Privacy-preserving Health Data Sharing for Medical Cyber-Physical Systems
This addresses privacy concerns for end users in medical systems, though it appears incremental as it builds on existing encryption and fragmentation techniques.
The paper tackles the problem of data safety and privacy in Medical Cyber-Physical Systems (MCPS) by proposing a secure data storage and sharing method that protects data even when transmission media and keys are compromised, and evaluates its efficiency on a smartphone platform.
The recent spades of cyber security attacks have compromised end users' data safety and privacy in Medical Cyber-Physical Systems (MCPS). Traditional standard encryption algorithms for data protection are designed based on a viewpoint of system architecture rather than a viewpoint of end users. As such encryption algorithms are transferring the protection on the data to the protection on the keys, data safety and privacy will be compromised once the key is exposed. In this paper, we propose a secure data storage and sharing method consisted by a selective encryption algorithm combined with fragmentation and dispersion to protect the data safety and privacy even when both transmission media (e.g. cloud servers) and keys are compromised. This method is based on a user-centric design that protects the data on a trusted device such as end user's smartphone and lets the end user to control the access for data sharing. We also evaluate the performance of the algorithm on a smartphone platform to prove the efficiency.