Enhanced Security of PHR System in Cloud Using Prioritized Level Based Encryption
Cloud Computing has emerged as one of the vital part of the IT industry and it requires users to entrust their valuable data to cloud providers and so, there has been increasing security and privacy concerns on outsourced data. However there are more priv
- PDF / 1,405,773 Bytes
- 13 Pages / 439.363 x 666.131 pts Page_size
- 7 Downloads / 152 Views
Abstract. Cloud Computing has emerged as one of the vital part of the IT industry and it requires users to entrust their valuable data to cloud providers and so, there has been increasing security and privacy concerns on outsourced data. However there are more privacy concerns when the data involved is related to health. The current trend is that all the sectors are now moving to paperless management setup reducing the manual work and increasing the efficiency in both technical and management perspective. Similarly, the traditional health records are now being exported to cloud platform for continuous availability and easier management. This opens up the important problem of security when handling the personal data. To mitigate such security risks, proper cryptographic measures must be taken. Proper delegation and revocation mechanisms must be applied in case of sharing the records. There is a need for categorizing the data based on the sensitivity level of the health records, since encrypting all the records using the same mechanism will not be fair and also paves the way for intruders to decrypt all the records if the algorithm is found. To achieve fine-grained and scalable data control for Personal Health records (PHR), we leverage Prioritized Level Based Encryption (PLBE) techniques to encrypt each patient’s PHR file, the PHR also includes both text and image data like x-rays and scanned images. Therefore separate encryption techniques have to be enforced for text and image data. We also focus on multiple data owner scenario and divide the users in the PHR system into multiple security domains that reduces key management complexity for both owners and users. Keywords: Cloud Computing, Data Security, Personal Health Records, Prioritized Level Based Encryption, Sensitivity Analyzer.
1
Introduction
In recent years, health records have been computerized and digitized; in compliance with the modern technology. Personal Health Record (PHR) contains data related to the patients’ current health conditions, medical images, medication, diagnosis and other private information like security numbers, family medical history etc., G. Martínez Pérez et al. (Eds.): SNDS 2014, CCIS 420, pp. 57–69, 2014. © Springer-Verlag Berlin Heidelberg 2014
58
D. Sangeetha et al.
These PHRs enables the patients and doctors to manage the details easily by making them available online (Ming Li et al. 2013). The PHR owners enjoy the full right of accessing their records anywhere and anytime making storage and retrieval more efficient. The demands of computing infrastructure have been increasing a lot nowadays, and with the advent of cloud computing, these demands can be met, with optimized cost and increased efficiency. This makes more worthy to shift the PHR services into cloud, which will be more advantageous in the aspects of increased storage capacity, reduced operational and installation costs and increased privacy by sharing the records only within a particular organization. Specialized data center needs are eliminated by moving the
Data Loading...
