Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Tehsin Kanwal; Ather Abdul Jabbar; Adeel Anjum; Saif U.R. Malik; Abid Khan; Naveed Ahmad; Umar Manzoor; Muhammad Naeem Shahzad; Muhammad A. Balubaid

doi:10.1177/1550147719846050

Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Tehsin Kanwal, Ather Abdul Jabbar, Adeel Anjum, Saif U.R. Malik^*, Abid Khan, Naveed Ahmad, Umar Manzoor, Muhammad Naeem Shahzad, Muhammad A. Balubaid

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

Abstract

State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

Original language	English
Number of pages	24
Journal	International Journal of Distributed Sensor Networks
Volume	15
Issue number	6
Early online date	21 Jun 2019
DOIs	https://doi.org/10.1177/1550147719846050
Publication status	Published - Jun 2019

Bibliographical note

© The Author(s) 2019. This article is distributed under the terms of the Creative Commons Attribution 4.0 License (http://www.creativecommons.org/licenses/by/4.0/) which permits any use, reproduction and distribution of the work without further permission provided the original work is attributed as specified on the SAGE and Open Access pages (https://us.sagepub.com/en-us/nam/open-access-at-sage).

Keywords

access control
cryptography
Electronic health records
hybrid cloud
privacy
relationship

Access to Document

10.1177/1550147719846050Licence: CC BY 4.0

Privacy_aware_relationship_semantics
© The Author(s) 2019. This article is distributed under the terms of the Creative Commons Attribution 4.0 License (http://www.creativecommons.org/licenses/by/4.0/) which permits any use, reproduction and distribution of the work without further permission provided the original work is attributed as specified on the SAGE and Open Access pages (https://us.sagepub.com/en-us/nam/open-access-at-sage).
Final published version, 2.06 MBLicence: CC BY 4.0

Cite this

@article{c00d7d72af13489d9625b3d275746c91,

title = "Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud",

abstract = "State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.",

keywords = "access control, cryptography, Electronic health records, hybrid cloud, privacy, relationship",

author = "Tehsin Kanwal and Jabbar, {Ather Abdul} and Adeel Anjum and Malik, {Saif U.R.} and Abid Khan and Naveed Ahmad and Umar Manzoor and Shahzad, {Muhammad Naeem} and Balubaid, {Muhammad A.}",

note = "{\textcopyright} The Author(s) 2019. This article is distributed under the terms of the Creative Commons Attribution 4.0 License (http://www.creativecommons.org/licenses/by/4.0/) which permits any use, reproduction and distribution of the work without further permission provided the original work is attributed as specified on the SAGE and Open Access pages (https://us.sagepub.com/en-us/nam/open-access-at-sage).",

year = "2019",

month = jun,

doi = "10.1177/1550147719846050",

language = "English",

volume = "15",

journal = "International Journal of Distributed Sensor Networks",

issn = "1550-1329",

publisher = "Hindawi Limited",

number = "6",

}

TY - JOUR

T1 - Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

AU - Kanwal, Tehsin

AU - Jabbar, Ather Abdul

AU - Anjum, Adeel

AU - Malik, Saif U.R.

AU - Khan, Abid

AU - Ahmad, Naveed

AU - Manzoor, Umar

AU - Shahzad, Muhammad Naeem

AU - Balubaid, Muhammad A.

N1 - © The Author(s) 2019. This article is distributed under the terms of the Creative Commons Attribution 4.0 License (http://www.creativecommons.org/licenses/by/4.0/) which permits any use, reproduction and distribution of the work without further permission provided the original work is attributed as specified on the SAGE and Open Access pages (https://us.sagepub.com/en-us/nam/open-access-at-sage).

PY - 2019/6

Y1 - 2019/6

N2 - State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

AB - State-of-the-art progress in cloud computing encouraged the healthcare organizations to outsource the management of electronic health records to cloud service providers using hybrid cloud. A hybrid cloud is an infrastructure consisting of a private cloud (managed by the organization) and a public cloud (managed by the cloud service provider). The use of hybrid cloud enables electronic health records to be exchanged between medical institutions and supports multipurpose usage of electronic health records. Along with the benefits, cloud-based electronic health records also raise the problems of security and privacy specifically in terms of electronic health records access. A comprehensive and exploratory analysis of privacy-preserving solutions revealed that most current systems do not support fine-grained access control or consider additional factors such as privacy preservation and relationship semantics. In this article, we investigated the need of a privacy-aware fine-grained access control model for the hybrid cloud. We propose a privacy-aware relationship semantics–based XACML access control model that performs hybrid relationship and attribute-based access control using extensible access control markup language. The proposed approach supports fine-grained relation-based access control with state-of-the-art privacy mechanism named Anatomy for enhanced multipurpose electronic health records usage. The proposed (privacy-aware relationship semantics–based XACML access control model) model provides and maintains an efficient privacy versus utility trade-off. We formally verify the proposed model (privacy-aware relationship semantics–based XACML access control model) and implemented to check its effectiveness in terms of privacy-aware electronic health records access and multipurpose utilization. Experimental results show that in the proposed (privacy-aware relationship semantics–based XACML access control model) model, access policies based on relationships and electronic health records anonymization can perform well in terms of access policy response time and space storage.

KW - access control

KW - cryptography

KW - Electronic health records

KW - hybrid cloud

KW - privacy

KW - relationship

UR - https://journals.sagepub.com/doi/10.1177/1550147719846050

U2 - 10.1177/1550147719846050

DO - 10.1177/1550147719846050

M3 - Article

AN - SCOPUS:85067799504

SN - 1550-1329

VL - 15

JO - International Journal of Distributed Sensor Networks

JF - International Journal of Distributed Sensor Networks

IS - 6

ER -

Privacy-aware relationship semantics–based XACML access control model for electronic health records in hybrid cloud

Abstract

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this