Leveraging semantic context to establish access controls for secure cloud-based electronic health records

Thumbnail Image

Files

1s2.0S2667096823000575main.pdf (1.33 MB)

Links to Files

https://www.sciencedirect.com/science/article/pii/S2667096823000575

Permanent Link

https://doi.org/10.1016/j.jjimei.2023.100211
 http://hdl.handle.net/11603/36366

Collections

UMBC Student Collection
UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Information Systems Department

Author/Creator

Author/Creator ORCID

https://orcid.org/0000-0002-1303-0909
 https://orcid.org/0000-0002-6354-1686

Date

2024-04-01

Type of Work

journal articles
Text

Department

Program

Citation of Original Publication

Walid, Redwan, Karuna Pande Joshi, and Seung Geol Choi. “Leveraging Semantic Context to Establish Access Controls for Secure Cloud-Based Electronic Health Records.” International Journal of Information Management Data Insights 4, no. 1 (April 1, 2024): 100211. https://doi.org/10.1016/j.jjimei.2023.100211.

Rights

This work was written as part of one of the author's official duties as an Employee of the United States Government and is therefore a work of the United States Government. In accordance with 17 U.S.C. 105, no copyright protection is available for such works under U.S. Law.
Public Domain

Subjects

Attribute Revocation
Cloud Security
Searchable Encryption (SE)
Attribute-Based Encryption (ABE)
Electronic Health Record (EHR)
Cloud Computing
UMBC Ebiquity Research Group
UMBC Knowledge, Analytics, Cognitive and Cloud Computing (KnACC) lab
Knowledge Graph
Attribute-Based Access Control (ABAC)

Abstract

With the continuous growth of cloud-based Electronic Health Record (EHR) systems and medical data, medical organizations are particularly concerned about storing patient data to provide fast services while adhering to privacy and security concerns. Existing EHR systems often face challenges in handling heterogeneous data and maintaining good performance with data growth. These systems mostly use relational databases or partially store data in a knowledge graph, making it challenging to handle big data and allowing flexible schema expansion. Hence, there is a need to address these problems. This paper provides a solution by proposing a novel graph-based EHR system integrating Attribute-Based Encryption and Semantic Web Technologies to ensure fine-grained EHR field-level security of patient records. Our approach leverages semantic context to query through a knowledge graph that stores encrypted medical data in the nodes, making it possible to handle heterogeneous data while ensuring optimal performance and preserving patient privacy.