Lagrange interpolation-driven access control mechanism: Towards secure and privacy-preserving fusion of personal health records

Abstract

A personal health record (PHR) contains health information on a specific individual and incorporates medical data from cloud databases (e.g., diagnosis and treatment records). Because of the use of medical applications on smart mobile devices, security mechanisms must be implemented. Secure access control enables convenient information sharing under secure conditions. To effectively implement secure access control for PHRs in cloud databases, we propose a Lagrange-interpolation-driven access control mechanism (LIDACM) that ensures the security and confidentiality of healthcare information. The LIDACM strictly controls privacy settings and access authority; it also prevents unauthorised individuals from accessing PHRs, thereby increasing the difficulty of hacking the database and stealing private medical information. The present analysis indicates that the LIDACM effectively protects PHR information and enables secure information sharing among multiple medical institutions. Because a user’s private key is generated randomly through the proposed mechanism and no relationships exist between private keys, cracking the private key system is difficult. The LIDACM supports dynamic modifications (e.g., user addition and deletion and document or user inquiry) and can deliver files to specific users when they use a private key. Each user has specific access rights pertaining to retrieval of confidential data. The LIDACM helps guarantee the privacy and security of personal medical information within an information-sharing system.