The Access Control Mechanism For Medical Imaging Services Platform Based On Cloud Computing Technologies

Cloud computing technology is a hot research focus,and has advantages such as high performance,ease of use and low cost.The use of cloud computing technology for medical data management has become a trend with the development of cloud computing.In the medical field,the medical image data has been larger proportion of medical data generated every day.Therefore,in order to manage medical image data better and make it easy to store,visit as well as share,it is an urgent need to build Medical Image Data Platform with cloud computing technology,providing effective real-time data services for clinical diagnosis and research.As data sharing and privacy protection are the primary security goal for users of Medical Imaging Cloud Platform,this paper attempts to solve the security problem from the perspective of identity management and access control.We work on the research of identity authentication,make contributes to proposing effective authentication mechanism,and design an effective access control model in the process of data access.This paper has done the following work:Firstly,we learn critical technology of cloud security form the demand,existing programs and challenges,and analyze the research results of industry and academia on cloud access control,especially in cloud access control model.In order to achieve the security challenge:data sharing and privacy protection of Medical Imaging Cloud Platform,we considers both cloud security trusted access control and ciphertext retrieve,puts forward the access control mechanism with attribute-based searchable encryption based on ciphertext-policy attribute-based encryption(CP-ABE)and symmetric encryption algorithm.According to the unique application scenarios of Medical Imaging Data Cloud Platform,we work on feasibility analysis,complexity analysis,computing cost analysis,and performance analysis through simulation experiments,and the encryption/decryption time reduced in our scheme.Secondly,in order to meet the actual demand for medical application scenario,we adopt the Multi-Authority Attribute-Based Encryption model(MA-ABE).The attribute-based searchable encryption with attributes revocation method is a combination of attribute-based encryption and searchable encryption,which prevents unauthorized access effectively and provides cryptograph query function.In addition,we put forward an attribute revocation method with the key attribute version.To attain the goal of effective attribute revocation,users only need to update the private key and authorize the process with a lot of calculation to others.For example,Attribute Authority(AA)take charge of generating update key,and cloud service providers work on data update.Thirdly,we propose an integration model of access control and identity authentication to be the first security gateway of Medical Imaging Data Cloud Platform.According to user registration and certification process of our access control scheme,combined with an identity authentication mechanism based on improved dual-server model.And take relevant measures to improve the authentication security,which further expansion the security of the access control model in this paper.