NDLI: Multiparty privacy protection for electronic health records

Content Provider	IEEE Xplore Digital Library
Author	Xun Yi Yuan Miao Bertino, E. Willemson, J.
Copyright Year	2013
Description	Author affiliation: Coll. of Eng. & Sci., Victoria Univ., Melbourne, VIC, Australia (Xun Yi; Yuan Miao) \|\| STACC & Cybernetica Ltd., Tartu, Estonia (Willemson, J.) \|\| Comput. Sci. Dept., Purdue Univ., West Lafayette, IN, USA (Bertino, E.)
Abstract	Recently, the amount of personal medical information online is increasing exponentially, opening up new avenues for hackers to expose personal data that, unlike financial information, can result in a permanent violation of privacy. To protect the privacy of patient data, such as electronic health records (EHRs), access control was used before and attributed-based encryption is used recently. These techniques can effectively prevent from the outside attacks, but are hard to withstand the inside attacks, where the database administrator or the key manager is an attacker. In this paper, we provide a solution to protect the privacy of patient data (EHRs) under the multi-party framework where all EHRs are encrypted with the common public key and an encrypted EHR can be decrypted only by the cooperation of all parties. Based on the ElGamal threshold public key encryption scheme, we propose several EHR access control protocols where multiple parties cooperate to control clinicians' access to EHRs without actually knowing EHRs. Our solution can protect the patient data against the inside attacks as long as at least one party can be trusted. Because our solution is built on Public Key Infrastructure (PKI), it facilitates the clinician registration and revocation.
Sponsorship	IEEE Commun. Soc.
Starting Page	2730
Ending Page	2735
File Size	600475
Page Count	6
File Format	PDF
ISBN	9781479913534
DOI	10.1109/GLOCOM.2013.6831487
Language	English
Publisher	Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Publisher Date	2013-12-09
Publisher Place	USA
Access Restriction	Subscribed
Rights Holder	Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Subject Keyword	Servers Access control Encryption Protocols Databases Public key Logic gates
Content Type	Text
Resource Type	Article

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in

Playback Control for Remote Desktop Replay

Privacy and Access Control for Outsourced Personal Records

A Hierarchical Framework for Secure and Scalable EHR Sharing and Access Control in Multi-cloud

A Privacy-Preserving Access Control Protocol for Database as a Service

An Enhanced Linkable Anonymous Access Protocol of the Distributed Electronic Patient Records

Privacy preserving hierarchical content distribution in multiparty multilevel DRM

An opportunistic encryption extension for the DNS protocol

Drop dead data

Enforcing Multi-user Access Policies to Encrypted Cloud Databases

Multiparty privacy protection for electronic health records

Similar Documents

Playback Control for Remote Desktop Replay

Privacy and Access Control for Outsourced Personal Records

A Hierarchical Framework for Secure and Scalable EHR Sharing and Access Control in Multi-cloud

A Privacy-Preserving Access Control Protocol for Database as a Service

An Enhanced Linkable Anonymous Access Protocol of the Distributed Electronic Patient Records

Privacy preserving hierarchical content distribution in multiparty multilevel DRM

An opportunistic encryption extension for the DNS protocol

Drop dead data

Enforcing Multi-user Access Policies to Encrypted Cloud Databases

Multiparty privacy protection for electronic health records