Design for a secure interoperable cloud-based Personal Health Record service

George Hsieh*, Rong-Jaye Chen

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

22 Scopus citations

Abstract

Adoption of Personal Health Record (PHR) applications has been slow due to consumers' concerns in security, privacy and trust, and the challenges in interoperability and integration with other Electronic Medical Record (EMR) systems. This paper proposes the design for a secure interoperable cloud-based PHR service. To enhance the portability and interoperability, we use the Continuity of Care Document (CCD) for both storing and exchanging the PHR information for an individual. To provide self-protecting security for each CCD instance, we apply a broad spectrum of security mechanisms-including access control, encryption, and digital signature-in an integrated, embedded, and fine-grained manner, based on open standards such as eXtensible Access Control Markup Language, XML Encryption, XML Signature, and XML Key Management Specification. To support patient-controlled encryption and privacy-preserving keyword search, we use ciphertext-policy attribute-based encryption and public-key encryption with keyword search schemes, again in an integrated, embedded, and fine-grained manner.

Original languageEnglish
Title of host publicationCloudCom 2012 - Proceedings
Subtitle of host publication2012 4th IEEE International Conference on Cloud Computing Technology and Science
Pages472-479
Number of pages8
DOIs
StatePublished - 1 Dec 2012
Event2012 4th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2012 - Taipei, Taiwan
Duration: 3 Dec 20126 Dec 2012

Publication series

NameCloudCom 2012 - Proceedings: 2012 4th IEEE International Conference on Cloud Computing Technology and Science

Conference

Conference2012 4th IEEE International Conference on Cloud Computing Technology and Science, CloudCom 2012
Country/TerritoryTaiwan
CityTaipei
Period3/12/126/12/12

Keywords

  • XML based security standards
  • attribute-based encryption
  • cloud computing
  • information security
  • personal health record

Fingerprint

Dive into the research topics of 'Design for a secure interoperable cloud-based Personal Health Record service'. Together they form a unique fingerprint.

Cite this