommunication companies in Saudi Arabia, the study recommended these companies to adopt the concept of Social Customer Relationship Management (Social CRM), and to develop customer service skills of their staff in charge of social networks. The study also pointed out the importance of encouraging customers to use social networks to connect with companies, rather than just using the traditional methods. Furthermore, the study recommended the companies to pay more attention to the customers’ assessment of their social networks, and to ensure security and privacy of their data. Ultimately, the companies need to focus on providing customers with the needed information, and benefiting from their feedbacks on social networking sites.</p>

CloudJS: novel cloud-based design framework for text-file encryption

2021 ◽  
Vol ahead-of-print (ahead-of-print) ◽  
Author(s):  
Rhea Gupta ◽  
Sara Dharadhar ◽  
Prathamesh Churi
Keyword(s):  
Data Security ◽  
Service Providers ◽  
Cloud Service ◽  
Data Encryption ◽  
Security And Privacy ◽  
Cloud Environment ◽  
Network Access ◽  
Content Type ◽  
Research Questions ◽  
Better Than

Purpose Cloud computing is becoming increasingly popular as it facilitates convenient, ubiquitous, on-demand network access to a shared pool of configurable computing resources and applications that can be quickly retrieved and released. Despite its numerous merits, it faces setbacks in data security and privacy. Data encryption is one of the most popular solutions for data security in the cloud. Various encryption algorithms have been implemented to address security concerns. These algorithms have been reviewed along with the Jumbling Salting algorithm and its applications. The framework for using Jumbling Salting to encrypt text files in the cloud environment (CloudJS) has been thoroughly studied and improvised. The purpose of this paper is to implement the CloudJS algorithm, to discuss its performance and compare the obtained results with existing cloud encryption schemes. Design/methodology/approach The paper uses six research questions to analyze the performance of CloudJS algorithm in the cloud environment. The research questions are about measuring encryption time and throughput, decryption time and throughput, the ratio of cipher to the plain text of CloudJS algorithm with respect to other Cloud algorithms like AES and DES. For this purpose, the algorithm has been implemented using dockers-containers in the Linux environment. Findings It was found that CloudJS performs well in terms of encryption time, decryption time and throughput. It is marginally better than AES and undoubtedly better than DES in these parameters. The performance of the algorithm is not affected by a number of CPU cores, RAM size and Line size of text files. It performs decently well in all scenarios and all resultant values fall in the desired range. Research limitations/implications CloudJS can be tested with cloud simulation platforms (CloudSim) and cloud service providers (AWS, Google Cloud). It can also be tested with other file types. In the future, CloudJS algorithm can also be implemented in images and other files. Originality/value To the best of the knowledge, this is the first attempt to implement and analysis of a custom encryption algorithm (CloudJS) in the cloud environment using dockers-containers.

Sign in / Sign up

Export Citation Format

Share Document