Delegated Authorization Framework for EHR Services Using Attribute-Based Encryption
نویسندگان
چکیده
Medical organizations find it challenging to adopt cloud-based Electronic Health Records (EHR) services due the risk of data breaches and resulting compromise patient data. Existing authorization models follow a patient-centric approach for EHR management, where responsibility authorizing access is handled at patients end. This creates significant overhead who must authorize every their health record. not practical given that multiple personnel are typically involved in providing care may always be state provide this authorization. Hence there need develop proper delegation mechanism safe, secure easy use Service management. We present novel, centralized, attribute-based uses Attribute Based Encryption (ABE) allows delegated records. transfers service management from medical organization EHRs authority providers.
منابع مشابه
Attribute-based Encryption for Attribute-based Authentication, Authorization, Storage, and Transmission in Distributed Storage Systems
Attribute-based encryption is a form of encryption which offers the capacity to encrypt data such that it is only accessible to individuals holding a satisfactory configuration of attributes. As cloud and distributed computing become more pervasive in both private and public spheres, attribute-based encryption holds potential to address the issue of achieving secure authentication, authorizatio...
متن کاملTrust Based Authorization Framework for Grid Services
Grid computing allows sharing of services and resources distributed over geographically dispersed, heterogeneous, autonomous administrative domains. As a domain generally has no idea about the trustworthiness of other domains, it may hesitate in accessing shared services and resources provided by other domains. Accessing resources and services from untrusted domains may pose dangerous consequen...
متن کاملAttribute-based Access Control for Cloud-based Electronic Health Record (EHR) Systems
Electronic health record (EHR) system facilitates integrating patients' medical information and improves service productivity. However, user access to patient data in a privacy-preserving manner is still challenging problem. Many studies concerned with security and privacy in EHR systems. Rezaeibagha and Mu [1] have proposed a hybrid architecture for privacy-preserving accessing patient records...
متن کاملAn Authorization Framework for Database Systems
Today, data plays an essential role in all levels of human life, from personal cell phones to medical, educational, military and government agencies. In such circumstances, the rate of cyber-attacks is also increasing. According to official reports, data breaches exposed 4.1 billion records in the first half of 2019. An information system consists of several components, which one of the most im...
متن کاملArchitectural Framework for Web Services Authorization
This paper proposes an authorization architecture for Web services. It describes the architectural framework, the administration and runtime aspects of our architecture and its components for secure authorization of Web services as well as the support for the management of authorization information. The paper also describes authorization algorithms required to authorize a Web service client. Th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IEEE Transactions on Services Computing
سال: 2021
ISSN: ['1939-1374', '2372-0204']
DOI: https://doi.org/10.1109/tsc.2019.2917438