Unified fine-grained access control for personal health records in cloud computing

Li, W; Liu, BM; Liu, D; Liu, RP; Wang, P; Luo, S; Ni, W

Unified fine-grained access control for personal health records in cloud computing

Li, W Liu, BM Liu, D Liu, RP

Wang, P Luo, S Ni, W

Permalink

Publication Type:: Journal Article
Citation:: IEEE Journal of Biomedical and Health Informatics, 2019, 23 (3), pp. 1278 - 1289
Issue Date:: 2019-05-01

Closed Access

	Filename	Description	Size
	08395362.pdf	Published Version	2.29 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Li, W	en_US
dc.contributor.author	Liu, BM	en_US
dc.contributor.author	Liu, D	en_US
dc.contributor.author	Liu, RP https://orcid.org/0000-0001-7001-6305	en_US
dc.contributor.author	Wang, P	en_US
dc.contributor.author	Luo, S	en_US
dc.contributor.author	Ni, W https://orcid.org/0000-0002-4933-594X	en_US
dc.date.issued	2019-05-01	en_US
dc.identifier.citation	IEEE Journal of Biomedical and Health Informatics, 2019, 23 (3), pp. 1278 - 1289	en_US
dc.identifier.issn	2168-2194	en_US
dc.identifier.uri	http://hdl.handle.net/10453/131606
dc.description.abstract	© 2013 IEEE. Attribute-based encryption has been a promising encryption technology to secure personal health records (PHRs) sharing in cloud computing. PHRs consist of the patient data often collected from various sources including hospitals and general practice centres. Different patients' access policies have a common access sub-policy. In this paper, we propose a novel attribute-based encryption scheme for fine-grained and flexible access control to PHRs data in cloud computing. The scheme generates shared information by the common access sub-policy, which is based on different patients' access policies. Then, the scheme combines the encryption of PHRs from different patients. Therefore, both time consumption of encryption and decryption can be reduced. Medical staff require varying levels of access to PHRs. The proposed scheme can also support multi-privilege access control so that medical staff can access the required level of information while maximizing patient privacy. Through implementation and simulation, we demonstrate that the proposed scheme is efficient in terms of time. Moreover, we prove the security of the proposed scheme based on security of the ciphertext-policy attribute-based encryption scheme.	en_US
dc.relation.ispartof	IEEE Journal of Biomedical and Health Informatics	en_US
dc.relation.isbasedon	10.1109/JBHI.2018.2850304	en_US
dc.rights	info:eu-repo/semantics/closedAccess
dc.subject.mesh	Humans	en_US
dc.subject.mesh	Algorithms	en_US
dc.subject.mesh	Computer Security	en_US
dc.subject.mesh	Information Storage and Retrieval	en_US
dc.subject.mesh	Health Records, Personal	en_US
dc.subject.mesh	Electronic Health Records	en_US
dc.subject.mesh	Cloud Computing	en_US
dc.title	Unified fine-grained access control for personal health records in cloud computing	en_US
dc.type	Journal Article
utslib.citation.volume	3	en_US
utslib.citation.volume	23	en_US
utslib.for	1005 Communications Technologies	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
pubs.organisational-group	/University of Technology Sydney/Strength - GBDTC - Global Big Data Technologies
utslib.copyright.status	closed_access	*
pubs.issue	3	en_US
pubs.publication-status	Published	en_US
pubs.volume	23	en_US

Abstract:

© 2013 IEEE. Attribute-based encryption has been a promising encryption technology to secure personal health records (PHRs) sharing in cloud computing. PHRs consist of the patient data often collected from various sources including hospitals and general practice centres. Different patients' access policies have a common access sub-policy. In this paper, we propose a novel attribute-based encryption scheme for fine-grained and flexible access control to PHRs data in cloud computing. The scheme generates shared information by the common access sub-policy, which is based on different patients' access policies. Then, the scheme combines the encryption of PHRs from different patients. Therefore, both time consumption of encryption and decryption can be reduced. Medical staff require varying levels of access to PHRs. The proposed scheme can also support multi-privilege access control so that medical staff can access the required level of information while maximizing patient privacy. Through implementation and simulation, we demonstrate that the proposed scheme is efficient in terms of time. Moreover, we prove the security of the proposed scheme based on security of the ciphertext-policy attribute-based encryption scheme.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/131606