A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud
Autor: | Silvia D. Olabarriaga, Antonis Michalas, Eugene Frimpong, Alexandros Bakas, Marcela T. de Oliveira, Henk A. Marquering, Adrien E. Groot |
---|---|
Přispěvatelé: | Graduate School, Epidemiology and Data Science, Neurology, ACS - Atherosclerosis & ischemic syndromes, Amsterdam Neuroscience - Brain Imaging, Radiology and Nuclear Medicine, APH - Methodology, Tampere University, Computing Sciences |
Rok vydání: | 2020 |
Předmět: |
Security analysis
Computer science Access control Cloud computing 02 engineering and technology Encryption Computer security computer.software_genre Secure cloud storage InformationSystems_GENERAL 020204 information systems Ciphertext 0202 electrical engineering electronic engineering information engineering Electrical and Electronic Engineering Electronic medical records health care economics and organizations Protocol (science) business.industry 213 Electronic automation and communications engineering electronics Medical record 3. Good health e-health privacy Ciphertext-policy attribute-based encryption 020201 artificial intelligence & image processing Emergency care Attribute-based encryption Break-glass access business computer |
Zdroj: | Annals of Telecommunications Annales des Telecommunications/Annals of Telecommunications, 75(3-4), 103-119. Springer Paris |
ISSN: | 1958-9395 0003-4347 |
Popis: | In emergency care, fast and efficient treatment is vital. The availability of Electronic Medical Records (EMR) allows healthcare professionals to access a patient’s data promptly, which facilitates the decision-making process and saves time by not repeating medical procedures. Unfortunately, the complete EMR of a patient is often not available during an emergency situation to all treatment teams. Cloud services emerge as a promising solution to this problem by allowing ubiquitous access to information. However, EMR storage and sharing through clouds raise several concerns about security and privacy. To this end, we propose a protocol through which all treatment teams involved in the emergency care can securely decrypt relevant data from the patient’s EMR and add new information about the patient’s status. Furthermore, our protocol ensures that treatment teams will only access the patient’s EMR for the period during which the patient is under their care. Finally, we present a formal security analysis of our protocol and some initial experimental results. |
Databáze: | OpenAIRE |
Externí odkaz: |