A rights management approach to protection of privacy in a cloud of electronic health records

Jafari, Mohammad; Sheppard, Nicholas Paul

doi:10.1145/2046631.2046637

Cited by 18 publications

(10 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The complexity of the scheme presented in [14] is (1) as only one bilinear pairing occurs at the server in that technique during decryption phase. However, for the scheme presented in [27] [29], the decryption time complexity is dependent on the intersection of the role attributes in the user set and the universal set of the role attributes.…”

Section: Complexity Analysismentioning

confidence: 99%

SeSPHR: A Methodology for Secure Sharing of Personal Health Records in the Cloud

Ali

Abbas

Khan

et al. 2021

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

The widespread acceptance of cloud based services in the healthcare sector has resulted in cost effective and convenient exchange of Personal Health Records (PHRs) among several participating entities of the e-Health systems. Nevertheless, storing the confidential health information to cloud servers is susceptible to revelation or theft and calls for the development of methodologies that ensure the privacy of the PHRs. Therefore, we propose a methodology called SeSPHR for secure sharing of the PHRs in the cloud. The SeSPHR scheme ensures patient-centric control on the PHRs and preserves the confidentiality of the PHRs. The patients store the encrypted PHRs on the un-trusted cloud servers and selectively grant access to different types of users on different portions of the PHRs. A semi-trusted proxy called Setup and Re-encryption Server (SRS) is introduced to set up the public/private key pairs and to produce the re-encryption keys. Moreover, the methodology is secure against insider threats and also enforces a forward and backward access control. Furthermore, we formally analyze and verify the working of SeSPHR methodology through the High Level Petri Nets (HLPN). Performance evaluation regarding time consumption indicates that the SeSPHR methodology has potential to be employed for securely sharing the PHRs in the cloud.

show abstract

Section: Complexity Analysismentioning

confidence: 99%

SeSPHR: A Methodology for Secure Sharing of Personal Health Records in the Cloud

Ali

Abbas

Khan

et al. 2021

IEEE Trans. Cloud Comput.

View full text Add to dashboard Cite

show abstract

“…Jafari et al introduced an approach which gives the patient the possibility of controlling his EHRs. This approach limits the patient to managing records authored by other parties, such as physicians and nurses [22]. On the other hand, the cloud service provider cannot retrieve the records in plaintext format.…”

Section: Related Workmentioning

confidence: 99%

Security and privacy preserving approaches in the eHealth clouds with disaster recovery plan

Sahi

Lai

2016

Computers in Biology and Medicine

View full text Add to dashboard Cite

“…One issue is that licences can leak information about the enterprise data; and in order to overcome this issue, the Platform for Privacy Preferences Language (P3P) is used to communicate enterprise privacy policies to consumers and enable them to easily construct data licenses [32]. DRM concept can also be extended to the health domain in order to protect the privacy of patient's electronic health records stored in a cloud storage [22]. Despite all the similarities between the two notions, there are some subtle and important differences between them, which will be outlined below.…”

Section: Our Workmentioning

confidence: 99%

Broadcast encryption with dealership

Gritti

Susilo

Plantard

et al. 2015

Int. J. Inf. Secur.

View full text Add to dashboard Cite

In this paper, we introduce a new cryptographic primitive called broadcast encryption with dealership. This notion, which has never been discussed in the cryptography literature, is applicable to many realistic broadcast services, for example subscription-based television service. Specifically, the new primitive enables a dealer to bulk buy the access to some products (e.g., TV channels) from the broadcaster, and hence, it will enable the dealer to resell the contents to the subscribers with a cheaper rate. Therefore, this creates business opportunity model for the dealer. We highlight the security consideration in such a scenario and capture the security requirements in the security model. Subsequently, we present a concrete scheme, which is proven secure under the decisional bilinear Diffie-Hellman exponent and the Diffie-Hellman exponent assumptions. Abstract In this paper, we introduce a new cryptographic primitive called Broadcast Encryption with Dealership (BED). This notion, which has never been discussed in the cryptography literature, is applicable to many realistic broadcast services, for example subscription-based television service. Specifically, the new primitive enables a dealer to bulk buy the access to some products (e.g. TV channels) from the broadcaster and hence, it will enable the dealer to resell the contents to the subscribers with a cheaper rate. Therefore, this creates business opportunity model for the dealer. We highlight the security consideration in such a scenario, and capture the security requirements in the security model. Subsequently, we present a concrete scheme, which is proven secure under the Decision Bilinear Diffie-Hellman Exponent (DBDHE) and the Diffie-Hellman Exponent (DHE) assumptions.

show abstract

A rights management approach to protection of privacy in a cloud of electronic health records

Cited by 18 publications

References 8 publications

SeSPHR: A Methodology for Secure Sharing of Personal Health Records in the Cloud

SeSPHR: A Methodology for Secure Sharing of Personal Health Records in the Cloud

Security and privacy preserving approaches in the eHealth clouds with disaster recovery plan

Broadcast encryption with dealership

Contact Info

Product

Resources

About