A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud

Marcela T. de Oliveira; Alexandros Bakas; Eugene Frimpong; Adrien E.D. Groot; Henk A. Marquering; Antonis Michalas; Silvia D. Olabarriaga

doi:10.1007/s12243-020-00759-2

A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud

Marcela T. de Oliveira^*, Alexandros Bakas, Eugene Frimpong, Adrien E.D. Groot, Henk A. Marquering, Antonis Michalas, Silvia D. Olabarriaga

^*Corresponding author for this work

Research output: Contribution to journal › Article › Scientific › peer-review

12 Citations (Scopus)

Abstract

In emergency care, fast and efficient treatment is vital. The availability of Electronic Medical Records (EMR) allows healthcare professionals to access a patient’s data promptly, which facilitates the decision-making process and saves time by not repeating medical procedures. Unfortunately, the complete EMR of a patient is often not available during an emergency situation to all treatment teams. Cloud services emerge as a promising solution to this problem by allowing ubiquitous access to information. However, EMR storage and sharing through clouds raise several concerns about security and privacy. To this end, we propose a protocol through which all treatment teams involved in the emergency care can securely decrypt relevant data from the patient’s EMR and add new information about the patient’s status. Furthermore, our protocol ensures that treatment teams will only access the patient’s EMR for the period during which the patient is under their care. Finally, we present a formal security analysis of our protocol and some initial experimental results.

Original language	English
Pages (from-to)	103-119
Number of pages	17
Journal	Annales des Telecommunications/Annals of Telecommunications
Volume	75
Issue number	3-4
DOIs	https://doi.org/10.1007/s12243-020-00759-2
Publication status	Published - 2020
Externally published	Yes

Keywords

Access control
Break-glass access
Ciphertext-policy attribute-based encryption
e-health privacy
Electronic medical records
Emergency care
Secure cloud storage

Access to Document

10.1007/s12243-020-00759-2

Cite this

@article{aef24166ce424176bbb75c92e59f31c1,

title = "A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud",

abstract = "In emergency care, fast and efficient treatment is vital. The availability of Electronic Medical Records (EMR) allows healthcare professionals to access a patient{\textquoteright}s data promptly, which facilitates the decision-making process and saves time by not repeating medical procedures. Unfortunately, the complete EMR of a patient is often not available during an emergency situation to all treatment teams. Cloud services emerge as a promising solution to this problem by allowing ubiquitous access to information. However, EMR storage and sharing through clouds raise several concerns about security and privacy. To this end, we propose a protocol through which all treatment teams involved in the emergency care can securely decrypt relevant data from the patient{\textquoteright}s EMR and add new information about the patient{\textquoteright}s status. Furthermore, our protocol ensures that treatment teams will only access the patient{\textquoteright}s EMR for the period during which the patient is under their care. Finally, we present a formal security analysis of our protocol and some initial experimental results.",

keywords = "Access control, Break-glass access, Ciphertext-policy attribute-based encryption, e-health privacy, Electronic medical records, Emergency care, Secure cloud storage",

author = "{T. de Oliveira}, Marcela and Alexandros Bakas and Eugene Frimpong and Groot, {Adrien E.D.} and Marquering, {Henk A.} and Antonis Michalas and Olabarriaga, {Silvia D.}",

year = "2020",

doi = "10.1007/s12243-020-00759-2",

language = "English",

volume = "75",

pages = "103--119",

journal = "Annales des Telecommunications/Annals of Telecommunications",

issn = "0003-4347",

publisher = "Springer",

number = "3-4",

}

A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud. / T. de Oliveira, Marcela; Bakas, Alexandros; Frimpong, Eugene et al.
In: Annales des Telecommunications/Annals of Telecommunications, Vol. 75, No. 3-4, 2020, p. 103-119.

Research output: Contribution to journal › Article › Scientific › peer-review

TY - JOUR

T1 - A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud

AU - T. de Oliveira, Marcela

AU - Bakas, Alexandros

AU - Frimpong, Eugene

AU - Groot, Adrien E.D.

AU - Marquering, Henk A.

AU - Michalas, Antonis

AU - Olabarriaga, Silvia D.

PY - 2020

Y1 - 2020

N2 - In emergency care, fast and efficient treatment is vital. The availability of Electronic Medical Records (EMR) allows healthcare professionals to access a patient’s data promptly, which facilitates the decision-making process and saves time by not repeating medical procedures. Unfortunately, the complete EMR of a patient is often not available during an emergency situation to all treatment teams. Cloud services emerge as a promising solution to this problem by allowing ubiquitous access to information. However, EMR storage and sharing through clouds raise several concerns about security and privacy. To this end, we propose a protocol through which all treatment teams involved in the emergency care can securely decrypt relevant data from the patient’s EMR and add new information about the patient’s status. Furthermore, our protocol ensures that treatment teams will only access the patient’s EMR for the period during which the patient is under their care. Finally, we present a formal security analysis of our protocol and some initial experimental results.

AB - In emergency care, fast and efficient treatment is vital. The availability of Electronic Medical Records (EMR) allows healthcare professionals to access a patient’s data promptly, which facilitates the decision-making process and saves time by not repeating medical procedures. Unfortunately, the complete EMR of a patient is often not available during an emergency situation to all treatment teams. Cloud services emerge as a promising solution to this problem by allowing ubiquitous access to information. However, EMR storage and sharing through clouds raise several concerns about security and privacy. To this end, we propose a protocol through which all treatment teams involved in the emergency care can securely decrypt relevant data from the patient’s EMR and add new information about the patient’s status. Furthermore, our protocol ensures that treatment teams will only access the patient’s EMR for the period during which the patient is under their care. Finally, we present a formal security analysis of our protocol and some initial experimental results.

KW - Access control

KW - Break-glass access

KW - Ciphertext-policy attribute-based encryption

KW - e-health privacy

KW - Electronic medical records

KW - Emergency care

KW - Secure cloud storage

UR - http://www.scopus.com/inward/record.url?scp=85081620941&partnerID=8YFLogxK

U2 - 10.1007/s12243-020-00759-2

DO - 10.1007/s12243-020-00759-2

M3 - Article

AN - SCOPUS:85081620941

SN - 0003-4347

VL - 75

SP - 103

EP - 119

JO - Annales des Telecommunications/Annals of Telecommunications

JF - Annales des Telecommunications/Annals of Telecommunications

IS - 3-4

ER -

A break-glass protocol based on ciphertext-policy attribute-based encryption to access medical records in the cloud

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this