Özet:

 Personal Health Record (PHR) is an electronic application used by the patients to maintain and manage their health information in a private, secure and confidential environment. In cloud computing, cloud providers act as a third party for information exchange of personal health records. Though this technology facilitates for efficient management and sharing of patient's personal health record, there are wide privacy concerns such as exposure and accessibility of sensitive health information to unauthorized users. In order to provide security and privacy it is necessary to encrypt the data before outsourcing and only authorized users with valid attributes must be allowed to access the data. Hiding the users’ information is also important while accessing data over the network. More over to reduce the key management complexity of data owners, personal health records are classified into multiple security domains.  To hide the user information, anonymous authentication through Attribute-Based Encryption (ABE) technique and fine-grained data access control through AES, are adopted. This combination provides a high degree of privacy and security for the PHR file. This scheme enables dynamic modification of access policies or file attributes and on-demand user revocation. Extensive experimental and performance analysis show that the proposed scheme is efficient in terms of security and privacy.

Anahtar Kelimeler: