Delegated Authorization Framework for EHR Services using Attribute Based Encryption
| dc.contributor.author | Joshi, Maithilee | |
| dc.contributor.author | Joshi, Karuna Pande | |
| dc.contributor.author | Finin, Tim | |
| dc.date.accessioned | 2019-09-26T14:23:11Z | |
| dc.date.available | 2019-09-26T14:23:11Z | |
| dc.date.issued | 2019-05-20 | |
| dc.description.abstract | Medical organizations find it challenging to adopt cloud-based Electronic Health Records (EHR) services due to the risk of data breaches and the resulting compromise of patient data. Existing authorization models follow a patient-centric approach for EHR management, where the responsibility of authorizing data access is handled at the patients end. This creates a significant overhead for the patient who must authorize every access of their health record. This is not practical given that multiple personnel are typically involved in providing care and that the patient may not always be in a state to provide this authorization. Hence there is a need to develop a proper authorization delegation mechanism for safe, secure and easy to use cloud-based EHR Service management. We present a novel, centralized, attribute-based authorization mechanism that uses Attribute Based Encryption (ABE) and allows for delegated secure access of patient records. This mechanism transfers the service management overhead from the patient to the medical organization and allows easy delegation of cloud-based EHRs access authority to medical providers. | en_US |
| dc.description.sponsorship | This research was supported by the Office of Naval Research under grants N00014-15-1-2228 and N00014-16-WX01489. We thank Dr. Seung Geol Choi (USNA), Dr. Eliot Siegel (University of Maryland Medical Center) and members of the Ebiquity Research Group for their vital input. This work was conducted using the Protege resource, which is supported by grant GM10331601 from the National Institute of General Medical Sciences of the United States National Institutes of Health. | en_US |
| dc.description.uri | https://ieeexplore.ieee.org/document/8718336 | en_US |
| dc.format.extent | 12 pages | en_US |
| dc.genre | journal articles | en_US |
| dc.genre | preprints | |
| dc.identifier | doi:10.13016/m2b5cs-yhpv | |
| dc.identifier.citation | M. Joshi, K. P. Joshi and T. Finin, "Delegated Authorization Framework for EHR Services Using Attribute-Based Encryption," in IEEE Transactions on Services Computing, vol. 14, no. 6, pp. 1612-1623, 1 Nov.-Dec. 2021, doi: 10.1109/TSC.2019.2917438. | en_US |
| dc.identifier.uri | https://doi.org/10.1109/TSC.2019.2917438 | |
| dc.identifier.uri | http://hdl.handle.net/11603/14602 | |
| dc.language.iso | en_US | en_US |
| dc.publisher | IEEE | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Information Systems Department Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department | |
| dc.rights | © 2019 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. | |
| dc.subject | Attribute Based Encryption (ABE) | en_US |
| dc.subject | Attribute Based Access Control (ABAC) | en_US |
| dc.subject | Electronic Health Record (EHR) | en_US |
| dc.subject | Cloud Storage | en_US |
| dc.subject | Semantic Web | en_US |
| dc.subject | Access Broker | en_US |
| dc.subject | Knowledge Graph (Ontology) | en_US |
| dc.subject | Cloud Computing | en_US |
| dc.subject | UMBC Ebiquity Research Group | |
| dc.title | Delegated Authorization Framework for EHR Services using Attribute Based Encryption | en_US |
| dc.type | Text | en_US |