Privacy-Friendly Flexible IoT Health Data Processing with User-Centric Access Control
share
This paper proposes a novel Single and Multiple user(s) data Aggregation (SAMA) scheme designed to support privacy preserving aggregation of health data collected from users' IoT wearables. SAMA also deploys a user-centric approach to support flexible fine-grain access control. It achieves this by deploying two key ideas. First, it uses multi-key Homomorphic cryptosystem (variant Paillier) to allow flexibility in accommodating both single and multi-user data processing as well as preserving the privacy of users while processing their IoT health data. Second, it uses ciphertext-policy attribute-based encryption to support flexible access control, which ensures users are able to grant data access securely and selectively. Formal security and privacy analyses have shown that SAMA supports data confidentiality and authorisation. The scheme has also been analysed in terms of computational and communication overheads to demonstrate that it is more efficient than the relevant state-of-the-art solutions.
READ FULL TEXT