Cargando…
A privacy-preserving blockchain-based tracing model for virus-infected people in cloud
The outbreak of COVID-19 has exposed the privacy of positive patients to the public, which will lead to violations of users’ rights and even threaten their lives. A privacy-preserving scheme involving virus-infected positive patients is proposed by us. The traditional ciphertext policy attribute-bas...
| Autores principales: | , , , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Elsevier Ltd.
2023
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9385329/ https://www.ncbi.nlm.nih.gov/pubmed/35996556 http://dx.doi.org/10.1016/j.eswa.2022.118545 |
| _version_ | 1784769567321489408 |
|---|---|
| author | Qin, Chengyi Wu, Lei Meng, Weizhi Xu, Zihui Li, Su Wang, Hao |
| author_facet | Qin, Chengyi Wu, Lei Meng, Weizhi Xu, Zihui Li, Su Wang, Hao |
| author_sort | Qin, Chengyi |
| collection | PubMed |
| description | The outbreak of COVID-19 has exposed the privacy of positive patients to the public, which will lead to violations of users’ rights and even threaten their lives. A privacy-preserving scheme involving virus-infected positive patients is proposed by us. The traditional ciphertext policy attribute-based encryption (CP-ABE) has the features of enhanced plaintext security and fine-grained access control. However, the encryption process requires the high computational performance of the device, which puts a high strain on resource-limited devices. After semi-honest users successfully decrypt the data, they will get the real private data, which will cause serious privacy leakage problems. Traditional cloud-based data management architectures are extremely vulnerable in the face of various cyberattacks. To address the above challenges, a verifiable ABE scheme based on blockchain and local differential privacy is proposed, using LDP to perturb the original data locally to a certain extent to resist collusion attacks, outsourcing encryption and decryption to corresponding service providers to reduce the pressure on mobile terminals, and deploying smart contracts in combination with blockchain for fair execution by all parties to solve the problem of returning wrong search results in a semi-honest cloud server. Detailed security proofs are performed through the defined security goals, which shows that the proposed scheme is indeed privacy-protective. The experimental results show that the scheme is optimized in terms of data accuracy, computational overhead, storage performance, and fairness. In terms of efficiency, it greatly reduces the local load, enhances personal privacy protection, and has high practicality as well as reliability. As far as we know, it is the first case of applying the combination of LDP technology and blockchain to a tracing system, which not only mitigates poisoning attacks on user data, but also improves the accuracy of the data, thus making it easier to identify infected contacts and making a useful contribution to health prevention and control efforts. |
| format | Online Article Text |
| id | pubmed-9385329 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2023 |
| publisher | Elsevier Ltd. |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-93853292022-08-18 A privacy-preserving blockchain-based tracing model for virus-infected people in cloud Qin, Chengyi Wu, Lei Meng, Weizhi Xu, Zihui Li, Su Wang, Hao Expert Syst Appl Article The outbreak of COVID-19 has exposed the privacy of positive patients to the public, which will lead to violations of users’ rights and even threaten their lives. A privacy-preserving scheme involving virus-infected positive patients is proposed by us. The traditional ciphertext policy attribute-based encryption (CP-ABE) has the features of enhanced plaintext security and fine-grained access control. However, the encryption process requires the high computational performance of the device, which puts a high strain on resource-limited devices. After semi-honest users successfully decrypt the data, they will get the real private data, which will cause serious privacy leakage problems. Traditional cloud-based data management architectures are extremely vulnerable in the face of various cyberattacks. To address the above challenges, a verifiable ABE scheme based on blockchain and local differential privacy is proposed, using LDP to perturb the original data locally to a certain extent to resist collusion attacks, outsourcing encryption and decryption to corresponding service providers to reduce the pressure on mobile terminals, and deploying smart contracts in combination with blockchain for fair execution by all parties to solve the problem of returning wrong search results in a semi-honest cloud server. Detailed security proofs are performed through the defined security goals, which shows that the proposed scheme is indeed privacy-protective. The experimental results show that the scheme is optimized in terms of data accuracy, computational overhead, storage performance, and fairness. In terms of efficiency, it greatly reduces the local load, enhances personal privacy protection, and has high practicality as well as reliability. As far as we know, it is the first case of applying the combination of LDP technology and blockchain to a tracing system, which not only mitigates poisoning attacks on user data, but also improves the accuracy of the data, thus making it easier to identify infected contacts and making a useful contribution to health prevention and control efforts. Elsevier Ltd. 2023-01 2022-08-18 /pmc/articles/PMC9385329/ /pubmed/35996556 http://dx.doi.org/10.1016/j.eswa.2022.118545 Text en © 2022 Elsevier Ltd. All rights reserved. Since January 2020 Elsevier has created a COVID-19 resource centre with free information in English and Mandarin on the novel coronavirus COVID-19. The COVID-19 resource centre is hosted on Elsevier Connect, the company's public news and information website. Elsevier hereby grants permission to make all its COVID-19-related research that is available on the COVID-19 resource centre - including this research content - immediately available in PubMed Central and other publicly funded repositories, such as the WHO COVID database with rights for unrestricted research re-use and analyses in any form or by any means with acknowledgement of the original source. These permissions are granted for free by Elsevier for as long as the COVID-19 resource centre remains active. |
| spellingShingle | Article Qin, Chengyi Wu, Lei Meng, Weizhi Xu, Zihui Li, Su Wang, Hao A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title | A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title_full | A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title_fullStr | A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title_full_unstemmed | A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title_short | A privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| title_sort | privacy-preserving blockchain-based tracing model for virus-infected people in cloud |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9385329/ https://www.ncbi.nlm.nih.gov/pubmed/35996556 http://dx.doi.org/10.1016/j.eswa.2022.118545 |
| work_keys_str_mv | AT qinchengyi aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT wulei aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT mengweizhi aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT xuzihui aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT lisu aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT wanghao aprivacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT qinchengyi privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT wulei privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT mengweizhi privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT xuzihui privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT lisu privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud AT wanghao privacypreservingblockchainbasedtracingmodelforvirusinfectedpeopleincloud |