Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems
This paper investigates facilitating remote collection of a patient’s data in distributed system while protecting the security of the data, preserving the privacy of the patient’s ID, and preventing inference attack. The paper presents a novel framework called SPID stand for a...
Main Authors: | , |
---|---|
Format: | Article |
Language: | English |
Published: |
IEEE
2023-01-01
|
Series: | IEEE Access |
Subjects: | |
Online Access: | https://ieeexplore.ieee.org/document/10007806/ |
_version_ | 1797902211852795904 |
---|---|
author | Tahani Hamad Aljohani Ning Zhang |
author_facet | Tahani Hamad Aljohani Ning Zhang |
author_sort | Tahani Hamad Aljohani |
collection | DOAJ |
description | This paper investigates facilitating remote collection of a patient’s data in distributed system while protecting the security of the data, preserving the privacy of the patient’s ID, and preventing inference attack. The paper presents a novel framework called SPID stand for a Secure, ID Privacy, and Inference Threat Prevention Mechanisms for Distributed Systems. In designing this framework, we make the following novel contributions. The SPID presents a novel architecture that supports the use of a distributed set of servers owned by different service providers. The SPID allows the patient to access these servers using certificates generated by the patient. The SPID allows the patient to select one server to be the home server, and select a number of servers to be the foreign servers. The patient uses the foreign servers to upload data. The home server is responsible for collecting the patient’s data from the foreign servers and sending them to the healthcare provider. The SPID proposes a method for efficient verification of each request from the patient without searching in the server’s database for the verification key. This is done by using some of the Elliptic Curves Cryptography (ECC) properties. The SPID has been analyzed using a bench-marking tool and evaluated using queuing theory. The evaluation results indicate an efficient performance when the number of servers increases. We uses Shannon entropy method to measure the likelihood of the inference attack. |
first_indexed | 2024-04-10T09:14:08Z |
format | Article |
id | doaj.art-44bd3b78f0e64bd3abdeb252f71820e9 |
institution | Directory Open Access Journal |
issn | 2169-3536 |
language | English |
last_indexed | 2024-04-10T09:14:08Z |
publishDate | 2023-01-01 |
publisher | IEEE |
record_format | Article |
series | IEEE Access |
spelling | doaj.art-44bd3b78f0e64bd3abdeb252f71820e92023-02-21T00:03:27ZengIEEEIEEE Access2169-35362023-01-01113766378010.1109/ACCESS.2023.323493210007806Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed SystemsTahani Hamad Aljohani0https://orcid.org/0000-0003-0753-3494Ning Zhang1https://orcid.org/0000-0001-9519-9128College of Computer and Information Sciences, Princess Nourah Bint Abdul Rahman University, Riyadh, Saudi ArabiaSchool of Computer Science, The University of Manchester, Manchester, U.K.This paper investigates facilitating remote collection of a patient’s data in distributed system while protecting the security of the data, preserving the privacy of the patient’s ID, and preventing inference attack. The paper presents a novel framework called SPID stand for a Secure, ID Privacy, and Inference Threat Prevention Mechanisms for Distributed Systems. In designing this framework, we make the following novel contributions. The SPID presents a novel architecture that supports the use of a distributed set of servers owned by different service providers. The SPID allows the patient to access these servers using certificates generated by the patient. The SPID allows the patient to select one server to be the home server, and select a number of servers to be the foreign servers. The patient uses the foreign servers to upload data. The home server is responsible for collecting the patient’s data from the foreign servers and sending them to the healthcare provider. The SPID proposes a method for efficient verification of each request from the patient without searching in the server’s database for the verification key. This is done by using some of the Elliptic Curves Cryptography (ECC) properties. The SPID has been analyzed using a bench-marking tool and evaluated using queuing theory. The evaluation results indicate an efficient performance when the number of servers increases. We uses Shannon entropy method to measure the likelihood of the inference attack.https://ieeexplore.ieee.org/document/10007806/SecurityID~privacydistributed authenticationelliptic curvesinference attack |
spellingShingle | Tahani Hamad Aljohani Ning Zhang Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems IEEE Access Security ID~privacy distributed authentication elliptic curves inference attack |
title | Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems |
title_full | Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems |
title_fullStr | Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems |
title_full_unstemmed | Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems |
title_short | Secure, ID Privacy and Inference Threat Prevention Mechanisms for Distributed Systems |
title_sort | secure id privacy and inference threat prevention mechanisms for distributed systems |
topic | Security ID~privacy distributed authentication elliptic curves inference attack |
url | https://ieeexplore.ieee.org/document/10007806/ |
work_keys_str_mv | AT tahanihamadaljohani secureidprivacyandinferencethreatpreventionmechanismsfordistributedsystems AT ningzhang secureidprivacyandinferencethreatpreventionmechanismsfordistributedsystems |