TY - JOUR
T1 - MuEOC
T2 - Efficient SGX-Based Multi-Key Homomorphic Outsourcing Computation for E-Health System
AU - Wang, Yisong
AU - Zhou, Jun
AU - Cao, Zhenfu
AU - Dong, Xiaolei
AU - Choo, Kim Kwang Raymond
N1 - Publisher Copyright:
© 2025 IEEE.
PY - 2025
Y1 - 2025
N2 - While techniques such as Homomorphic Encryption (HE) and Intel Software Guard Extensions (SGX) have been leveraged to secure outsourced electronic health record (EHR) computation, there are a number of known limitations (e.g., performance bottlenecks, lack of desired functionalities, or the reliance on a trusted third party). To address these challenging issues, this paper proposes MuEOC, an SGX-based multi-key homomorphic outsourcing computation scheme without a trusted third party. MuEOC is designed to support arbitrary depth multiplication and multi-key setup. In our approach, we first propose an SGX-assisted fully homomorphic encryption scheme (XFHE) under the randomized AGCD assumption. This allows us to replace costly bootstrapping with re-encryption in the enclave, and enable key-switching and Galois automorphism. Using XFHE as a building block, we construct a high-performance multi-key outsourcing computing protocol without the trusted third-party setup. Leveraging SGX, the MuEOC incorporates efficient sub-protocols of secure ciphertext transformation, secure polynomial evaluation, secure inner product, and secure non-linear function evaluation. We also present formal security proof which shows that our proposal guarantees the privacy of input EHR data and medical analysis results under the semi-honest model. Finally, experimental results demonstrate the outstanding efficiency of MuEOC.
AB - While techniques such as Homomorphic Encryption (HE) and Intel Software Guard Extensions (SGX) have been leveraged to secure outsourced electronic health record (EHR) computation, there are a number of known limitations (e.g., performance bottlenecks, lack of desired functionalities, or the reliance on a trusted third party). To address these challenging issues, this paper proposes MuEOC, an SGX-based multi-key homomorphic outsourcing computation scheme without a trusted third party. MuEOC is designed to support arbitrary depth multiplication and multi-key setup. In our approach, we first propose an SGX-assisted fully homomorphic encryption scheme (XFHE) under the randomized AGCD assumption. This allows us to replace costly bootstrapping with re-encryption in the enclave, and enable key-switching and Galois automorphism. Using XFHE as a building block, we construct a high-performance multi-key outsourcing computing protocol without the trusted third-party setup. Leveraging SGX, the MuEOC incorporates efficient sub-protocols of secure ciphertext transformation, secure polynomial evaluation, secure inner product, and secure non-linear function evaluation. We also present formal security proof which shows that our proposal guarantees the privacy of input EHR data and medical analysis results under the semi-honest model. Finally, experimental results demonstrate the outstanding efficiency of MuEOC.
KW - Cloud computing security
KW - e-health system
KW - homomorphic encryption
KW - intel SGX
KW - multi-key outsourcing computation
UR - https://www.scopus.com/pages/publications/85207149682
U2 - 10.1109/TDSC.2024.3476483
DO - 10.1109/TDSC.2024.3476483
M3 - 文章
AN - SCOPUS:85207149682
SN - 1545-5971
VL - 22
SP - 2103
EP - 2118
JO - IEEE Transactions on Dependable and Secure Computing
JF - IEEE Transactions on Dependable and Secure Computing
IS - 3
ER -