Showing total 15 results

1. Patient-Controlled Attribute-Based Encryption for Secure Electronic Health Records System.

Author

Eom, Jieun, Lee, Dong, and Lee, Kwangsu

Subjects

ALGORITHMS, IDENTIFICATION, INFORMATION storage & retrieval systems, MEDICAL databases, MEDICAL ethics, MEDICAL records, MEDICAL record access control, PATIENTS, LEGAL status of patients, PRIVACY, SYSTEMS design, HEALTH Insurance Portability & Accountability Act, DATA security

Abstract

In recent years, many countries have been trying to integrate electronic health data managed by each hospital to offer more efficient healthcare services. Since health data contain sensitive information of patients, there have been much research that present privacy preserving mechanisms. However, existing studies either require a patient to perform various steps to secure the data or restrict the patient to exerting control over the data. In this paper, we propose patient-controlled attribute-based encryption, which enables a patient (a data owner) to control access to the health data and reduces the operational burden for the patient, simultaneously. With our method, the patient has powerful control capability of his/her own health data in that he/she has the final say on the access with time limitation. In addition, our scheme provides emergency medical services which allow the emergency staffs to access the health data without the patient's permission only in the case of emergencies. We prove that our scheme is secure under cryptographic assumptions and analyze its efficiency from the patient's perspective. [ABSTRACT FROM AUTHOR]

Published

2016

2. Distributed Denial of Service Attack Source Detection Using Efficient Traceback Technique (ETT) in Cloud-Assisted Healthcare Environment.

Author

Latif, Rabia, Abbas, Haider, Latif, Seemab, and Masood, Ashraf

Subjects

ALGORITHMS, COMPUTER simulation, MEDICAL ethics, PRIVACY, WIRELESS communications, ACCESS to information, INTERNET protocols, DATA security, CLOUD computing, ELECTRONIC health records

Abstract

Security and privacy are the first and foremost concerns that should be given special attention when dealing with Wireless Body Area Networks (WBANs). As WBAN sensors operate in an unattended environment and carry critical patient health information, Distributed Denial of Service (DDoS) attack is one of the major attacks in WBAN environment that not only exhausts the available resources but also influence the reliability of information being transmitted. This research work is an extension of our previous work in which a machine learning based attack detection algorithm is proposed to detect DDoS attack in WBAN environment. However, in order to avoid complexity, no consideration was given to the traceback mechanism. During traceback, the challenge lies in reconstructing the attack path leading to identify the attack source. Among existing traceback techniques, Probabilistic Packet Marking (PPM) approach is the most commonly used technique in conventional IP- based networks. However, since marking probability assignment has significant effect on both the convergence time and performance of a scheme, it is not directly applicable in WBAN environment due to high convergence time and overhead on intermediate nodes. Therefore, in this paper we have proposed a new scheme called Efficient Traceback Technique (ETT) based on Dynamic Probability Packet Marking (DPPM) approach and uses MAC header in place of IP header. Instead of using fixed marking probability, the proposed scheme uses variable marking probability based on the number of hops travelled by a packet to reach the target node. Finally, path reconstruction algorithms are proposed to traceback an attacker. Evaluation and simulation results indicate that the proposed solution outperforms fixed PPM in terms of convergence time and computational overhead on nodes. [ABSTRACT FROM AUTHOR]

Published

2016

3. Efficient Secure-Channel Free Public Key Encryption with Keyword Search for EMRs in Cloud Storage.

Author

Guo, Lifeng and Yau, Wei-Chuen

Subjects

ALGORITHMS, DATA encryption, KEYBOARDS (Electronics), MEDICAL ethics, PRIVACY, DATA security, CLOUD computing, ELECTRONIC health records

Abstract

Searchable encryption is an important cryptographic primitive that enables privacy-preserving keyword search on encrypted electronic medical records (EMRs) in cloud storage. Efficiency of such searchable encryption in a medical cloud storage system is very crucial as it involves client platforms such as smartphones or tablets that only have constrained computing power and resources. In this paper, we propose an efficient secure-channel free public key encryption with keyword search (SCF-PEKS) scheme that is proven secure in the standard model. We show that our SCF-PEKS scheme is not only secure against chosen keyword and ciphertext attacks (IND-SCF-CKCA), but also secure against keyword guessing attacks (IND-KGA). Furthermore, our proposed scheme is more efficient than other recent SCF-PEKS schemes in the literature. [ABSTRACT FROM AUTHOR]

Published

2015

4. A Generic Construction of Integrated Secure-Channel Free PEKS and PKE and its Application to EMRs in Cloud Storage.

Author

Suzuki, Tatsuya, Emura, Keita, and Ohigashi, Toshihiro

Subjects

ALGORITHMS, DATA encryption, MEDICAL ethics, PRIVACY, QUALITY assurance, DATA security, CLOUD computing, ELECTRONIC health records

Abstract

To provide a search functionality for encrypted data, public key encryption with keyword search (PEKS) has been widely recognized. In actual usage, a PEKS scheme should be employed with a PKE scheme since PEKS itself does not support the decryption of data. Since a naive composition of a PEKS ciphertext and a PKE ciphertext does not provide CCA security, several attempts have been made to integrate PEKS and PKE in a joint CCA manner (PEKS/PKE for short). In this paper, we further extend these works by integrating secure-channel free PEKS (SCF-PEKS) and PKE, which we call SCF-PEKS/PKE, where no secure channel is required to send trapdoors. We give a formal security definition of SCF-PEKS/PKE in a joint CCA manner, and propose a generic construction of SCF-PEKS/PKE based on anonymous identity-based encryption, tag-based encryption, and one-time signature. We also strengthen the current consistency definition according to the secure-channel free property, and show that our construction is strongly consistent if the underlying IBE provides unrestricted strong collision-freeness which is defined in this paper. We also show that such an IBE scheme can be constructed by employing the Abdalla et al. transformations (TCC 2010/J. Cryptology 2018). Finally, as an application of SCF-PEKS/PKE, we strengthen the security of encrypted Electronic Medical Record (EMR) system proposed by Guo and Yau (J. Medical Sys. 2015). [ABSTRACT FROM AUTHOR]

Published

2019

5. A Generic Construction of Integrated Secure-Channel Free PEKS and PKE and its Application to EMRs in Cloud Storage

Author

Toshihiro Ohigashi, Tatsuya Suzuki, and Keita Emura

Subjects

Scheme (programming language), Theoretical computer science, 020205 medical informatics, Computer science, Medicine (miscellaneous), Health Informatics, Cryptography, 02 engineering and technology, Encryption, Public-key cryptography, Consistency (database systems), Health Information Management, Ciphertext, 0202 electrical engineering, electronic engineering, information engineering, Electronic Health Records, Humans, Computer Security, Secure channel, computer.programming_language, business.industry, Cloud Computing, business, Cloud storage, computer, Algorithms, Confidentiality, Information Systems

Abstract

To provide a search functionality for encrypted data, public key encryption with keyword search (PEKS) has been widely recognized. In actual usage, a PEKS scheme should be employed with a PKE scheme since PEKS itself does not support the decryption of data. Since a naive composition of a PEKS ciphertext and a PKE ciphertext does not provide CCA security, several attempts have been made to integrate PEKS and PKE in a joint CCA manner (PEKS/PKE for short). In this paper, we further extend these works by integrating secure-channel free PEKS (SCF-PEKS) and PKE, which we call SCF-PEKS/PKE, where no secure channel is required to send trapdoors. We give a formal security definition of SCF-PEKS/PKE in a joint CCA manner, and propose a generic construction of SCF-PEKS/PKE based on anonymous identity-based encryption, tag-based encryption, and one-time signature. We also strengthen the current consistency definition according to the secure-channel free property, and show that our construction is strongly consistent if the underlying IBE provides unrestricted strong collision-freeness which is defined in this paper. We also show that such an IBE scheme can be constructed by employing the Abdalla et al. transformations (TCC 2010/J. Cryptology 2018). Finally, as an application of SCF-PEKS/PKE, we strengthen the security of encrypted Electronic Medical Record (EMR) system proposed by Guo and Yau (J. Medical Sys. 2015).

Published

2019

6. A Security Framework for Nationwide Health Information Exchange based on Telehealth Strategy.

Author

Zaidan, B., Haiqi, Ahmed, Zaidan, A., Abdulnabi, Mohamed, Kiah, M., and Muzamel, Hussaen

Subjects

ALGORITHMS, ELECTRONIC data interchange, INFORMATION storage & retrieval systems, MEDICAL databases, MEDICAL ethics, PRIVACY, TELEMEDICINE, DATA security, CLOUD computing, ELECTRONIC health records

Abstract

This study focuses on the situation of health information exchange (HIE) in the context of a nationwide network. It aims to create a security framework that can be implemented to ensure the safe transmission of health information across the boundaries of care providers in Malaysia and other countries. First, a critique of the major elements of nationwide health information networks is presented from the perspective of security, along with such topics as the importance of HIE, issues, and main approaches. Second, a systematic evaluation is conducted on the security solutions that can be utilized in the proposed nationwide network. Finally, a secure framework for health information transmission is proposed within a central cloud-based model, which is compatible with the Malaysian telehealth strategy. The outcome of this analysis indicates that a complete security framework for a global structure of HIE is yet to be defined and implemented. Our proposed framework represents such an endeavor and suggests specific techniques to achieve this goal. [ABSTRACT FROM AUTHOR]

Published

2015

7. IFHDS: Intelligent Framework for Securing Healthcare BigData

Author

Ayman El-Sayed, Ahmed El-Mahalawy, Gamal Attiya, Ezz El-Din Hemdan, and Youssef M. Essa

Subjects

Big Data, Computer science, Big data, Medicine (miscellaneous), Information Storage and Retrieval, Health Informatics, Cloud computing, Permission, Encryption, Computer security, computer.software_genre, Masking (Electronic Health Record), Health informatics, Health Information Management, Electronic Health Records, Humans, Computer Security, Data processing, business.industry, Cloud Computing, business, computer, Cloud storage, Algorithms, Confidentiality, Information Systems

Abstract

Big data has become one of the most imperative technologies for collecting, handling and analysing enormous volumes of data in a high-performance environment. Enterprise healthcare organizations needs high compute power for the large volume of sensitive data, as well as large storage for storing both data and results, preferably in the cloud. However, security and privacy of patient data have become a critical issue that restricts many healthcare services from using cloud services to their optimal level. Therefore, this issue has limited healthcare organizations from migrating patient data to a cloud storage, because the cloud operators have chance to access sensitive data without the owner’s permission. This paper proposes an intelligent security system called Intelligent Framework for Healthcare Data Security (IFHDS). IFHDS enables to secure and process large-scale data using column-based approach with less impact on the performance of data processing. The intelligent framework intends masking personal data and to encrypt sensitive data only. The proposed IFHDS splits sensitive data into multiple parts according to sensitivity level, where each part is stored separately over distributed cloud storage. Splitting data based on sensitivity level prevents cloud provider to break complete record of data if succeeds to decrypt part of data. The experimental results confirm that the proposed system secure the sensitive patient data with an acceptable computation time compared to recent security approaches.

Published

2018

8. Patient-Controlled Attribute-Based Encryption for Secure Electronic Health Records System

Author

Dong Hoon Lee, Kwangsu Lee, and Jieun Eom

Subjects

Information privacy, 020205 medical informatics, Internet privacy, Medicine (miscellaneous), Health Informatics, Cryptography, 02 engineering and technology, Computer security, computer.software_genre, Encryption, Masking (Electronic Health Record), Health informatics, Health Information Management, Health care, 0202 electrical engineering, electronic engineering, information engineering, Medicine, Electronic Health Records, Humans, Computer Security, 020203 distributed computing, Patient Access to Records, business.industry, Cloud Computing, Information sensitivity, Attribute-based encryption, business, computer, Algorithms, Confidentiality, Information Systems

Abstract

In recent years, many countries have been trying to integrate electronic health data managed by each hospital to offer more efficient healthcare services. Since health data contain sensitive information of patients, there have been much research that present privacy preserving mechanisms. However, existing studies either require a patient to perform various steps to secure the data or restrict the patient to exerting control over the data. In this paper, we propose patient-controlled attribute-based encryption, which enables a patient (a data owner) to control access to the health data and reduces the operational burden for the patient, simultaneously. With our method, the patient has powerful control capability of his/her own health data in that he/she has the final say on the access with time limitation. In addition, our scheme provides emergency medical services which allow the emergency staffs to access the health data without the patient's permission only in the case of emergencies. We prove that our scheme is secure under cryptographic assumptions and analyze its efficiency from the patient's perspective.

Published

2016

9. An Efficient Searchable Encryption Against Keyword Guessing Attacks for Sharable Electronic Medical Records in Cloud-based System

Author

Xicheng Lu, Peixin Chen, Jinshu Su, and Yilun Wu

Subjects

Scheme (programming language), Health Information Exchange, Computer science, Medicine (miscellaneous), Health Informatics, Cloud computing, 02 engineering and technology, Computer security, computer.software_genre, Encryption, Health informatics, InformationSystems_GENERAL, Health Information Management, 0202 electrical engineering, electronic engineering, information engineering, Overhead (computing), Electronic Health Records, Secure channel, Computer Security, computer.programming_language, Guard (information security), Database, business.industry, 020206 networking & telecommunications, Cloud Computing, Costs and Cost Analysis, 020201 artificial intelligence & image processing, business, computer, Cloud storage, Algorithms, Confidentiality, Information Systems

Abstract

Preserving the privacy of electronic medical records (EMRs) is extremely important especially when medical systems adopt cloud services to store patients' electronic medical records. Considering both the privacy and the utilization of EMRs, some medical systems apply searchable encryption to encrypt EMRs and enable authorized users to search over these encrypted records. Since individuals would like to share their EMRs with multiple persons, how to design an efficient searchable encryption for sharable EMRs is still a very challenge work. In this paper, we propose a cost-efficient secure channel free searchable encryption (SCF-PEKS) scheme for sharable EMRs. Comparing with existing SCF-PEKS solutions, our scheme reduces the storage overhead and achieves better computation performance. Moreover, our scheme can guard against keyword guessing attack, which is neglected by most of the existing schemes. Finally, we implement both our scheme and a latest medical-based scheme to evaluate the performance. The evaluation results show that our scheme performs much better performance than the latest one for sharable EMRs.

Published

2016

10. Emergency Healthcare Process Automation Using Mobile Computing and Cloud Services

Author

M. Poulymenopoulou, George Vassilacopoulos, and Flora Malamateniou

Subjects

Emergency Medical Services, Service (systems architecture), Knowledge management, business.industry, Computer science, Emergency Medical Service Communication Systems, Interoperability, Mobile computing, Medicine (miscellaneous), Health Informatics, Cloud computing, Health informatics, Health Information Management, Data exchange, Computers, Handheld, Health care, Information system, Electronic Health Records, Humans, business, Wireless Technology, Algorithms, Computer Security, Confidentiality, Information Systems

Abstract

Emergency care is basically concerned with the provision of pre-hospital and in-hospital medical and/or paramedical services and it typically involves a wide variety of interdependent and distributed activities that can be interconnected to form emergency care processes within and between Emergency Medical Service (EMS) agencies and hospitals. Hence, in developing an information system for emergency care processes, it is essential to support individual process activities and to satisfy collaboration and coordination needs by providing readily access to patient and operational information regardless of location and time. Filling this information gap by enabling the provision of the right information, to the right people, at the right time fosters new challenges, including the specification of a common information format, the interoperability among heterogeneous institutional information systems or the development of new, ubiquitous trans-institutional systems. This paper is concerned with the development of an integrated computer support to emergency care processes by evolving and cross-linking institutional healthcare systems. To this end, an integrated EMS cloud-based architecture has been developed that allows authorized users to access emergency case information in standardized document form, as proposed by the Integrating the Healthcare Enterprise (IHE) profile, uses the Organization for the Advancement of Structured Information Standards (OASIS) standard Emergency Data Exchange Language (EDXL) Hospital Availability Exchange (HAVE) for exchanging operational data with hospitals and incorporates an intelligent module that supports triaging and selecting the most appropriate ambulances and hospitals for each case.

Published

2011

11. Med-PPPHIS: Blockchain-Based Personal Healthcare Information System for National Physique Monitoring and Scientific Exercise Guiding.

Author

Zhou, Tong, Li, Xiaofeng, and Zhao, He

Subjects

ALGORITHMS, CONSENSUS (Social sciences), DATABASE management, ELECTRONIC data interchange, INFORMATION retrieval, INFORMATION storage & retrieval systems, MEDICAL databases, INFORMATION technology, MEDICAL informatics, MANAGEMENT of medical records, RESEARCH funding, USER interfaces, SOFTWARE architecture, DATA security, CLOUD computing, ELECTRONIC health records

Abstract

The dissemination of electronic medical data among professional personnel has been perceived to be an important breakthrough for the discovery of new technologies and therapies for curing diseases. However, in the current medical data management, it is difficult to share medical data due to the fragmentation of medical data and the lack of effective sharing methods. On the other hand, the security of medical data is difficult to protect because the centralized data storage is vulnerable to attack and tampering. Therefore, we propose a model called Med-PPPHIS, which consists of a permission-less blockchain and a permissioned blockchain, named Med-DLattice, to serve the management of user's personal health information and form a chained protection mechanism for medical data. Med-DLattice features Directed Acyclic Graph (DAG) structure, where each account updates its Account-DAG asynchronously to other unrelated accounts. The Med-DLattice nodes can reach an efficient consensus with proposed DPoS-Quorum algorithm. Based on this model, by converting the medical data into on-chain tokens, a safe and efficient channel for data circulation is established, while the privacy of data is secured. We implement a prototype of Med-PPPHIS and introduce a blockchain-based closed-loop method for chronic disease management, which initially applies the model to national physique monitoring in Anhui Province, China. The performance of the model is evaluated by simulating 500 nodes on 25 AliCloud ECS virtual machines. Experimental result shows that Med-PPPHIS has low latency and high throughput, and the security analysis shows that the model is able to prevent Sybil attacks, DDoS attacks, etc. [ABSTRACT FROM AUTHOR]

Published

2019

12. Efficient secure-channel free public key encryption with keyword search for EMRs in cloud storage

Author

Wei-Chuen Yau and Lifeng Guo

Subjects

Computer science, Data_MISCELLANEOUS, Medicine (miscellaneous), Information Storage and Retrieval, Health Informatics, Computer security, computer.software_genre, Encryption, Health Information Management, Electronic Health Records, Humans, Computer Security, business.industry, Client-side encryption, Cloud Computing, Probabilistic encryption, 40-bit encryption, 56-bit encryption, Attribute-based encryption, On-the-fly encryption, business, computer, Cloud storage, Algorithms, Confidentiality, Information Systems

Abstract

Searchable encryption is an important cryptographic primitive that enables privacy-preserving keyword search on encrypted electronic medical records (EMRs) in cloud storage. Efficiency of such searchable encryption in a medical cloud storage system is very crucial as it involves client platforms such as smartphones or tablets that only have constrained computing power and resources. In this paper, we propose an efficient secure-channel free public key encryption with keyword search (SCF-PEKS) scheme that is proven secure in the standard model. We show that our SCF-PEKS scheme is not only secure against chosen keyword and ciphertext attacks (IND-SCF-CKCA), but also secure against keyword guessing attacks (IND-KGA). Furthermore, our proposed scheme is more efficient than other recent SCF-PEKS schemes in the literature.

Published

2014

13. Privacy preserving index for encrypted electronic medical records

Author

Yi-Jheng Lin, Kuo-Chang Chen, Yu-Chi Chen, and Gwoboa Horng

Subjects

Scheme (programming language), Information retrieval, business.industry, Computer science, Privacy software, Medicine (miscellaneous), Health Informatics, Cloud computing, Bloom filter, Encryption, Health Information Management, Index (publishing), Electronic Health Records, Humans, Confidentiality, business, Semantic security, computer, Algorithms, Computer Security, Information Systems, computer.programming_language

Abstract

With the development of electronic systems, privacy has become an important security issue in real-life. In medical systems, privacy of patients' electronic medical records (EMRs) must be fully protected. However, to combine the efficiency and privacy, privacy preserving index is introduced to preserve the privacy, where the EMR can be efficiently accessed by this patient or specific doctor. In the literature, Goh first proposed a secure index scheme with keyword search over encrypted data based on a well-known primitive, Bloom filter. In this paper, we propose a new privacy preserving index scheme, called position index (P-index), with keyword search over the encrypted data. The proposed index scheme is semantically secure against the adaptive chosen keyword attack, and it also provides flexible space, lower false positive rate, and search privacy. Moreover, it does not rely on pairing, a complicate computation, and thus can search over encrypted electronic medical records from the cloud server efficiently.

Published

2013

14. Secure Dynamic access control scheme of PHR in cloud computing

Author

Tzu-Ching Lin, Chin-Sheng Chen, Chia-Hui Liu, Tzer-Long Chen, Jian-Guo Bau, and Tzer-Shyong Chen

Subjects

Computer science, Information access, Medicine (miscellaneous), Information Storage and Retrieval, Health Informatics, Cloud computing, Access control, Encryption, Computer security, computer.software_genre, Access to Information, Health Information Management, Electronic Health Records, Key management, Information exchange, Computer Security, Internet, business.industry, Information technology, Health Records, Personal, The Internet, business, computer, Algorithms, Confidentiality, Information Systems

Abstract

With the development of information technology and medical technology, medical information has been developed from traditional paper records into electronic medical records, which have now been widely applied. The new-style medical information exchange system "personal health records (PHR)" is gradually developed. PHR is a kind of health records maintained and recorded by individuals. An ideal personal health record could integrate personal medical information from different sources and provide complete and correct personal health and medical summary through the Internet or portable media under the requirements of security and privacy. A lot of personal health records are being utilized. The patient-centered PHR information exchange system allows the public autonomously maintain and manage personal health records. Such management is convenient for storing, accessing, and sharing personal medical records. With the emergence of Cloud computing, PHR service has been transferred to storing data into Cloud servers that the resources could be flexibly utilized and the operation cost can be reduced. Nevertheless, patients would face privacy problem when storing PHR data into Cloud. Besides, it requires a secure protection scheme to encrypt the medical records of each patient for storing PHR into Cloud server. In the encryption process, it would be a challenge to achieve accurately accessing to medical records and corresponding to flexibility and efficiency. A new PHR access control scheme under Cloud computing environments is proposed in this study. With Lagrange interpolation polynomial to establish a secure and effective PHR information access scheme, it allows to accurately access to PHR with security and is suitable for enormous multi-users. Moreover, this scheme also dynamically supports multi-users in Cloud computing environments with personal privacy and offers legal authorities to access to PHR. From security and effectiveness analyses, the proposed PHR access scheme in Cloud computing environments is proven flexible and secure and could effectively correspond to real-time appending and deleting user access authorization and appending and revising PHR records.

Published

2012

15. A secure EHR system based on hybrid clouds

Author

Jinn-Ke Jan, Jun-Chao Lu, and Yu-Yi Chen

Subjects

Internet, Patient Access to Records, Knowledge management, business.industry, Medicine (miscellaneous), Information Storage and Retrieval, Health Informatics, Cloud computing, Health informatics, Masking (Electronic Health Record), Medical services, Health Information Management, Electronic health record, Information and Communications Technology, Health care, ComputingMilieux_COMPUTERSANDSOCIETY, Academic community, Medicine, Electronic Health Records, Humans, business, Algorithms, Computer Security, Confidentiality, Information Systems

Abstract

Consequently, application services rendering remote medical services and electronic health record (EHR) have become a hot topic and stimulating increased interest in studying this subject in recent years. Information and communication technologies have been applied to the medical services and healthcare area for a number of years to resolve problems in medical management. Sharing EHR information can provide professional medical programs with consultancy, evaluation, and tracing services can certainly improve accessibility to the public receiving medical services or medical information at remote sites. With the widespread use of EHR, building a secure EHR sharing environment has attracted a lot of attention in both healthcare industry and academic community. Cloud computing paradigm is one of the popular healthIT infrastructures for facilitating EHR sharing and EHR integration. In this paper, we propose an EHR sharing and integration system in healthcare clouds and analyze the arising security and privacy issues in access and management of EHRs.

Published

2011