{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,9]],"date-time":"2025-12-09T08:29:59Z","timestamp":1765268999514,"version":"3.37.3"},"reference-count":33,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2024,9,18]],"date-time":"2024-09-18T00:00:00Z","timestamp":1726617600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2024,9,18]],"date-time":"2024-09-18T00:00:00Z","timestamp":1726617600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61902289"],"award-info":[{"award-number":["61902289"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100003392","name":"Natural Science Foundation of Fujian Province","doi-asserted-by":"publisher","award":["2023J01534"],"award-info":[{"award-number":["2023J01534"]}],"id":[{"id":"10.13039\/501100003392","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Cybersecurity"],"abstract":"<jats:title>Abstract<\/jats:title><jats:p>In certain cloud Electronic Medical Records (EMRs) applications, the data ownership may need to be transferred. In practice, not only the data but also the auditing ability should be transferred securely and efficiently. However, we investigate and find that most of the existing data ownership transfer protocols only work well between two individuals, and they become inefficient when dealing between two communities. The proposals for transferring tags between communities are problematic as well since, they require all members get involved or a fully trusted aggregator facilitates ownership transfer, which are unrealistic in certain scenarios. To alleviate these problems, in this paper we develop a secure auditing protocol with decentralized (<jats:italic>t<\/jats:italic>,\u00a0<jats:italic>n<\/jats:italic>)-threshold ownership transfer for cloud EMRs. This protocol is designed to operate efficiently without requiring the mandatory participation of every user or the involvement of any trusted third-party. It is achieved by employing the threshold signature. Rigorous security analyses and comprehensive performance evaluations illustrate the security and practicality of our protocol. Specifically, according to the evaluations and comparisons, the communication and computational consumption is independent of the file size, i.e., it is constant in our protocol for both communities.<\/jats:p>","DOI":"10.1186\/s42400-024-00246-4","type":"journal-article","created":{"date-parts":[[2024,9,19]],"date-time":"2024-09-19T16:00:25Z","timestamp":1726761625000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Cloud EMRs auditing with decentralized (t,\u00a0n)-threshold ownership transfer"],"prefix":"10.1186","volume":"7","author":[{"given":"Yamei","family":"Wang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Weijing","family":"You","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3882-7041","authenticated-orcid":false,"given":"Yuexin","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ayong","family":"Ye","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Li","family":"Xu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,9,18]]},"reference":[{"key":"246_CR1","doi-asserted-by":"crossref","unstructured":"Ateniese G, Burns R, Curtmola R, Herring J, Kissner L, Peterson Z, Song D (2007) Provable data possession at untrusted stores. In: Proceedings of the 14th ACM conference on computer and communications security, pp 598\u2013609","DOI":"10.1145\/1315245.1315318"},{"key":"246_CR2","doi-asserted-by":"crossref","unstructured":"Ateniese G, Di\u00a0Pietro R, Mancini LV, Tsudik G (2008) Scalable and efficient provable data possession. In: Proceedings of the 4th international conference on security and privacy in communication netowrks, pp 1\u201310","DOI":"10.1145\/1460877.1460889"},{"key":"246_CR3","doi-asserted-by":"crossref","unstructured":"Azaria A, Ekblaw A, Vieira T, Lippman A (2016) MedRec: using blockchain for medical data access and permission management. In: 2016 2nd international conference on open and big data (OBD). IEEE, pp 25\u201330","DOI":"10.1109\/OBD.2016.11"},{"key":"246_CR4","doi-asserted-by":"publisher","DOI":"10.1016\/j.technovation.2022.102480","volume":"120","author":"R Cerchione","year":"2023","unstructured":"Cerchione R, Centobelli P, Riccio E, Abbate S, Oropallo E (2023) Blockchains coming to hospital to digitalize healthcare services: designing a distributed electronic health record ecosystem. Technovation 120:102480","journal-title":"Technovation"},{"issue":"4","key":"246_CR5","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/2699909","volume":"17","author":"CC Erway","year":"2015","unstructured":"Erway CC, K\u00fcp\u00e7\u00fc A, Papamanthou C, Tamassia R (2015) Dynamic provable data possession. ACM Trans Inf Syst Secur (TISSEC) 17(4):1\u201329","journal-title":"ACM Trans Inf Syst Secur (TISSEC)"},{"issue":"1","key":"246_CR6","doi-asserted-by":"publisher","first-page":"14","DOI":"10.1109\/TBDATA.2017.2701347","volume":"8","author":"A Fu","year":"2017","unstructured":"Fu A, Yu S, Zhang Y, Wang H, Huang C (2017) NPP: a new privacy-aware public auditing scheme for cloud data sharing with group users. IEEE Trans Big Data 8(1):14\u201324","journal-title":"IEEE Trans Big Data"},{"issue":"22","key":"246_CR7","doi-asserted-by":"publisher","first-page":"20065","DOI":"10.1109\/JIOT.2023.3282939","volume":"10","author":"C Gai","year":"2023","unstructured":"Gai C, Shen W, Yang M, Yu J (2023) PPADT: privacy-preserving identity-based public auditing with efficient data transfer for cloud-based IoT data. IEEE Internet Things J 10(22):20065\u201320079","journal-title":"IEEE Internet Things J"},{"key":"246_CR8","doi-asserted-by":"publisher","first-page":"84","DOI":"10.1016\/j.csi.2018.08.004","volume":"62","author":"J Han","year":"2019","unstructured":"Han J, Li Y, Chen W (2019) A lightweight and privacy-preserving public cloud auditing scheme without bilinear pairings in smart cities. Comput Stand Interfaces 62:84\u201397","journal-title":"Comput Stand Interfaces"},{"issue":"2","key":"246_CR9","first-page":"936","volume":"19","author":"L Huang","year":"2020","unstructured":"Huang L, Zhou J, Zhang G, Sun J, Wei T, Yu S, Hu S (2020) IPANM: incentive public auditing scheme for non-manager groups in clouds. IEEE Trans Dependable Secure Comput 19(2):936\u2013952","journal-title":"IEEE Trans Dependable Secure Comput"},{"key":"246_CR10","doi-asserted-by":"crossref","unstructured":"Juels A, Kaliski\u00a0Jr BS (2007) PORs: proofs of retrievability for large files. In: Proceedings of the 14th ACM conference on computer and communications security, pp 584\u2013597","DOI":"10.1145\/1315245.1315317"},{"issue":"2","key":"246_CR11","doi-asserted-by":"publisher","first-page":"195","DOI":"10.1109\/TCC.2014.2366148","volume":"3","author":"J Li","year":"2014","unstructured":"Li J, Tan X, Chen X, Wong DS, Xhafa F (2014) OPoR: enabling proof of retrievability in cloud computing with resource-constrained devices. IEEE Trans Cloud Comput 3(2):195\u2013205","journal-title":"IEEE Trans Cloud Comput"},{"key":"246_CR12","doi-asserted-by":"crossref","unstructured":"Lin C, Huang X, He D (2023) Efficient blockchain-based electronic medical record sharing with anti-malicious propagation. IEEE Trans Serv Comput","DOI":"10.1109\/TSC.2023.3289319"},{"key":"246_CR13","doi-asserted-by":"crossref","unstructured":"Liu J, Li X, Ye L, Zhang H, Du X, Guizani M (2018) BPDS: a blockchain based privacy-preserving data sharing for electronic medical records. In: 2018 IEEE global communications conference (GLOBECOM). IEEE, pp 1\u20136","DOI":"10.1109\/GLOCOM.2018.8647713"},{"issue":"1","key":"246_CR14","first-page":"80","volume":"23","author":"BK Rai","year":"2023","unstructured":"Rai BK (2023) PcBEHR: patient-controlled blockchain enabled electronic health records for healthcare 4.0. Health Serv Outcomes Res Methodol 23(1):80\u2013102","journal-title":"Health Serv Outcomes Res Methodol"},{"key":"246_CR15","doi-asserted-by":"publisher","first-page":"21899","DOI":"10.1007\/s11042-021-10705-6","volume":"80","author":"A Sarkar","year":"2021","unstructured":"Sarkar A, Sarkar M (2021) Tree parity machine guided patients privileged based secure sharing of electronic medical record: cybersecurity for telehealth during covid-19. Multimedia Tools Appl 80:21899\u201321923","journal-title":"Multimedia Tools Appl"},{"issue":"3","key":"246_CR16","doi-asserted-by":"publisher","first-page":"442","DOI":"10.1007\/s00145-012-9129-2","volume":"26","author":"H Shacham","year":"2013","unstructured":"Shacham H, Waters B (2013) Compact proofs of retrievability. J Cryptol 26(3):442\u2013483","journal-title":"J Cryptol"},{"issue":"4","key":"246_CR17","doi-asserted-by":"publisher","first-page":"912","DOI":"10.1109\/TIFS.2017.2774439","volume":"13","author":"J Shen","year":"2017","unstructured":"Shen J, Zhou T, Chen X, Li J, Susilo W (2017) Anonymous and traceable group data sharing in cloud computing. IEEE Trans Inf Forensics Secur 13(4):912\u2013925","journal-title":"IEEE Trans Inf Forensics Secur"},{"key":"246_CR18","doi-asserted-by":"publisher","first-page":"56","DOI":"10.1016\/j.jnca.2017.01.015","volume":"82","author":"W Shen","year":"2017","unstructured":"Shen W, Yu J, Xia H, Zhang H, Lu X, Hao R (2017) Light-weight and privacy-preserving secure cloud auditing scheme for group users via the third party medium. J Netw Comput Appl 82:56\u201364","journal-title":"J Netw Comput Appl"},{"key":"246_CR19","doi-asserted-by":"crossref","unstructured":"Shen J, Chen X, Wei J, Guo F, Susilo W (2022) Blockchain-based accountable auditing with multi-ownership transfer. IEEE Trans Cloud Comput","DOI":"10.1109\/TCC.2022.3224440"},{"key":"246_CR20","doi-asserted-by":"crossref","unstructured":"Shen J, Guo F, Chen X, Susilo W (2020) Secure cloud auditing with efficient ownership transfer. In: Computer Security\u2013ESORICS 2020: 25th European symposium on research in computer security, ESORICS 2020, Guildford, UK, September 14\u201318, Proceedings, Part I 25. Springer, pp 611\u2013631","DOI":"10.1007\/978-3-030-58951-6_30"},{"issue":"5","key":"246_CR21","doi-asserted-by":"publisher","first-page":"701","DOI":"10.1109\/TSC.2015.2512589","volume":"10","author":"H Tian","year":"2015","unstructured":"Tian H, Chen Y, Chang C-C, Jiang H, Huang Y, Chen Y, Liu J (2015) Dynamic-hash-table based public auditing for secure cloud storage. IEEE Trans Serv Comput 10(5):701\u2013714","journal-title":"IEEE Trans Serv Comput"},{"key":"246_CR22","doi-asserted-by":"publisher","first-page":"597","DOI":"10.1109\/TIFS.2022.3227753","volume":"18","author":"Q Wang","year":"2023","unstructured":"Wang Q, Wang D (2023) Understanding failures in security proofs of multi-factor authentication for mobile devices. IEEE Trans Inf Forensics Secur 18:597\u2013612","journal-title":"IEEE Trans Inf Forensics Secur"},{"issue":"2","key":"246_CR23","doi-asserted-by":"publisher","first-page":"362","DOI":"10.1109\/TC.2011.245","volume":"62","author":"C Wang","year":"2011","unstructured":"Wang C, Chow SS, Wang Q, Ren K, Lou W (2011) Privacy-preserving public auditing for secure cloud storage. IEEE Trans Comput 62(2):362\u2013375","journal-title":"IEEE Trans Comput"},{"issue":"1","key":"246_CR24","doi-asserted-by":"publisher","first-page":"92","DOI":"10.1109\/TSC.2013.2295611","volume":"8","author":"B Wang","year":"2013","unstructured":"Wang B, Li B, Li H (2013) Panda: Public auditing for shared data with efficient user revocation in the cloud. IEEE Trans Serv Comput 8(1):92\u2013106","journal-title":"IEEE Trans Serv Comput"},{"issue":"4","key":"246_CR25","doi-asserted-by":"publisher","first-page":"940","DOI":"10.1109\/TIFS.2016.2646913","volume":"12","author":"Y Wang","year":"2016","unstructured":"Wang Y, Wu Q, Qin B, Shi W, Deng RH, Hu J (2016) Identity-based data outsourcing with comprehensive auditing in clouds. IEEE Trans Inf Forensics Secur 12(4):940\u2013952","journal-title":"IEEE Trans Inf Forensics Secur"},{"issue":"5","key":"246_CR26","doi-asserted-by":"publisher","first-page":"1182","DOI":"10.1109\/TIFS.2017.2656461","volume":"12","author":"Y Wang","year":"2017","unstructured":"Wang Y, Wu Q, Qin B, Tang S, Susilo W (2017) Online\/offline provable data possession. IEEE Trans Inf Forensics Secur 12(5):1182\u20131194","journal-title":"IEEE Trans Inf Forensics Secur"},{"issue":"6","key":"246_CR27","doi-asserted-by":"publisher","first-page":"1929","DOI":"10.1109\/TSC.2019.2892095","volume":"14","author":"H Wang","year":"2019","unstructured":"Wang H, He D, Fu A, Li Q, Wang Q (2019) Provable data possession with outsourced data transfer. IEEE Trans Serv Comput 14(6):1929\u20131939","journal-title":"IEEE Trans Serv Comput"},{"issue":"4","key":"246_CR28","doi-asserted-by":"publisher","first-page":"2704","DOI":"10.1109\/TCC.2020.3045806","volume":"10","author":"F Wang","year":"2020","unstructured":"Wang F, Xu L, Li J, Choo K-KR (2020) Lightweight public\/private auditing scheme for resource-constrained end devices in cloud storage. IEEE Trans Cloud Comput 10(4):2704\u20132716","journal-title":"IEEE Trans Cloud Comput"},{"key":"246_CR29","doi-asserted-by":"publisher","first-page":"2961","DOI":"10.1109\/TIFS.2023.3272772","volume":"18","author":"C Wang","year":"2023","unstructured":"Wang C, Wang D, Duan Y, Tao X (2023) Secure and lightweight user authentication scheme for cloud-assisted internet of things. IEEE Trans Inf Forensics Secur 18:2961\u20132976","journal-title":"IEEE Trans Inf Forensics Secur"},{"issue":"1","key":"246_CR30","doi-asserted-by":"publisher","first-page":"193","DOI":"10.1109\/TDSC.2021.3129512","volume":"20","author":"Q Wang","year":"2023","unstructured":"Wang Q, Wang D, Cheng C, He D (2023) Quantum2fa: efficient quantum-resistant two-factor authentication scheme for mobile devices. IEEE Trans Dependable Secure Comput 20(1):193\u2013208","journal-title":"IEEE Trans Dependable Secure Comput"},{"key":"246_CR31","doi-asserted-by":"crossref","unstructured":"Wu S, Du J (2019) Electronic medical record security sharing model based on blockchain. In: Proceedings of the 3rd international conference on cryptography, security and privacy, pp 13\u201317","DOI":"10.1145\/3309074.3309079"},{"key":"246_CR32","doi-asserted-by":"publisher","first-page":"130","DOI":"10.1016\/j.jss.2015.11.044","volume":"113","author":"G Yang","year":"2016","unstructured":"Yang G, Yu J, Shen W, Su Q, Fu Z, Hao R (2016) Enabling public auditing for shared data in cloud storage supporting identity privacy and traceability. J Syst Softw 113:130\u2013139","journal-title":"J Syst Softw"},{"key":"246_CR33","doi-asserted-by":"crossref","unstructured":"Zhu Y, Wang H, Hu Z, Ahn G-J, Hu H, Yau SS (2011) Dynamic audit services for integrity verification of outsourced storages in clouds. In: Proceedings of the 2011 ACM symposium on applied computing, pp 1550\u20131557","DOI":"10.1145\/1982185.1982514"}],"container-title":["Cybersecurity"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-024-00246-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1186\/s42400-024-00246-4\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1186\/s42400-024-00246-4.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,9,19]],"date-time":"2024-09-19T16:00:36Z","timestamp":1726761636000},"score":1,"resource":{"primary":{"URL":"https:\/\/cybersecurity.springeropen.com\/articles\/10.1186\/s42400-024-00246-4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,9,18]]},"references-count":33,"journal-issue":{"issue":"1","published-online":{"date-parts":[[2024,12]]}},"alternative-id":["246"],"URL":"https:\/\/doi.org\/10.1186\/s42400-024-00246-4","relation":{},"ISSN":["2523-3246"],"issn-type":[{"type":"electronic","value":"2523-3246"}],"subject":[],"published":{"date-parts":[[2024,9,18]]},"assertion":[{"value":"10 January 2024","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"15 April 2024","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"18 September 2024","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"All authors declare no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"53"}}