Granular Data Access Control with a Patient-Centric Policy Update for Healthcare

Khan, Fawad; Khan, Saad; Tahir, Shahzaib; Ahmad, Jawad; Tahir, Hasan; Shah, Syed Aziz

doi:10.3390/s21103556

Cited by 12 publications

(6 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Khan et al [25] proposed a granular data access control model for healthcare that was patient-centric and was updated by patient or by their designated representatives, in 2021. The proposed model used ABE to provide granular access to patient records stored in a cloud-based system.…”

Section: The Authors Stated the New Technique As Combined Attribute B...mentioning

confidence: 99%

“…Based on these attributes, keys are generated to control the access of sensitive data. The schemes at [7], [25], [26], [27], [28], [29], [33] and [34] involved KGC. But, this KGC is not required in proposed scheme.…”

Section: • Attribute Authoritymentioning

confidence: 99%

“…• Encryption /Decryption Type The [26], [27], and [33] used Role/Group based encryption, [25] used CPABE for encryption/ decryption of data. Whereas, [7], [28], and [29] used Identity based encryption.…”

Section: • Attribute Authoritymentioning

confidence: 99%

See 2 more Smart Citations

Secure Sharing of Patient Controlled e-Health Record using an Enhanced Access Control Model with Encryption Based on User Identity

2024

IJACSA

View full text Add to dashboard Cite

Healthcare industry is converting to digital due to the constantly evolving medical needs in the modern digital age. Many researchers have put up models like Ciphertext Policy Attribute Based Encryption (CPABE) to provide security to health records. But, the CPABE-variants failed to give total control of a medical record to its corresponding owner i.e., patient. Recently, Mittal et al. suggested that Identity Based Encryption (IBE) can be used to achieve this. But, this model used a Key Generation Center (KGC) to maintain keys that reduces the trust as the keys may get leaked. To overcome this problem, an enhanced access control model along with data encryption is presented where a separate key generation center is not needed. Because of this, the processing time for setting-up and extraction of keys is minimized. The total processed time of proposed is 74.42ms. But, the same is 92.89ms, 165.42ms, and 218.75ms in case of Boneh-Franklin, Zhang et al., and Yu et al., respectively. Our proposed model also gives a patient the complete control of his/her own health record. The data owner can decide who can access the record (full/ partial) with what access rights (read/ write/ update). The data requestors can be a doctor/ nurse/ insurance providers/ researchers and so on. The requestors are not based on groups or roles but based on an identity that is accepted by the data owner. The proposed model also withstands the key leakage attacks that are due to the key generation center.

show abstract

Section: The Authors Stated the New Technique As Combined Attribute B...mentioning

confidence: 99%

Section: • Attribute Authoritymentioning

confidence: 99%

See 1 more Smart Citation

Secure Sharing of Patient Controlled e-Health Record using an Enhanced Access Control Model with Encryption Based on User Identity

2024

IJACSA

View full text Add to dashboard Cite

show abstract

“…Ultimately it provides transparency and enhances trust [ 86 ]. Besides blockchain technology, a patient-centric interaction policy also helps improve trust among patients [ 87 , 88 ].…”

Section: Metaverse Healthcare Advantages and Challengesmentioning

confidence: 99%

Metaverse in Healthcare Integrated with Explainable AI and Blockchain: Enabling Immersiveness, Ensuring Trust, and Providing Patient Data Security

Ali

Abdullah

Armand

et al. 2023

Sensors

125

View full text Add to dashboard Cite

Digitization and automation have always had an immense impact on healthcare. It embraces every new and advanced technology. Recently the world has witnessed the prominence of the metaverse which is an emerging technology in digital space. The metaverse has huge potential to provide a plethora of health services seamlessly to patients and medical professionals with an immersive experience. This paper proposes the amalgamation of artificial intelligence and blockchain in the metaverse to provide better, faster, and more secure healthcare facilities in digital space with a realistic experience. Our proposed architecture can be summarized as follows. It consists of three environments, namely the doctor’s environment, the patient’s environment, and the metaverse environment. The doctors and patients interact in a metaverse environment assisted by blockchain technology which ensures the safety, security, and privacy of data. The metaverse environment is the main part of our proposed architecture. The doctors, patients, and nurses enter this environment by registering on the blockchain and they are represented by avatars in the metaverse environment. All the consultation activities between the doctor and the patient will be recorded and the data, i.e., images, speech, text, videos, clinical data, etc., will be gathered, transferred, and stored on the blockchain. These data are used for disease prediction and diagnosis by explainable artificial intelligence (XAI) models. The GradCAM and LIME approaches of XAI provide logical reasoning for the prediction of diseases and ensure trust, explainability, interpretability, and transparency regarding the diagnosis and prediction of diseases. Blockchain technology provides data security for patients while enabling transparency, traceability, and immutability regarding their data. These features of blockchain ensure trust among the patients regarding their data. Consequently, this proposed architecture ensures transparency and trust regarding both the diagnosis of diseases and the data security of the patient. We also explored the building block technologies of the metaverse. Furthermore, we also investigated the advantages and challenges of a metaverse in healthcare.

show abstract

“…There has not been enough research done on the patients' capability to set access rules over their private medical information. Since patients have no control over their own sensitive data, they need put their trust in the medical facility and the medical staff to handle it responsibly, one such for example is [18] in which medical record access control having patient-centric policy update is discussed depends on number of attributes involved. The major objective is to eliminate away with the requirement for third authority and instead provide patients complete control over medical data via a user-controlled Healthcare Manager.…”

Section: Motivationmentioning

confidence: 99%

An Efficient Blockchain-based Access Control Framework for IoT-Healthcare System

Raj

Prakash

2023

Preprint

View full text Add to dashboard Cite

Nowadays, the adoption of the Internet of Things (IoT) framework in various healthcare industries has grown rapidly in the recent years. The IoT devices generates huge amount of data which are often sensitive, such as personal health information. It is mandatory to ensure that this data is protected from unauthorized access and use. However, the resource-constrained nature of these devices can make it difficult to implement robust security measures, such as encryption and authentication. Blockchain is a promising approach for the secure management of medical record in immutable way. This problem can be resolved with ciphertext-policy attribute-based encryption, which allows granular access control. The local gateways that are directly interfaced to the Ethereum blockchain-based smart contract platform are utilised to create and implement a distributed and dependable user authentication and access control mechanism for smart based healthcare. In this paper, the use of a DBC-based CP-ABE approach offers a secure and decentralized solution for secure communication and data protection, and providing a more secure and trustworthy system. The proposed system is based on the idea of an Elliptical Curve Cryptography (ECC)-based CP-ABE method reduce complexity and provide data security in remote patient monitoring. On the other hand, blockchain-based smart contracts offer a dynamic, optimal, and self-adjusted access control in smart healthcare system. It lowers the overhead associated with conducting resource-intensive authentication procedures and blockchain communications at IoT devices. The result shows the effectiveness of the proposed scheme in terms of computation and processing time as well as its resistance to several security intrusions over existing schemes.

show abstract

Granular Data Access Control with a Patient-Centric Policy Update for Healthcare

Cited by 12 publications

References 37 publications

Secure Sharing of Patient Controlled e-Health Record using an Enhanced Access Control Model with Encryption Based on User Identity

Secure Sharing of Patient Controlled e-Health Record using an Enhanced Access Control Model with Encryption Based on User Identity

Metaverse in Healthcare Integrated with Explainable AI and Blockchain: Enabling Immersiveness, Ensuring Trust, and Providing Patient Data Security

An Efficient Blockchain-based Access Control Framework for IoT-Healthcare System

Contact Info

Product

Resources

About