Abstract
Electronic Health Data (EHD) is an emerging health information exchange model that facilitates healthcare providers and patients to efficiently store and share their private healthcare information from any place and at any time as per demand. Generally, Cloud services provide the infrastructure by reducing the cost of storing, processing and updating information with improved efficiency and quality. However, the privacy of Electronic Health Records (EHR) is a significant hurdle while outsourcing private health data in the cloud because there is a higher peril of leaking health information to unauthorized parties. Several existing techniques are able to analyse the security and privacy issues associated with e-healthcare services. These methods are designed for single database, or databases, with an authentication centre and thus cannot adequately protect the data from insider attacks. Therefore, this research study mainly focusses on how to ensure the patient privacy while sharing the sensitive data between same or different organisations as well as healthcare providers in a cloud environment. This paper proposes a multi-layer access control mechanism named MLAC Model to construct a secure and privacy-preserving EHR system that enables patients to share their data with stakeholders. In this paper, we use a Dual layer access control model named Pseudo-Role Attribute based access control (PR-ABAC) mechanism that integrates attributes with roles for the secure sharing of EHR between multiple collaborators. The proposed framework also uses the concept of Provenance to ensure the Integrity of patient data. This work is expected to provide a foundation for developing security solutions against cyber-attacks, and thus contribute to the robustness of healthcare information sharing environments.
Highlights
Electronic Health Data (EHD) is a systematic collection of electronic health information about individual patients or populations [1]
We propose a novel Pseudo-Role Attribute based access control mechanism (PR-ABAC) which is a multilayer mechanism that combines the advantages of both Role based access control (RBAC) mechanism[24] and Attribute based access control (ABAC) [28]
We are planning to evaluate the performance of our framework in terms of System Time Overhead, Number of Pseudoroles to generate, Number of policies required for efficient electronic health record access, Computational complexity and cost required for the implementation
Summary
EHD ( known as electronic health records or computerised patient records) is a systematic collection of electronic health information about individual patients or populations [1]. Such records include a whole range of data including demographics, medical. Patient with chronic conditions and associated sensitive information need to be securely shared and accessed by healthcare providers. This project will focus on identifying the most appropriate method to share private information between multiple healthcare providers in the patients’ care team and the patient and their family or carers in the cloud environment
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
