Loading…
Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data
The booming in cloud and IoT technologies has accelerated the growth of healthcare system. The IoT devices monitor the patient's health, and upload collected data as Electronic Medical Records (EMRs) to the cloud for storage and sharing. Outsourcing EMRs to the cloud introduce new security and...
Saved in:
| Published in: | Advances in electrical and computer engineering 2017-05, Vol.17 (2), p.31-38 |
|---|---|
| Main Authors: | , |
| Format: | Article |
| Language: | English |
| Subjects: | |
| Citations: | Items that this one cites Items that cite this one |
| Online Access: | Get full text |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| cited_by | cdi_FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073 |
|---|---|
| cites | cdi_FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073 |
| container_end_page | 38 |
| container_issue | 2 |
| container_start_page | 31 |
| container_title | Advances in electrical and computer engineering |
| container_volume | 17 |
| creator | SMITHAMOL, M. B. RAJESWARI, S. |
| description | The booming in cloud and IoT technologies has accelerated the growth of healthcare system. The IoT devices monitor the patient's health, and upload collected data as Electronic Medical Records (EMRs) to the cloud for storage and sharing. Outsourcing EMRs to the cloud introduce new security and privacy challenges. In this paper, we proposed a novel architecture ensuring security and privacy for the outsourced health records. The proposed model uses partially ordered set (POSET) for constructing the group based access structure and Ciphertext-Policy Attribute-Based Encryption (CP-ABE) to provide fine-grained EMR access control. The modified group based CP-ABE (G-CP-ABE) minimizes the computational overhead by reducing the number of leaf nodes in the access tree. Also, the proposed G-CP-ABE framework merges symmetric encryption and CP-ABE scheme to minimize the overall encryption time. As a result, G-CP-ABE can be used to monitor health conditions even from a resource constrained IoT device. The performance analysis shows the efficiency of the proposed model, making it suitable for practical use. |
| doi_str_mv | 10.4316/AECE.2017.02005 |
| format | article |
| fullrecord | <record><control><sourceid>proquest_doaj_</sourceid><recordid>TN_cdi_doaj_primary_oai_doaj_org_article_2ceae65ca93c4925a06ea161105df67c</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><doaj_id>oai_doaj_org_article_2ceae65ca93c4925a06ea161105df67c</doaj_id><sourcerecordid>2417781098</sourcerecordid><originalsourceid>FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073</originalsourceid><addsrcrecordid>eNo9kF1rwjAUhsPYYOK83m1h19V8p72Uzk1BmLDtOqQniat0jUuq4L9f1bGr88HDew4PQo8ETzkjcjZfVIspxURNMcVY3KARKTjPlcT4duhFQXPFubhHk5SaGnOuaEGZHKHV8lTHxmbvoT30TegyH2K2ic3RwCnfRJdcPDbdNpsDuJSyKnR9DO2FWjrT9l9gosueTW8e0J03bXKTvzpGny-Lj2qZr99eV9V8nQPnrM-BUG4BCqJ8beuSMxA1985hNww1I94yZpVhUhIQwtdAGFOGWFp4LjBWbIxW11wbzE7vY_Nt4kkH0-jLIsStNrFvoHWagjNOCjAlA15SYbB0hkhCsLBeKhiynq5Z-xh-Di71ehcOsRve15QTpQqCy2KgZlcKYkgpOv9_lWB91q_P-vVZv77oZ799hXb3</addsrcrecordid><sourcetype>Open Website</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2417781098</pqid></control><display><type>article</type><title>Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data</title><source>IngentaConnect Journals</source><creator>SMITHAMOL, M. B. ; RAJESWARI, S.</creator><creatorcontrib>SMITHAMOL, M. B. ; RAJESWARI, S.</creatorcontrib><description>The booming in cloud and IoT technologies has accelerated the growth of healthcare system. The IoT devices monitor the patient's health, and upload collected data as Electronic Medical Records (EMRs) to the cloud for storage and sharing. Outsourcing EMRs to the cloud introduce new security and privacy challenges. In this paper, we proposed a novel architecture ensuring security and privacy for the outsourced health records. The proposed model uses partially ordered set (POSET) for constructing the group based access structure and Ciphertext-Policy Attribute-Based Encryption (CP-ABE) to provide fine-grained EMR access control. The modified group based CP-ABE (G-CP-ABE) minimizes the computational overhead by reducing the number of leaf nodes in the access tree. Also, the proposed G-CP-ABE framework merges symmetric encryption and CP-ABE scheme to minimize the overall encryption time. As a result, G-CP-ABE can be used to monitor health conditions even from a resource constrained IoT device. The performance analysis shows the efficiency of the proposed model, making it suitable for practical use.</description><identifier>ISSN: 1582-7445</identifier><identifier>EISSN: 1844-7600</identifier><identifier>DOI: 10.4316/AECE.2017.02005</identifier><language>eng</language><publisher>Suceava: Stefan cel Mare University of Suceava</publisher><subject>Access control ; Algorithms ; cloud ; Cloud computing ; Data collection ; data privacy ; Efficiency ; Electronic health records ; electronic medical records ; Encryption ; Health care ; Health care industry ; Health care policy ; Health services ; Internet of Things ; Medical device industry ; Medical equipment ; Medical records ; Optimization techniques ; Outsourcing ; Privacy ; Security ; Security management</subject><ispartof>Advances in electrical and computer engineering, 2017-05, Vol.17 (2), p.31-38</ispartof><rights>Copyright Stefan cel Mare University of Suceava 2017</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073</citedby><cites>FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,776,780,27903,27904</link.rule.ids></links><search><creatorcontrib>SMITHAMOL, M. B.</creatorcontrib><creatorcontrib>RAJESWARI, S.</creatorcontrib><title>Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data</title><title>Advances in electrical and computer engineering</title><description>The booming in cloud and IoT technologies has accelerated the growth of healthcare system. The IoT devices monitor the patient's health, and upload collected data as Electronic Medical Records (EMRs) to the cloud for storage and sharing. Outsourcing EMRs to the cloud introduce new security and privacy challenges. In this paper, we proposed a novel architecture ensuring security and privacy for the outsourced health records. The proposed model uses partially ordered set (POSET) for constructing the group based access structure and Ciphertext-Policy Attribute-Based Encryption (CP-ABE) to provide fine-grained EMR access control. The modified group based CP-ABE (G-CP-ABE) minimizes the computational overhead by reducing the number of leaf nodes in the access tree. Also, the proposed G-CP-ABE framework merges symmetric encryption and CP-ABE scheme to minimize the overall encryption time. As a result, G-CP-ABE can be used to monitor health conditions even from a resource constrained IoT device. The performance analysis shows the efficiency of the proposed model, making it suitable for practical use.</description><subject>Access control</subject><subject>Algorithms</subject><subject>cloud</subject><subject>Cloud computing</subject><subject>Data collection</subject><subject>data privacy</subject><subject>Efficiency</subject><subject>Electronic health records</subject><subject>electronic medical records</subject><subject>Encryption</subject><subject>Health care</subject><subject>Health care industry</subject><subject>Health care policy</subject><subject>Health services</subject><subject>Internet of Things</subject><subject>Medical device industry</subject><subject>Medical equipment</subject><subject>Medical records</subject><subject>Optimization techniques</subject><subject>Outsourcing</subject><subject>Privacy</subject><subject>Security</subject><subject>Security management</subject><issn>1582-7445</issn><issn>1844-7600</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2017</creationdate><recordtype>article</recordtype><sourceid>DOA</sourceid><recordid>eNo9kF1rwjAUhsPYYOK83m1h19V8p72Uzk1BmLDtOqQniat0jUuq4L9f1bGr88HDew4PQo8ETzkjcjZfVIspxURNMcVY3KARKTjPlcT4duhFQXPFubhHk5SaGnOuaEGZHKHV8lTHxmbvoT30TegyH2K2ic3RwCnfRJdcPDbdNpsDuJSyKnR9DO2FWjrT9l9gosueTW8e0J03bXKTvzpGny-Lj2qZr99eV9V8nQPnrM-BUG4BCqJ8beuSMxA1985hNww1I94yZpVhUhIQwtdAGFOGWFp4LjBWbIxW11wbzE7vY_Nt4kkH0-jLIsStNrFvoHWagjNOCjAlA15SYbB0hkhCsLBeKhiynq5Z-xh-Di71ehcOsRve15QTpQqCy2KgZlcKYkgpOv9_lWB91q_P-vVZv77oZ799hXb3</recordid><startdate>20170501</startdate><enddate>20170501</enddate><creator>SMITHAMOL, M. B.</creator><creator>RAJESWARI, S.</creator><general>Stefan cel Mare University of Suceava</general><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>8FD</scope><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>AFKRA</scope><scope>ARAPS</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>JQ2</scope><scope>L6V</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>M7S</scope><scope>P5Z</scope><scope>P62</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope><scope>DOA</scope></search><sort><creationdate>20170501</creationdate><title>Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data</title><author>SMITHAMOL, M. B. ; RAJESWARI, S.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2017</creationdate><topic>Access control</topic><topic>Algorithms</topic><topic>cloud</topic><topic>Cloud computing</topic><topic>Data collection</topic><topic>data privacy</topic><topic>Efficiency</topic><topic>Electronic health records</topic><topic>electronic medical records</topic><topic>Encryption</topic><topic>Health care</topic><topic>Health care industry</topic><topic>Health care policy</topic><topic>Health services</topic><topic>Internet of Things</topic><topic>Medical device industry</topic><topic>Medical equipment</topic><topic>Medical records</topic><topic>Optimization techniques</topic><topic>Outsourcing</topic><topic>Privacy</topic><topic>Security</topic><topic>Security management</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>SMITHAMOL, M. B.</creatorcontrib><creatorcontrib>RAJESWARI, S.</creatorcontrib><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics & Communications Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central</collection><collection>Advanced Technologies & Aerospace Database (1962 - current)</collection><collection>AUTh Library subscriptions: ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central</collection><collection>SciTech Premium Collection (Proquest) (PQ_SDU_P3)</collection><collection>ProQuest Computer Science Collection</collection><collection>ProQuest Engineering Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>Engineering Database</collection><collection>ProQuest advanced technologies & aerospace journals</collection><collection>ProQuest Advanced Technologies & Aerospace Collection</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering collection</collection><collection>DOAJ Directory of Open Access Journals</collection><jtitle>Advances in electrical and computer engineering</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>SMITHAMOL, M. B.</au><au>RAJESWARI, S.</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data</atitle><jtitle>Advances in electrical and computer engineering</jtitle><date>2017-05-01</date><risdate>2017</risdate><volume>17</volume><issue>2</issue><spage>31</spage><epage>38</epage><pages>31-38</pages><issn>1582-7445</issn><eissn>1844-7600</eissn><abstract>The booming in cloud and IoT technologies has accelerated the growth of healthcare system. The IoT devices monitor the patient's health, and upload collected data as Electronic Medical Records (EMRs) to the cloud for storage and sharing. Outsourcing EMRs to the cloud introduce new security and privacy challenges. In this paper, we proposed a novel architecture ensuring security and privacy for the outsourced health records. The proposed model uses partially ordered set (POSET) for constructing the group based access structure and Ciphertext-Policy Attribute-Based Encryption (CP-ABE) to provide fine-grained EMR access control. The modified group based CP-ABE (G-CP-ABE) minimizes the computational overhead by reducing the number of leaf nodes in the access tree. Also, the proposed G-CP-ABE framework merges symmetric encryption and CP-ABE scheme to minimize the overall encryption time. As a result, G-CP-ABE can be used to monitor health conditions even from a resource constrained IoT device. The performance analysis shows the efficiency of the proposed model, making it suitable for practical use.</abstract><cop>Suceava</cop><pub>Stefan cel Mare University of Suceava</pub><doi>10.4316/AECE.2017.02005</doi><tpages>8</tpages><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 1582-7445 |
| ispartof | Advances in electrical and computer engineering, 2017-05, Vol.17 (2), p.31-38 |
| issn | 1582-7445 1844-7600 |
| language | eng |
| recordid | cdi_doaj_primary_oai_doaj_org_article_2ceae65ca93c4925a06ea161105df67c |
| source | IngentaConnect Journals |
| subjects | Access control Algorithms cloud Cloud computing Data collection data privacy Efficiency Electronic health records electronic medical records Encryption Health care Health care industry Health care policy Health services Internet of Things Medical device industry Medical equipment Medical records Optimization techniques Outsourcing Privacy Security Security management |
| title | Hybrid Solution for Privacy-Preserving Access Control for Healthcare Data |
| url | http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-21T12%3A30%3A00IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_doaj_&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Hybrid%20Solution%20for%20Privacy-Preserving%20Access%20Control%20for%20Healthcare%20Data&rft.jtitle=Advances%20in%20electrical%20and%20computer%20engineering&rft.au=SMITHAMOL,%20M.%20B.&rft.date=2017-05-01&rft.volume=17&rft.issue=2&rft.spage=31&rft.epage=38&rft.pages=31-38&rft.issn=1582-7445&rft.eissn=1844-7600&rft_id=info:doi/10.4316/AECE.2017.02005&rft_dat=%3Cproquest_doaj_%3E2417781098%3C/proquest_doaj_%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-c443t-c124dcc817fbdb943c5b4fee0eb94b31fd33d7a3661c55fbc1337a1d28f450073%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_pqid=2417781098&rft_id=info:pmid/&rfr_iscdi=true |