Multiple access control scheme for EHRs combining edge computing with smart contracts

Abstract To make up the insufficient computing power of remote medical devices and solve the transmission delay problem, edge computing has been widely studied in academic community. The application of edge computing in E-health makes it more convenient for medical providers to view the patient’electronic health records (EHRs), which not only improves the work efficiency of medical providers, but also provides patients with more personalized treatments. However,there are some security problems in the E-health system, such as EHRs leakage or tampering. Therefore, attribute-based encryption (CP-ABE) is widely used in the access control of EHRS. In order to reduce the computing cost of resource-constrained devices and achieve more flexible fine-grained access control, this paper proposes an effective ABE scheme that outsources part of the computing load to the fog nodes, which safely shares data with lower overheads. It also supports users revocation and attribute revocation. In addition, we combine smart contract and blockchain to share more fine-grained EHRs. The security proof and experimental results show that our scheme has higher efficiency to protect the patients’ EHRs privacy.