e-Health Cloud: Privacy Concerns and Mitigation Strategies

  title={e-Health Cloud: Privacy Concerns and Mitigation Strategies},
  author={Assad Abbas and Samee Ullah Khan},
  booktitle={Medical Data Privacy Handbook},
Cloud based solutions have permeated in the healthcare domain due to a broad range of benefits offered by the cloud computing. Besides the financial advantages to the healthcare organizations, cloud computing also offers large-scale and on-demand storage and processing services to various entities of the cloud based health ecosystem. However, outsourcing the sensitive health information to the third-party cloud providers can result in serious privacy concerns. This chapter highlights the… 

Privacy Preserving Requirements for Sharing Health Data in Cloud

These solutions have been compared together according to the privacy-preserving requirements, strengths and weaknesses and this paper focuses on privacy preserving requirements solutions related to sharing health data in cloud.

Privacy preservation in e-health cloud: taxonomy, privacy requirements, feasibility analysis, and opportunities

This work aims at answering three major questions: firstly, how privacy models and privacy techniques correlate with each other, how the privacy-utility-trade off can be fixed by using different combinations of privacy modelsand privacy techniques and lastly, what are the most relevant privacy techniques that can be adapted to achieve privacy of EHR on cloud.

Blind Signatures Based Secured E-Healthcare System

The proposed scheme holds the privacy of the patients using a flexible and adaptive approach in the E-Health cloud paradigm through an authentication scheme that meets anonymity.

Anonymous authentication scheme in e-Health Cloud environment

This paper will propose an adaptive and flexible approach to protect the identity privacy of patients in an e-Health Cloud through an anonymous authentication scheme.

Security Challenges and Suggested Solutions for e-Health Information in Modern Society

An acceptable and standard definition of e-Health is given and a secured architecture for electronic health that could guarantee efficiency, reliability, and regulated access framework to health information is proposed.

Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

A novel fault-tolerant privacy-preserving cloud-based data aggregation scheme for lightweight health data.

This work proposes a novel design for a private and fault-tolerant cloud-based data aggregation scheme that is privatized via differential privacy, which is achieved by encrypting noisy health data and enabling the cloud to obtain the results of only the noisy sum.

Protecting medical data in cloud storage using fault-tolerance mechanism

A novel method based on Shamir's Secret Share Scheme and multi-cloud concept to avoid data loss and unauthorized access is proposed and the experimental results confirm that the proposed framework provides necessary measures for preventing data loss in cloud storage.

On the Security of Medical Image Processing in Cloud Environment

A simple method based on fragmentation is used to support a distributed image processing architecture, as well as data privacy, using a multi-cloud system and parallel image processing approach to satisfy Quality of Service (QoS) requirements.



Securing the e-health cloud

This paper presents a security architecture for establishing privacy domains in e-health infrastructures, which provides client platform security and appropriately combines this with network security concepts.

CAM: Cloud-Assisted Privacy Preserving Mobile Health Monitoring

This paper designs a cloud-assisted privacy preserving mobile health monitoring system to protect the privacy of the involved parties and their data and adapts the outsourcing decryption technique and a newly proposed key private proxy reencryption to shift the computational complexity to the cloud without compromising clients' privacy and service providers' intellectual property.

A Review on the State-of-the-Art Privacy-Preserving Approaches in the e-Health Clouds

  • Assad AbbasS. Khan
  • Computer Science, Medicine
    IEEE Journal of Biomedical and Health Informatics
  • 2014
This survey aims to encompass the state-of-the-art privacy-preserving approaches employed in the e-Health clouds and the strengths and weaknesses of the presented approaches are reported and some open issues are highlighted.

A hybrid solution for privacy preserving medical data sharing in the cloud environment

SAPPHIRE: Anonymity for enhanced control and private collaboration in healthcare clouds

This work proposes a paradigm shift in the interaction of users with cloud services that removes unwarranted trust in the cloud service provider and provisions accessibility for collaborators and shows that SAPPHIRE is a viable extension of collaborative health information systems through the provision of anonymity and enhanced policy administration for the primary data owner.

Collaborative and secure sharing of healthcare data in multi-clouds

Security Models and Requirements for Healthcare Application Clouds

  • Rui ZhangLing Liu
  • Computer Science
    2010 IEEE 3rd International Conference on Cloud Computing
  • 2010
An EHR security reference model for managing security issues in healthcare clouds is described, which highlights three important core components in securing an EHR cloud.

Secure sharing of electronic health records in clouds

  • Ruoyu WuGail-Joon AhnHongxin Hu
  • Computer Science, Medicine
    8th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom)
  • 2012
This work proposes a systematic access control mechanism to support selective sharing of composite electronic health records (EHRs) aggregated from various healthcare providers in clouds and ensures that privacy concerns are accommodated for processing access requests to patients' healthcare information.

Cloud-Assisted Mobile-Access of Health Data With Privacy and Auditability

This work proposes to integrate key management from pseudorandom number generator for unlinkability, a secure indexing method for privacy-preserving keyword search, and integrate the concept of attribute-based encryption with threshold signing for providing role-based access control with auditability to prevent potential misbehavior.