ETPAC: ECC based trauma plight access control for healthcare Internet of Things

Abstract

Healthcare Industry experiences a rapid change in the traditional way of providing Medical Services to Patients with the revolution of the Internet of Things (IoT) and the Digitization of services. The Healthcare IoT (HIoT) provides Hospitals to render excellent services to Patients at an optimized cost. The Healthcare IoT must ensure not to disrupt or tamper with sensitive Medical Information of the Patient in addition to the continuous availability of data and services. The proposed framework is designed for secure emergency access to Patient data over Healthcare IoT. Normally, the Doctor obtains the Shared Key directly from the Patient to access the Medical data. In Trauma Plight, a Patient pre-shares an Attribute based Key with a set of Secondary Authority in Trauma Plight (SATP) and access permission to the Doctor for utilizing Emergency Key from SATP. The Doctor retrieves the medical record by using the Attribute based key and the Emergency-key to medicate the Patient in Trauma. The proposed ECC model based Trauma Plight Access Control (ETPAC) reduces the Shared Secret Key generation time, Encryption, Decryption Time, Cipher-Text size with low Secret Key Size. The performance analysis indicates the enhanced security with reduced time complexity of Computation and Communication in ETPAC compared to Lightweight Break-glass Access Control, an Efficient Policy Hiding Attribute Based Access Control, and an Efficient and Robust Attribute based Encryption Supporting Access Policy Hiding in Healthcare IoT.