E-Tenon: An efficient privacy-preserving secure open data sharing scheme for EHR system

IF 0.9 Q4 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Computer Security Pub Date : 2024-01-29 DOI:10.3233/jcs-220097

P. Gope, Zhihui Lin, Yang Yang, Jianting Ning

{"title":"E-Tenon: An efficient privacy-preserving secure open data sharing scheme for EHR system","authors":"P. Gope, Zhihui Lin, Yang Yang, Jianting Ning","doi":"10.3233/jcs-220097","DOIUrl":null,"url":null,"abstract":"The transition from paper-based information to Electronic-Health-Records (EHRs) has driven various advancements in the modern healthcare industry. In many cases, patients need to share their EHR with healthcare professionals. Given the sensitive and security-critical nature of EHRs, it is essential to consider the security and privacy issues of storing and sharing EHR. However, existing security solutions excessively encrypt the whole database, thus requiring the entire database to be decrypted for each access request, which is time-consuming. On the other hand, the use of EHR for medical research (e.g., development of precision medicine and diagnostics techniques) and optimisation of practices in healthcare organisations require the EHR to be analysed. To achieve that, they should be easily accessible without compromising the patient’s privacy. In this paper, we propose an efficient technique called E-Tenon that not only securely keeps all EHR publicly accessible but also provides the desired security features. To the best of our knowledge, this is the first work in which an Open Database is used for protecting EHR. The proposed E-Tenon empowers patients to securely share their EHR under their own multi-level, fine-grained access policies. Analyses show that our system outperforms existing solutions in terms of computational complexity.","PeriodicalId":46074,"journal":{"name":"Journal of Computer Security","volume":null,"pages":null},"PeriodicalIF":0.9000,"publicationDate":"2024-01-29","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Computer Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.3233/jcs-220097","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

The transition from paper-based information to Electronic-Health-Records (EHRs) has driven various advancements in the modern healthcare industry. In many cases, patients need to share their EHR with healthcare professionals. Given the sensitive and security-critical nature of EHRs, it is essential to consider the security and privacy issues of storing and sharing EHR. However, existing security solutions excessively encrypt the whole database, thus requiring the entire database to be decrypted for each access request, which is time-consuming. On the other hand, the use of EHR for medical research (e.g., development of precision medicine and diagnostics techniques) and optimisation of practices in healthcare organisations require the EHR to be analysed. To achieve that, they should be easily accessible without compromising the patient’s privacy. In this paper, we propose an efficient technique called E-Tenon that not only securely keeps all EHR publicly accessible but also provides the desired security features. To the best of our knowledge, this is the first work in which an Open Database is used for protecting EHR. The proposed E-Tenon empowers patients to securely share their EHR under their own multi-level, fine-grained access policies. Analyses show that our system outperforms existing solutions in terms of computational complexity.

查看原文本刊更多论文

E-Tenon：电子病历系统的高效隐私保护安全开放数据共享方案

从纸质信息到电子健康记录（EHR）的转变推动了现代医疗保健行业的各种进步。在许多情况下，患者需要与医疗保健专业人员共享电子健康记录。鉴于电子健康记录的敏感性和安全关键性，必须考虑存储和共享电子健康记录的安全和隐私问题。然而，现有的安全解决方案过度加密整个数据库，因此每次访问请求都需要解密整个数据库，这非常耗时。另一方面，将电子健康记录用于医学研究（如精准医学和诊断技术的开发）和优化医疗机构的实践需要对电子健康记录进行分析。为此，应在不损害患者隐私的情况下方便地访问电子病历。在本文中，我们提出了一种名为 E-Tenon 的高效技术，它不仅能安全地保持所有电子病历的可公开访问性，还能提供所需的安全功能。据我们所知，这是第一项使用开放数据库保护电子病历的工作。所提出的 E-Tenon 使患者能够根据自己的多级、细粒度访问策略安全地共享电子健康记录。分析表明，我们的系统在计算复杂性方面优于现有的解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Computer Security COMPUTER SCIENCE, INFORMATION SYSTEMS-

CiteScore

1.70

自引率

0.00%

发文量

期刊介绍： The Journal of Computer Security presents research and development results of lasting significance in the theory, design, implementation, analysis, and application of secure computer systems and networks. It will also provide a forum for ideas about the meaning and implications of security and privacy, particularly those with important consequences for the technical community. The Journal provides an opportunity to publish articles of greater depth and length than is possible in the proceedings of various existing conferences, while addressing an audience of researchers in computer security who can be assumed to have a more specialized background than the readership of other archival publications.