Aquesta és una còpia de la versió author's final draft d'un article publicat a la revista Multimedia tools and applications.La publicació final està disponible a Springer a través de http://dx.doi.org/10.1007/s11042- 013-1829-6 This is a copy of the author 's final draft version of an article published in the journal Multimedia tools and applications.The final publication is available at Springer via http://dx.doi.org/10.1007/s11042-013-1829-6Article publicat / Published article: Xhafa, F., Li, Jingwei, Zhao, G., Li, Jin, Chen, X., Wong, D.S., F. Abstract With the development of cloud computing, electronic health record (EHR) system has appeared in the form of patient-centric, in which patients store their personal health records (PHRs) at a remote cloud server and selectively share them with physicians for convenient medical care. Although the newly emerged form has many advantages over traditional client-server model, it inevitably introduces patients' concerns on the privacy of their PHRs due to the fact that cloud servers are very likely to be in a different trusted domain from that of the patients.In this paper, aiming at allowing for efficient storing and sharing PHRs and also eliminating patients' worries about PHR privacy, we design a secure cloud-based EHR system, which guarantees security and privacy of medical data stored in the cloud, relying on cryptographic primitive but not the full trust over cloud servers. Based on our proposed basic EHR system, we provide several extensions including adding searchability, supporting revocation functionality and enabling efficient local decryption, which fills the gap between theoretical proposal and practical application.