An Efficient GDPR-Compliant Data Management for IoHT Applications

I-Hsun Chuang, Shih Hao Huang, Wan Hsuan Hong, Yau Hwang Kuo

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

The rapid rise of Internet of Health Things (IoHT) makes preserving data privacy become a critical task. In 2016, European Union has published General Data Protection Regulation (GDPR) which urges service providers to protect user privacy. Existing fine-grained encryption methods, such as key-policy attribute-based encryption (KP-ABE), belong to pairing-based cryptography which is impractical in resource-constraint IoHT devices. Also, habitual data-sharing systems fail to satisfy the right to access, the right to data portability, and the right to erasure claimed by GDPR at the same time. Thus, this paper proposes the GDPR-compliant Data Management (GCDM) composed of pairing-free KP-ABE (PF-KP-ABE) and GDPR-compliant Revocable Blockchain (GRBC) to provide IoHT applications efficient and secure data-sharing service. PF-KP-ABE exploits the pairing-free mechanism to improve the performance of fine-grained access control on IoHT devices. GRBC applies the special-designed Create/ Read/ Update/ Delete (CRUD) operations to comply with GDPR. Security analysis demonstrates the GDPR compliance of GRBC as well as the correctness of PF-KP-ABE. Then, the Perfect Forward Secrecy of PF-KP-ABE is also proved. Experiment results show that the proposed PF-KP-ABE outperforms existing KP-ABE on both Control Centre and IoHT devices. Hence, GCDM is the most practical data management for various IoHT applications.

Original languageEnglish
Title of host publication2023 IEEE International Conference on Communications Workshops
Subtitle of host publicationSustainable Communications for Renaissance, ICC Workshops 2023
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages1950-1955
Number of pages6
ISBN (Electronic)9798350333077
DOIs
Publication statusPublished - 2023
Event2023 IEEE International Conference on Communications Workshops, ICC Workshops 2023 - Rome, Italy
Duration: 2023 May 282023 Jun 1

Publication series

Name2023 IEEE International Conference on Communications Workshops: Sustainable Communications for Renaissance, ICC Workshops 2023

Conference

Conference2023 IEEE International Conference on Communications Workshops, ICC Workshops 2023
Country/TerritoryItaly
CityRome
Period23-05-2823-06-01

All Science Journal Classification (ASJC) codes

  • Artificial Intelligence
  • Computer Networks and Communications
  • Safety, Risk, Reliability and Quality
  • Instrumentation

Fingerprint

Dive into the research topics of 'An Efficient GDPR-Compliant Data Management for IoHT Applications'. Together they form a unique fingerprint.

Cite this