Skip to main content
placeholder image

Secure exchange of electronic health records

Chapter


Download full-text (Open Access)

Abstract


  • Protecting the confidentiality of a patient’s information in a shared care environment could become a

    complex task. Correct identification of users, assigning of access permissions, and resolution of conflict

    rise as main points of interest in providing solutions for data exchange among health care providers.

    Traditional approaches such as Mandatory Access Control, Discretionary Access control and Role-Based

    Access Control policies do not always provide a suitable solution for health care settings, especially

    for shared care environments. The core of this contribution consists in the description of an approach

    which uses attribute-based encryption to protect the confidentiality of patients’ information during the

    exchange of electronic health records among healthcare providers. Attribute-based encryption allows

    the reinforcing of access policies and reduces the risk of unauthorized access to sensitive information; it

    also provides a set of functionalities which are described using a case study. Attribute-based encryption

    provides an answer to restrictions presented by traditional approaches and facilitate the reinforcing of

    existing security policies over the transmitted data.

Publication Date


  • 2013

Citation


  • Flores Zuniga, A., Win, K. & Susilo, W. (2013). Secure exchange of electronic health records. User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications (pp. 1403-1424). United States: Medical Information Science Reference.

International Standard Book Number (isbn) 13


  • 9781466627703

Scopus Eid


  • 2-s2.0-84949757957

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=3476&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/2467

Book Title


  • User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications

Has Global Citation Frequency


Start Page


  • 1403

End Page


  • 1424

Place Of Publication


  • United States

Abstract


  • Protecting the confidentiality of a patient’s information in a shared care environment could become a

    complex task. Correct identification of users, assigning of access permissions, and resolution of conflict

    rise as main points of interest in providing solutions for data exchange among health care providers.

    Traditional approaches such as Mandatory Access Control, Discretionary Access control and Role-Based

    Access Control policies do not always provide a suitable solution for health care settings, especially

    for shared care environments. The core of this contribution consists in the description of an approach

    which uses attribute-based encryption to protect the confidentiality of patients’ information during the

    exchange of electronic health records among healthcare providers. Attribute-based encryption allows

    the reinforcing of access policies and reduces the risk of unauthorized access to sensitive information; it

    also provides a set of functionalities which are described using a case study. Attribute-based encryption

    provides an answer to restrictions presented by traditional approaches and facilitate the reinforcing of

    existing security policies over the transmitted data.

Publication Date


  • 2013

Citation


  • Flores Zuniga, A., Win, K. & Susilo, W. (2013). Secure exchange of electronic health records. User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications (pp. 1403-1424). United States: Medical Information Science Reference.

International Standard Book Number (isbn) 13


  • 9781466627703

Scopus Eid


  • 2-s2.0-84949757957

Ro Full-text Url


  • http://ro.uow.edu.au/cgi/viewcontent.cgi?article=3476&context=eispapers

Ro Metadata Url


  • http://ro.uow.edu.au/eispapers/2467

Book Title


  • User-Driven Healthcare: Concepts, Methodologies, Tools, and Applications

Has Global Citation Frequency


Start Page


  • 1403

End Page


  • 1424

Place Of Publication


  • United States