Next Article in Journal
A Multimodal Feature Fusion-Based Deep Learning Method for Online Fault Diagnosis of Rotating Machinery
Next Article in Special Issue
CS-FCDA: A Compressed Sensing-Based on Fault-Tolerant Data Aggregation in Sensor Networks
Previous Article in Journal
Silicon Photonic Biosensors Using Label-Free Detection
Previous Article in Special Issue
Exploring Risks Transferred from Cloud-Based Information Systems: A Quantitative and Longitudinal Model
Open AccessArticle

Efficient Privacy-Preserving Access Control Scheme in Electronic Health Records System

School of Information Engineering, Chang’an University, Xi’an 710064, China
*
Author to whom correspondence should be addressed.
Sensors 2018, 18(10), 3520; https://doi.org/10.3390/s18103520
Received: 8 September 2018 / Revised: 6 October 2018 / Accepted: 16 October 2018 / Published: 18 October 2018
The sharing of electronic health records (EHR) in cloud servers is an increasingly important development that can improve the efficiency of medical systems. However, there are several concerns focusing on the issues of security and privacy in EHR system. The EHR data contains the EHR owner’s sensitive personal information, if these data are obtained by a malicious user, it will not only cause the leakage of patient’s privacy, but also affect the doctor’s diagnosis. It is a very challenging problem for the EHR owner fully controls over own EHR data as well as preserves the privacy of himself. In this paper, we propose a new privacy-preserving access control (PPAC) scheme for EHR. To achieve fine-grained access control of the EHR data, we utilize the attribute-based signcryption (ABSC) mechanism to signcrypt data based on the access policy for the linear secret sharing schemes. Employing the cuckoo filter to hide the access policy, it could protect the EHR owner’s privacy information. In addition, the security analysis shows that the proposed scheme is provably secure under the decisional bilinear Diffie-Hellman exponent assumption and the computational Diffie-Hellman exponent assumption in the standard model. Furthermore, the performance analysis indicates that the proposed scheme achieves low costs of communication and computation compared with the related schemes, meanwhile preserves the EHR owner’s privacy. Therefore, the proposed scheme is better suited to EHR system. View Full-Text
Keywords: electronic health records; privacy preserving; access control; attribute-based signcryption; cuckoo filter electronic health records; privacy preserving; access control; attribute-based signcryption; cuckoo filter
Show Figures

Figure 1

MDPI and ACS Style

Ming, Y.; Zhang, T. Efficient Privacy-Preserving Access Control Scheme in Electronic Health Records System. Sensors 2018, 18, 3520.

Show more citation formats Show less citations formats
Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Article Access Map by Country/Region

1
Back to TopTop