Authenticated Sharing of Personal Health Records in Cloud

Abstract

Personal health record (PHR) is an emerging patient-centric model of health information exchange, which stored at a third party, such as cloud providers. However, there have been wide privacy concerns as personal health information could be exposed to those third party servers and to unauthorized parties. Different from previous works in secure data outsourcing, focus on the multiple data owner scenario, and divide the users in the PHR system into multiple security domains that greatly reduces the key management complexity for owners and users. Proposed a novel patient-centric framework and a suite of mechanisms for data access control to PHRs stored in semi trusted servers. Extensive analytical and experimental results are presented which show the security, scalability, and efficiency