Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Tehsin Kanwal; Ather Abdul Jabbar; Adeel Anjum; Saif UR Malik; Abid Khan; Naveed Ahmad; Umar Manzoor; Muhammad Naeem Shahzad; Muhammad A Balubaid

doi:10.1177/1550147719846050

International Journal of Distributed Sensor Networks (Jun 2019)

Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Tehsin Kanwal,
Ather Abdul Jabbar,
Adeel Anjum,
Saif UR Malik,
Abid Khan,
Naveed Ahmad,
Umar Manzoor,
Muhammad Naeem Shahzad,
Muhammad A Balubaid

Affiliations

Tehsin Kanwal: Department of Computer Sciences, Comsats Institute of Information Technology, Islamabad, Pakistan
Ather Abdul Jabbar: Department of Computer Sciences, Comsats Institute of Information Technology, Islamabad, Pakistan
Adeel Anjum: Department of Computer Sciences, Comsats Institute of Information Technology, Islamabad, Pakistan
Saif UR Malik: Cybernetica AS, Tallinn, Estonia
Abid Khan: Department of Computer Sciences, Comsats Institute of Information Technology, Islamabad, Pakistan
Naveed Ahmad: Department of Computer Sciences, Comsats Institute of Information Technology, Islamabad, Pakistan
Umar Manzoor: Department of Computer Science and Technology, University of Hull, Hull, UK
Muhammad Naeem Shahzad: Department of Electrical Engineering, Comsats University Islamabad, Lahore, Pakistan
Muhammad A Balubaid: Department of Industrial Engineering, Faculty of Engineering, King Abdulaziz University, Riyadh, Saudi Arabia

DOI: https://doi.org/10.1177/1550147719846050
Journal volume & issue: Vol. 15

Abstract

Read online

State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

Published in International Journal of Distributed Sensor Networks

ISSN: 1550-1329 (Print); 1550-1477 (Online)
Publisher: Hindawi - SAGE Publishing
Country of publisher: United Kingdom
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://onlinelibrary.wiley.com/journal/dsn

About the journal