Xiaoliang Wang,Liang Bai,Qing Yang,Liu Wang,Frank Jiang

DOI: https://doi.org/10.1016/j.jisa.2019.04.010

IF: 4.96

2019-01-01

Journal of Information Security and Applications

Abstract:With the development of wireless sensor network and internet, ubiquitous eHealth care systems are booming. However, a great deal of data computing and storage processing restrict the scalability of ubiquitous eHealth. As a solution, cloud-based eHealth is coming up. However, using cloud-computing model often causes some privacy concerns. Massive medical data in eHealth system contain numerous sensitive information and electronic health records of users. Meanwhile, if data encryption is adopted to protect privacy, cloud center cannot process data. To solve this problem, a scheme based on fully homomorphism conception for privacy protection and data processing of eHealth is proposed in this paper. Our scheme not only meets the aforementioned dual requirements but also limit the arbitrary actions of patients and doctors.

Ji-Jiang Yang,Jian-Qiang Li,Yu Niu

DOI: https://doi.org/10.1016/j.future.2014.06.004

IF: 7.307

2014-01-01

Future Generation Computer Systems

Abstract:Storing and sharing of medical data in the cloud environment, where computing resources including storage is provided by a third party service provider, raise serious concern of individual privacy for the adoption of cloud computing technologies. Existing privacy protection researches can be classified into three categories, i.e., privacy by policy, privacy by statistics, and privacy by cryptography. However, the privacy concerns and data utilization requirements on different parts of the medical data may be quite different. The solution for medical dataset sharing in the cloud should support multiple data accessing paradigms with different privacy strengths. The statistics or cryptography technology alone cannot enforce the multiple privacy demands, which blocks their application in the real-world cloud. This paper proposes a practical solution for privacy preserving medical record sharing for cloud computing. Based on the classification of the attributes of medical records, we use vertical partition of medical dataset to achieve the consideration of different parts of medical data with different privacy concerns. It mainly includes four components, i.e., (1) vertical data partition for medical data publishing, (2) data merging for medical dataset accessing, (3) integrity checking, and (4) hybrid search across plaintext and ciphertext, where the statistical analysis and cryptography are innovatively combined together to provide multiple paradigms of balance between medical data utilization and privacy protection. A prototype system for the large scale medical data access and sharing is implemented. Extensive experiments show the effectiveness of our proposed solution.

Kundan Munjal,Rekha Bhatia

DOI: https://doi.org/10.1088/1742-6596/2327/1/012069

2022-09-08

Journal of Physics: Conference Series

Abstract:The variety and amount of patient healthcare digital data is rapidly expanding. The field of artificial intelligence has fast proven revolutionary for healthcare, allowing for unprecedented speed and precision in data analysis. Many hospitals have already transitioned to electronic health records (EHRs), a digital version of paper medical information. Information Technology has already aided in simplifying operations in this area, making the process far more efficient and patient-centered than in the past. A patient's trust may disintegrate in the face of recurrent incidents if there is no precise control and safety in place. As a result, it limits the potential for digital health to promote an age of more accessible, connected, and individualized treatment. When it comes to picking a cloud solution, healthcare providers are most concerned about security and privacy. In this research, we seek to demonstrate various ways that aid patient data privacy while simultaneously allowing cloud services to be used.

Man Ho Au,Tsz Hon Yuen,Joseph K. Liu,Willy Susilo,Xinyi Huang,Yang Xiang,Zoe L. Jiang

DOI: https://doi.org/10.1016/j.jcss.2017.03.002

IF: 1.043

2017-01-01

Journal of Computer and System Sciences

Abstract:Personal Health Record (PHR) has been developed as a promising solution that allows patient–doctors interactions in a very effective way. Cloud technology has been seen as the prominent candidate to store the sensitive medical record in PHR, but to date, the security protection provided is yet inadequate without impacting the practicality of the system. In this paper, we provide an affirmative answer to this problem by proposing a general framework for secure sharing of PHRs. Our system enables patients to securely store and share their PHR in the cloud server (for example, to their carers), and furthermore the treating doctors can refer the patients' medical record to specialists for research purposes, whenever they are required, while ensuring that the patients' information remain private. Our system also supports cross domain operations (e.g., with different countries regulations).

Lei Chen,JiJiang Yang,Qing Wang,Yu Niu

DOI: https://doi.org/10.1109/HealthCom.2012.6379433

2012-01-01

Abstract:As healthcare data is quite valuable to many organizations for scientific research or analysis, the demand of sharing healthcare data have been growing rapidly. Nevertheless, health care data usually contains a lot of patient privacy. Sharing that data directly would bring huge threaten to patient privacy. It's necessary to develop practical methods to balance health care data sharing and privacy protection. Although many approaches have been developed to deal with these problems, most of them are focusing on a small scope of the problem with single theory. In this paper, we'd like to introduce a framework for privacy preserving data sharing with the view of practical application in more comprehensive way. The framework focuses on three key problems of privacy protection during data sharing which are privacy definition and detection, privacy protection policy management, privacy preserving health care data sharing. And solutions to these three problems are discussed in details. A simple implementation of the framework would be introduced to solve the problems of privacy-preserving electronic medical records publishing.

Feng Chen,Chenghong Wang,Wenrui Dai,Xiaoqian Jiang,Noman Mohammed,Md Momin Al Aziz,Md Nazmus Sadat,Cenk Sahinalp,Kristin Lauter,Shuang Wang

DOI: https://doi.org/10.1186/s12920-017-0281-2

2017-07-01

BMC Medical Genomics

Abstract:BackgroundAdvances in DNA sequencing technologies have prompted a wide range of genomic applications to improve healthcare and facilitate biomedical research. However, privacy and security concerns have emerged as a challenge for utilizing cloud computing to handle sensitive genomic data.MethodsWe present one of the first implementations of Software Guard Extension (SGX) based securely outsourced genetic testing framework, which leverages multiple cryptographic protocols and minimal perfect hash scheme to enable efficient and secure data storage and computation outsourcing.ResultsWe compared the performance of the proposed PRESAGE framework with the state-of-the-art homomorphic encryption scheme, as well as the plaintext implementation. The experimental results demonstrated significant performance over the homomorphic encryption methods and a small computational overhead in comparison to plaintext implementation.ConclusionsThe proposed PRESAGE provides an alternative solution for secure and efficient genomic data outsourcing in an untrusted cloud by using a hybrid framework that combines secure hardware and multiple crypto protocols.

genetics & heredity

Farida Habib Semantha,Sami Azam,Bharanidharan Shanmugam,Kheng Cher Yeo,Abhijith Reddy Beeravolu

DOI: https://doi.org/10.1109/access.2021.3134873

IF: 3.9

2021-01-01

IEEE Access

Abstract:Privacy has become an increasingly significant apprehension in today’s rapidly changing economy primarily for personal and sensitive user data. The levels of personal data violation are increasing day by day however privacy-preserving frameworks are available. This paper conducted an in-depth analysis of contemporary frameworks to identify the key mechanisms to produce a sophisticated data privacy framework to reduce the rate of data breach particularly for the Patient Record Management System (PRMS). There are several studies available that stated healthcare data privacy, still, complete data protection solution with the application of privacy by design towards patients’ health data by ensuring privacy in each layer of the PRMS are quite limited, which is the focus of this study. PRMS manages personal and sensitive data while delivering healthcare services to the patients and as such, have also the potential to carry significant risks to the privacy of their data. A novel conceptual framework with three distinct and sequential phases is suggested in this research, each of which is defined in a distinct section. The first phase is defined as the planning to identify the key limitations of contemporary frameworks so these can be minimized to ensure privacy in each layer of data processing. The second phase incorporates the key components of data privacy to satisfy the efficiency and effectiveness of the proposed framework. Finally, the third phase is the implementation of the selected requirements of the assessment phase to prevent privacy incursion events in PRMS. The complete framework is anticipated to deliver a sophisticated resistance in contradiction to the continuous data breaches in the patients’ information domain.

computer science, information systems,telecommunications,engineering, electrical & electronic

Preethi.S

DOI: https://doi.org/10.36713/epra5789

2020-12-09

Abstract:Remote health monitoring and older health care has become a popular application with the advance of wearable medical devices. Privacy protection and intrusion avoidance for cloudlet- based medical data sharing data collected from patients through wearable devices ( such as heartbeat, blood pressure, etc.) must be passed to cloud-run applications to implement various services such as expert advice, emergency assistance, etc. The cloud storage system provides distributed clients with convenient file storage and sharing services. To solve integrity, we present identity based data outsourcing , outsourcing and original auditing concerns about outsourced documents, the program is equipped with an ideal feature that factilitates existing recommendations to protect outsourcing data.

Zhigang Zhou,Hongli Zhang,Xiaojiang Du,Panpan Li,Xiangzhan Yu

DOI: https://doi.org/10.1109/infcom.2013.6567072

2013-01-01

Abstract:With the advent of cloud computing, data owner is motivated to outsource their data to the cloud platform for great flexibility and economic savings. However, the development is hampered by data privacy concerns: Data owner may have privacy data and the data cannot be outsourced to cloud directly. Previous solutions mainly use encryption. However, encryption causes a lot of inconveniences and large overheads for other data operations, such as search and query. To address the challenge, we adopt hybrid cloud. In this paper, we present a suit of novel techniques for efficient privacy-aware data retrieval. The basic idea is to split data, keeping sensitive data in trusted private cloud while moving insensitive data to public cloud. However, privacy-aware data retrieval on hybrid cloud is not supported by current frameworks. Data owners have to split data manually. Our system, called Prometheus, adopts the popular MapReduce framework, and uses data partition strategy independent to specific applications. Prometheus can automatically separate sensitive information from public data. We formally prove the privacy-preserving feature of Prometheus. We also show that our scheme can defend against the malicious cloud model, in addition to the semi-honest cloud model. We implement Prometheus on Hadoop and evaluate its performance using real data set on a large-scale cloud test-bed. Our extensive experiments demonstrate the validity and practicality of the proposed scheme.

Rajeev Bedi,Mohit Marwaha,Tajinder Singh,Harwinder Singh,Amritpal Singh

DOI: https://doi.org/10.48550/arXiv.1205.2738

2012-01-14

Cryptography and Security

Abstract:Privacy Security of data in Cloud Storage is one of the main issues. Many Frameworks and Technologies are used to preserve data security in cloud storage. [1] Proposes a framework which includes the design of data organization structure, the generation and management of keys, the treatment of change of user's access right and dynamic operations of data, and the interaction between participants. It also design an interactive protocol and an extirpation-based key derivation algorithm, which are combined with lazy revocation, it uses multi-tree structure and symmetric encryption to form a privacy-preserving, efficient framework for cloud storage. [2] Proposes a framework which design a privacy-preserving cloud storage framework in which he designed an interaction protocol among participants, use key derivation algorithm to generate and manage keys, use both symmetric and asymmetric encryption to hide the sensitive data of users, and apply Bloom filter for cipher text retrieval. A system based on this framework is realized. This paper analyzes both the frameworks in terms of the feasibility of the frameworks, running overhead of the system and the privacy security of the frameworks.

Xiaosan Lei,Xiaoyan Zhu,Haotian Chi,Shunrong Jiang

DOI: https://doi.org/10.1109/iccchina.2015.7448655

2015-01-01

Abstract:The rapid development of the DNA sequencing has greatly decreased the costs in genome sequencing, leading to a high availability of genomic data in the near future. Based on these data, we can realize genomic medical treatment, disease prevention, personalized medicine, social network applications, and etc., which greatly facilitate our daily life. However, since one's genomic data is the ultimate identifier of an individual and contains huge amount of sensitive private information, such as disease predispositions and ancestry information, the use of genomic data may raise serious privacy concerns. In this paper, we focus on one important genomic data application: Paternity Test, which involves the whole DNA sequence (about 3 · 109 letters) and needs huge storage and computation. Considering genomic data user's privacy and the great storage and computing power of the public cloud, it is necessary to find ways of using genomic data in the cloud without disclosure and abuse of the individual's privacy. We first provide a general framework for storing and processing genomic data both in the cloud, then introduce the proposed privacy-preserving scheme for genetic paternity test with RSA's commutative encryption properties in public clouds without disclosure of users' genomic privacy. Our proposed scheme can achieve a higher privacy preserving level and outsource majority of computation to the public cloud. Performance evaluation shows the effectiveness and efficiency of our proposed scheme.

Chang Xu,Ningning Wang,Liehuang Zhu,Kashif Sharif,Chuan Zhang

DOI: https://doi.org/10.1109/jiot.2019.2917186

IF: 10.6

2019-01-01

IEEE Internet of Things Journal

Abstract:The integration of wearable wireless devices and cloud computing in e-health systems has significantly improved their effectiveness and availability. Patients can upload their personal health information (PHI) files to the cloud, from where the health service providers (HSPs) can obtain appropriate information to determine the health state. This system not only reduces the costs associated to healthcare but also provides timely diagnosis to save lives. However, a number of privacy concerns arise while sharing sensitive information. In this paper, we propose a novel privacy-preserving patient health information sharing scheme, which allows HSPs to access and search PHI files in a secure yet efficient manner. We make use of the searchable encryption technique with keyword range search and multikey-word search. The proposed privacy-preserving equality test protocol allows different types of numeric comparison searches on encrypted data. We also use a variant of bloom filter and message authentication code to classify PHI files, filter false data, and check integrity of search results. The simulations on real-world and synthetic data show the feasibility and efficiency of the system, and security analysis proves the privacy-preservation properties.

Lewis Nkenyereye,S. M. Riazul Islam,Mahmud Hossain,M. Abdullah-Al-Wadud,Atif Alamri

DOI: https://doi.org/10.48550/arXiv.2011.06211

2020-11-12

Abstract:The rapid development of personal health records (PHR) systems enables an individual to collect, create, store and share his PHR to authorized entities. Health care systems within the smart city environment require a patient to share his PRH data with a multitude of institutions' repositories located in the cloud. The cloud computing paradigm cannot meet such a massive transformative healthcare systems due to drawbacks including network latency, scalability and bandwidth. Fog computing relieves the burden of conventional cloud computing by availing intermediate fog nodes between the end users and the remote servers. Aiming at a massive demand of PHR data within a ubiquitous smart city, we propose a secure and fog assisted framework for PHR systems to address security, access control and privacy concerns. Built under a fog-based architecture, the proposed framework makes use of efficient key exchange protocol coupled with ciphertext attribute based encryption (CP-ABE) to guarantee confidentiality and fine-grained access control within the system respectively. We also make use of digital signature combined with CP-ABE to ensure the system authentication and users privacy. We provide the analysis of the proposed framework in terms of security and performance.

Cryptography and Security

Moorthi Kuttiyappan,Jothi Prabha Appadurai,Balasubramanian Prabhu Kavin,Jeeva Selvaraj,Hong-Seng Gan,Wen-Cheng Lai

DOI: https://doi.org/10.3390/math12131969

IF: 2.4

2024-06-25

Mathematics

Abstract:One of the industries with the fastest rate of growth is healthcare, and this industry's enormous amount of data requires extensive cloud storage. The cloud may offer some protection, but there is no assurance that data owners can rely on it for refuge and privacy amenities. Therefore, it is essential to offer security and privacy protection. However, maintaining privacy and security in an untrusted green cloud environment is difficult, so the data owner should have complete data control. A new work, SecPri-BGMPOP (Security and Privacy of BoostGraph Convolutional Network-Pinpointing-Optimization Performance), is suggested that can offer a solution that involves several different steps in order to handle the numerous problems relating to security and protecting privacy. The Boost Graph Convolutional Network Clustering (BGCNC) algorithm, which reduces computational complexity in terms of time and memory measurements, was first applied to the input dataset to begin the clustering process. Second, it was enlarged by employing a piece of the magnifying bit string to generate a safe key; pinpointing-based encryption avoids amplifying leakage even if a rival or attacker decrypts the key or asymmetric encryption. Finally, to determine the accuracy of the method, an optimal key was created using a meta-heuristic algorithmic framework called Hybrid Fragment Horde Bland Lobo Optimisation (HFHBLO). Our proposed method is currently kept in a cloud environment, allowing analytics users to utilise it without risking their privacy or security.

mathematics

Xuejiao Liu,Yingjie Xia,Wei Yang,Fengli Yang

DOI: https://doi.org/10.1016/j.neucom.2016.06.100

IF: 6

2018-01-01

Neurocomputing

Abstract:Information seeking is becoming an indispensable activity in daily life, especially in the medical cloud. Body Area Network (BAN) is becoming more and more popular with respect to the development and popularity of mobile devices. People are starting to back up the medical data to cloud, make data accessible by the doctors from almost anywhere using mobile terminals. In this paper, we present an efficient and secure fine-grained access control scheme which not only achieves authorized users to access the records in cloud storage, but also supports a small set of physicians to write on the records. In order to improve the efficiency, we put forward a novel technique called match-then-decrypt, which is used to perform the decryption test without decryption. Also, the scheme outsources bilinear pairing operations to a gateway without revealing the data content, and thus largely eliminates this overhead for users to a great extent. The performance assessments demonstrate the efficiency of our proposed solution in terms of computation, communication, and storage.

Lu Liu,Jingchao Sun,Jianqiang Li,Rong Li,Juan Li,Xi Meng,Huifang Li,Jijiang Yang

DOI: https://doi.org/10.1109/SmartCity.2015.205

2015-01-01

Abstract:With the development of healthcare industry, healthcare informatization provides great potential for the health-care improvement. The cloud computing platform, which is an important infrastructure for the inter( intra)-organization collaboration, provides a shared storage space to the medical data sharing. For the privacy protection of medical data, sensitive data has to be encrypted before being transmitted to the cloud, which makes it more challenging to use these data in the cloud. For strengthening the utilization of encrypted cloud data, various encrypted search technologies are widely studied. However, these existing searchable encryption schemes may not enforce users' demands well. This paper proposes a privacy enhanced search approach for cloud-based medical data sharing. The proposed solution implements a hybrid search approach, where the search process is conducted across plaintext and ciphertext. Moreover, the enhanced access control can ensure the privacy protection of cloud data. The empirical experiments illustrate the effectiveness of our solution.

Xuyun Zhang,Chang Liu,Surya Nepal,Chi Yang,Wanchun Dou,Jinjun Chen

DOI: https://doi.org/10.1002/cpe.3083

2013-01-01

Abstract:Big data and cloud computing are two disruptive trends nowadays, provisioning numerous opportunities to the current information technology industry and research communities while posing significant challenges on them as well. Cloud computing provides powerful and economical infrastructural resources for cloud users to handle ever increasing data sets in big data applications. However, processing or sharing privacy-sensitive data sets on cloud probably engenders severe privacy concerns because of multi-tenancy. Data encryption and anonymization are two widely-adopted ways to combat privacy breach. However, encryption is not suitable for data that are processed and shared frequently, and anonymizing big data and manage numerous anonymized data sets are still challenges for traditional anonymization approaches. As such, we propose a scalable and cost-effective framework for privacy preservation over big data on cloud in this paper. The key idea of the framework is that it leverages cloud-based MapReduce to conduct data anonymization and manage anonymous data sets, before releasing data to others. The framework provides a holistic conceptual foundation for privacy preservation over big data. Further, a corresponding proof-of-concept prototype system is implemented. Empirical evaluations demonstrate that scalable and cost-effective framework for privacy preservation can anonymize large-scale data sets and mange anonymous data sets in a highly flexible, scalable, efficient, and cost-effective fashion. Copyright (c) 2013 John Wiley & Sons, Ltd.

Chunxia Leng,Huiqun Yu,Jingming Wang,Jianhua Huang

DOI: https://doi.org/10.11591/telkomnika.v11i4.2406

2013-01-01

TELKOMNIKA Indonesian Journal of Electrical Engineering

Abstract:The personal health records (PHR) always contain much health-related privacy information in different categories. When storing the PHR data in the cloud, the PHR owner loses control to the sensitive information and is confronted with potential privacy exposure. In this paper, we propose a scheme to enable the protection of the PHR data hosted in the cloud. It not only supports that the data access can be fine-grained and base on the privacy policies specified by the PHR owner, but also affords an effective encryption mechanism and flexible key management approach to enforce the privacy policies sticky to the PHR data. DOI: http://dx.doi.org/10.11591/telkomnika.v11i4.2406

Ruwei Huang,Si Yu,Wei Zhuang,Xiaolin Gui

DOI: https://doi.org/10.1109/gcc.2010.36

2010-01-01

Abstract:Privacy security is a key issue for cloud storage. To solve this problem, the paper proposes a privacy-preserving cloud storage framework, which includes the design of data organization structure, the generation and management of keys, the treatment of change of users' access right and dynamic operations of data, and the interaction between participants. We design an interactive protocol and an extirpation-based key derivation algorithm, which are combined with lazy revocation, multi-tree structure and symmetric encryption to form a privacy-preserving, efficient framework for cloud storage. A system is realized which is based on the framework. The paper analyzes the effectiveness of extirpation-based key derivation algorithm, the overhead of the system and the privacy security of the framework. Finally, we summarize our work and introduce our future research directions.

Kambombo Mtonga,Haomiao Yang,Eunjun Yoon,Hyunsung Kim

DOI: https://doi.org/10.1007/978-94-007-6738-6_26

2013-01-01

Abstract:The digitization of patient health information has brought many benefits and challenges for both the patient and doctor. But security and privacy preservation have remained important challenges for wireless health monitoring systems. Such concerns may result in reluctance and skepticism towards health systems by patients. The reason for this skepticism is mainly attributed to the lack of assurances about the way patient health information is handled and the implications that may result from it on patients' privacy. This paper proposes an identity-based privacy preservation framework over u-healthcare systems. Our framework is based on the concepts of identity-based cryptography and non-interactive key agreement scheme using bilinear pairing. The proposed framework achieves authentication, patient anonymity, un-traceability, patient data privacy and session key secrecy, and resistance against impersonation and replay attacks. © 2013 Springer Science+Business Media Dordrecht(Outside the USA).