PEACE: An efficient and secure patient-centric access control scheme for eHealth care system

Author

Barua, Mrinmoy ; Liang, Xiaohui ; Rongxing Lu ; Shen, Xuemin

Author_Institution

Dept. of Electr. & Comput. Eng., Univ. of Waterloo, Waterloo, ON, Canada

fYear

2011

fDate

10-15 April 2011

Firstpage

970

Lastpage

975

Abstract

In this paper, we propose an efficient and secure patient-centric access control (PEACE) scheme for the emerging electronic health care (eHealth) system. In order to assure the privacy of patient personal health information (PHI), we define different access privileges to data requesters according to their roles, and then assign different attribute sets to the data requesters. By using these different sets of attribute, we construct the patient-centric access policies of patient PHI. The PEACE scheme can guarantee PHI integrity and confidentiality by adopting digital signature and pseudo-identity techniques. It encompasses identity based cryptography to aggregate remote patient PHI securely. Extensive security and performance analyses demonstrate that the PEACE scheme is able to achieve desired security requirements at the cost of an acceptable communication delay.

Keywords

authorisation; cryptography; data privacy; digital signatures; health care; medical information systems; PEACE; digital signature; eHealth care system; identity based cryptography; patient personal health information privacy; patient-centric access control scheme; pseudo identity techniques; Cryptography; Delay; access control; attribute-based encryption; eHealth; privacy; security;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Communications Workshops (INFOCOM WKSHPS), 2011 IEEE Conference on

Conference_Location

Shanghai

Print_ISBN

978-1-4577-0249-5

Electronic_ISBN

978-1-4577-0248-8

Type

conf

DOI

10.1109/INFCOMW.2011.5928953

Filename

5928953