{"title":"Multi-part file encryption for electronic health records cloud","authors":"X. Hei, Shan Lin","doi":"10.1145/2633651.2637473","DOIUrl":null,"url":null,"abstract":"The rapid advancements of mobile technologies promote many applications for public health, such as continuous health monitoring. The inherent mobility of these applications imposes new security and privacy challenges. Since mobile devices usually use public network, such as WiFi, to transfer patient data, patient data is exposed to various security breaches. Moreover, patient data stored on cloud servers are also exposed to malicious attacks. Therefore, it's crucial to encrypt patient data for secure transfer and storage. To address this problem, we present a new access control model for managing patient data. Our approach utilizes a key server for key assignment, which associates a key with each user based on his specific role in medical applications. The doctors, nurses, family members, and insurance companies of a patient can access different sets of patient data from cloud given their keys. Different from existing attribute based encryption, which protects data from inappropriate disclosure for individual files, our design provides a fine-grained access control scheme that protects any specified part of a file. Our role-based access control provides high security, accuracy, and update flexibility for patient data management. Performance evaluations of our solution are stated in the paper.","PeriodicalId":150900,"journal":{"name":"International Workshop on Pervasive Wireless Healthcare","volume":"18 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-08-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Workshop on Pervasive Wireless Healthcare","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2633651.2637473","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3
Abstract
The rapid advancements of mobile technologies promote many applications for public health, such as continuous health monitoring. The inherent mobility of these applications imposes new security and privacy challenges. Since mobile devices usually use public network, such as WiFi, to transfer patient data, patient data is exposed to various security breaches. Moreover, patient data stored on cloud servers are also exposed to malicious attacks. Therefore, it's crucial to encrypt patient data for secure transfer and storage. To address this problem, we present a new access control model for managing patient data. Our approach utilizes a key server for key assignment, which associates a key with each user based on his specific role in medical applications. The doctors, nurses, family members, and insurance companies of a patient can access different sets of patient data from cloud given their keys. Different from existing attribute based encryption, which protects data from inappropriate disclosure for individual files, our design provides a fine-grained access control scheme that protects any specified part of a file. Our role-based access control provides high security, accuracy, and update flexibility for patient data management. Performance evaluations of our solution are stated in the paper.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
