Scalable privacy-preserving data analytics for IoMT via FHE and zk-SNARK-enabled edge aggregation
摘要
The Internet of Medical Things (IoMT) enables real-time health monitoring and intelligent clinical decision-making by continuously collecting and processing sensitive physiological data from wearable, implantable, and edge-connected devices. However, this data aggregation paradigm introduces critical privacy and security challenges, including data leakage, aggregator misbehavior, and adversarial attacks, while existing frameworks often fail to simultaneously ensure confidentiality, verifiability, and efficiency. To address these limitations, we propose MedGuard, a novel end-to-end secure data aggregation framework for IoMT that synergistically integrates Fully Homomorphic Encryption (FHE) based on the CKKS scheme and Groth16 zero-knowledge Succinct Non-Interactive Arguments of Knowledge (zk-SNARKs). MedGuard enables healthcare providers to perform complex analytical queries, such as statistical analysis, anomaly detection, and trend forecasting, directly on encrypted data without decryption, ensuring compliance with privacy regulations. By allowing edge nodes to generate cryptographic proofs of correct computation and enabling cloud-based verification, MedGuard eliminates reliance on trusted intermediaries and mitigates insider threats. Our comprehensive evaluation, conducted in a high-fidelity OMNeT++ 6.0.1 simulation environment with 1,000 IoMT devices, 100 edge nodes, and an Amazon EC2 c5.4xlarge cloud server, uses a hybrid dataset combining real-world and GMM-augmented synthetic data. Results show that MedGuard achieves an end-to-end latency of 64.8 ms, a 13.3% improvement over state-of-the-art baselines, communication efficiency of 1.465 GB/s, per-query energy consumption of 1.489 mJ, and sustained throughputs of 1,200 packets/s, 120 aggregates/s, and 1,200 queries/s. These performance gains, combined with a robust