A Trust-based Access Control Scheme for e-Health Cloud

Abstract

With the emergence of Internet of Things (IoT) and the growth of cloud computing technology, Electronic Health systems are integrated as a significant and active domain, which enables the development of medical practices with an affordable cost. Thus, the questions about preserving the security and privacy of the sensitive user's information are raised. Hence, in order to convince users to move their sensitive health records to cloud networks, a strong and secure access control schemes should be employed to protect their data. In fact, access control schemes play a key role in the protection of e-Health records, by which several policies will coexist to grant security and privacy in a network. That is why, one of the essential targets in this work is to retain a secure access to health cloud services. Thus, this paper offers a certificate-based access control strategy, where we introduce an access method for e-health cloud that is mainly based on trust assessment. The main features of the proposed scheme are the integration of trust concept with the monitoring process in order to ensure more security in access control. We more explained the methodology of the proposed approach through appropriate evaluation results, which improves system security and performance by minimizing the time spent to have permissions to access services and optimizing the overall system resource utilization.