Toward an Privacy Protection Based on Access Control Model in Hybrid Cloud for Healthcare Systems

Son, Ha Xuan; Nguyễn, Minh Hoàng; Vo, Hong Khanh

doi:10.1007/978-3-030-20005-3_8

Cited by 43 publications

(18 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To improve the security of the system, the authors build an anonymous data sharing environment and encrypt the patient's personal data before storing them on cloud servers. Similarly, Du et al [1] and Son et al [24] used medical centers (i.e., hospitals) to store data and manage access and those hospitals. Specifically, they categorize two types of medical data protection policies: global for all data shared outside of the medical center, and local, which is accessed only by individuals at the medical center.…”

Section: Related Workmentioning

confidence: 99%

Towards a Blockchain-based Medical Test Results Management System

Trong¹,

Vo²,

Huong³

et al. 2022

IJACSA

View full text Add to dashboard Cite

The role of test results in the diagnosis and treatment of patients' diseases at medical facilities cannot be ignored. Patients must have a series of tests that are related to their symptoms. This can be repeated as many times as possible, depending on the type of disease and treatment. Seriously, in the cases where the patients lose their medical test record (i.e., patient's medical history), the diagnosis is difficult due to the lack of information about the medical history as well as the symptoms/complications in the previous treatments. Storing this treatment information in medical centers can address risks related to user failure (e.g., loss of medical test records and wet/fire documents). However, users face a bit of difficulty when they change to other medical centers for medical examination and treatment since the data is stored locally, and difficult to share this with others. Current solutions focus on empowering users (i.e., patients) to share medical information related to disease treatment. However, the main barrier to these approaches is the knowledge of the users. They must embrace some background in terms of the technologies, risks, and rights they may share with treatment facilities. To solve this problem, we propose a Blockchain-based medical test result management system where all information is stored and verified by the stakeholder. The data will be stored decentralized and updated throughout the treatment process. We implement a proof-of-concept based on the Hyperledger Fabric platform. To demonstrate the effectiveness of the proposed system, we conduct evaluation methods based on three main tasks of the system: initializing, accessing, and updating data on six different scenarios (i.e., increasing in size of processing requests). The evaluation based on Hyperledger Caliper helped us to have a deeper analysis of the proposed model.

show abstract

Section: Related Workmentioning

confidence: 99%

Towards a Blockchain-based Medical Test Results Management System

Trong¹,

Vo²,

Huong³

et al. 2022

IJACSA

View full text Add to dashboard Cite

show abstract

“…There are several blockchain-based approaches in terms of healthcare/blood donation management systems. For example, Du et al [17] and Son et al [18] used medical centers (i.e., hospitals) to store data and manage access and those hospitals. Specifically, they categorize two types of medical data protection policies: global for all data shared outside of the medical center, and local, which is accessed only by individuals at the medical center.…”

Section: A Healthcare Systems Based On Blockchain Technologymentioning

confidence: 99%

Blood and Product-Chain: Blood and its Products Supply Chain Management based on Blockchain Approach

Trong¹,

Vo²,

Huong³

et al. 2022

IJACSA

View full text Add to dashboard Cite

This paper provides a novel implementation of blockchain technology, and data is stored in a decentralized distributed ledger to assist information protection in blood supply chain management and prevent data loss or identity theft. The present blood supply is used exclusively from the blood of volunteers (known as donors), making blood and its derivatives one of the significant roles in treating diseases today. In particular, depending on the type of product extracted from the blood (e.g., red blood cells, white blood cells, platelets, plasma). They require different procedures and storage environments (e.g., time, temperature, humidity). However, the current blood management processes are done manually -where all medical staff does all data entry. Additionally, data about the complete blood donation process (e.g., blood donors, blood recipients, blood inventories) is held centrally and is challenging to examine accurately. Therefore, ensuring centralized data security is extremely difficult because of stealing personal information or losing data. In this study, we present the blockchain technology-based blood management process and offer Blood and Product-Chain, a decentralized distributed ledger that stores data to address these restrictions. Specifically, we target two main contributions: i) we design the Blood and Product-Chain model to manage all relevant information about blood and its products based on blockchain technology, and ii) we implement the proof-of-concept of Blood and Product-Chain by Hyperledger Fabric and evaluate this in the two scenarios (i.e., data creation and data access).

show abstract

“…Integrity check was done by the data owner or a third party auditing by using RSA and MD5 (Rivest-Shamir-Adleman and Message Digest algorithm 5) cryptographic algorithm to avoid overwhelming workload for the data owner. [15] developed an authorization system to implement network security and protect sensitive data of each patient. The system is an access control model in hybrid cloud for healthcare systems, which handled security vulnerabilities.…”

Section: Literature Reviewmentioning

confidence: 99%

Privacy enforcement on subscribers data in cloud computing

2021

View full text Add to dashboard Cite

Data stored in the cloud are susceptible to an array of threats from hackers. This is because threats, hackers and unauthorized access are not supported by the cloud service providers as implied. This study improves user privacy in the cloud system, using privacy with non-trusted provider (PNTP) on software and platform as a service model. The subscribers encrypt the data using user’s personal Advanced Encryption Standard (AES) symmetric key algorithm and send the encrypted data to the storage pool of the Cloud Service Provider (CSP) via a secure socket layer. The AES performs a second encryption on the data sent to the cloud and generates for the subscriber a key that will be used for decryption of previously stored data. The encryption and decryption keys are managed by the key server and have been hardcoded into the PNTP system. The model was simulated using the Stanford University multimedia dataset and benchmarked with a Privacy with Trusted cloud Provider (PTP) model using encryption time, decryption time and efficiency (brute force hacking) as parameters. Results showed that it took a longer time to access the user files in PNTP than in the PTP system. The brute force hacking took a longer time (almost double) to access data stored on the PNTP system. This will give subscribers a high level of control over their data and increase the adoption of cloud computing by businesses and organizations with highly sensitive information.

show abstract

Toward an Privacy Protection Based on Access Control Model in Hybrid Cloud for Healthcare Systems

Cited by 43 publications

References 16 publications

Towards a Blockchain-based Medical Test Results Management System

Towards a Blockchain-based Medical Test Results Management System

Blood and Product-Chain: Blood and its Products Supply Chain Management based on Blockchain Approach

Privacy enforcement on subscribers data in cloud computing

Contact Info

Product

Resources

About