Efficient Fine-Grained Access Control for Secure Personal Health Records in Cloud Computing

In the medical industry, it is critical to ensure the confidentiality of patientsâ€™ personal health records when storing and managing them. Before cloud computing surfaced, heath providers used local servers and hard drives to store their records and data. As cloud computing has been becoming more prominent many healthcare providers are using the cloud to store and manage their sensitive data. This journal compares and investigates two different access control models, in particular Role-Based Access Control and Attribute-Based Access Control, to validate the confidentiality of data when storing and managing personal health records on cloud services. The comparative analysis of these access control models is done to identify possible inefficiency and privacy restrictions in these two access control based models. In addition, in this journal we propose a new access control model, which we refer to as Role-Attribute-Based-Encryption Access Control (RABE), by combining some of the best aspects of both RBAC and ABAC in order to improve data privacy on cloud systems used in healthcare.

Download Full-text

HealthPass: Fine-Grained Access Control to Portable Personal Health Records

2010 24th IEEE International Conference on Advanced Information Networking and Applications ◽

10.1109/aina.2010.176 ◽

2010 ◽

Cited By ~ 11

Author(s):

Robert Steele ◽

Kyongho Min

Keyword(s):

Access Control ◽

Personal Health Records ◽

Personal Health ◽

Health Records ◽

Fine Grained

Download Full-text

Attribute Set-Based Boolean Keyword Search over Encrypted Personal Health Records

Security and Communication Networks ◽

10.1155/2021/9023141 ◽

2021 ◽

Vol 2021 ◽

pp. 1-13

Author(s):

Yu Lin ◽

Lingling Xu ◽

Wanhua Li ◽

Zhiwei Sun

Keyword(s):

Cloud Computing ◽

Access Control ◽

Large Scale ◽

Keyword Search ◽

Personal Health Record ◽

High Sensitivity ◽

Personal Health Records ◽

Personal Health ◽

Health Records ◽

Cloud Servers

A personal health record (PHR) is an electronic application which enables patients to collect and share their health information. With the development of cloud computing, many PHR services have been outsourced to cloud servers. Cloud computing makes it easier for patients to manage their personal health records and makes it easier for doctors and researchers to share and access this information. However, due to the high sensitivity of PHR, a series of security protections are needed to protect them, such as encryption and access control. In this article, we propose an attribute set-based Boolean keyword search scheme, which can realize fine-grained access control and Boolean keyword search over encrypted PHR. Compared with the existing attribute-based searchable encryption, our solution can not only improve the flexibility in specifying access policies but also perform Boolean keyword search, which can meet the needs of large-scale PHR users. Furthermore, we simulate our scheme, and the experimental results show that our scheme is practical for PHR systems in cloud computing.

Download Full-text

Personal health records sharing scheme based on attribute based signcryption with data integrity verifiable

Journal of Computer Security ◽

10.3233/jcs-210045 ◽

2021 ◽

pp. 1-34

Author(s):

Isaac Amankona Obiri ◽

Qi Xia ◽

Hu Xia ◽

Eric Affum ◽

Smahi Abla ◽

...

Keyword(s):

Access Control ◽

Keyword Search ◽

Data Integrity ◽

Personal Health Records ◽

Personal Health ◽

Health Records ◽

Fine Grained ◽

Sharing Scheme ◽

Query Result ◽

Cloud Server

The distribution of personal health records (PHRs) via a cloud server is a promising platform as it reduces the cost of data maintenance. Nevertheless, the cloud server is semi-trusted and can expose the patients’ PHRs to unauthorized third parties for financial gains or compromise the query result. Therefore, ensuring the integrity of the query results and privacy of PHRs as well as realizing fine-grained access control are critical key issues when PHRs are shared via cloud computing. Hence, we propose new personal health records sharing scheme with verifiable data integrity based on B+ tree data structure and attribute-based signcryption scheme to achieve data privacy, query result integrity, unforgeability, blind keyword search, and fine-grained access control.

Download Full-text