Dynamic federation in identity management for securing and sharing personal health records in a patientcentric model in cloud

International Journal of Engineering and Technology

Volumn 5, Issue 3, 2013, Pages 2201-2209

  Singh, Ramkinker ^a   Gupta, Vipra ^a   Mohan, K ^a  

^a VIT UNIVERSITY   (India)

Author keywords

Attribute based encryption; Cloud Computing; Data privacy; Dynamic trust management; Fine grained access control; Identity management; Personal health records; Privacy

Indexed keywords

EID: 84880953053     PISSN: None     EISSN: 09754024     Source Type: Journal    
DOI: None     Document Type: Article

References (33)

1. Rosa Sánchez, Florina Almenares, Patricia Arias, Daniel Díaz-Sánchez, and Andrés Marín "Enhancing Privacy and Dynamic Federation in IdM for Consumer Cloud Computing" IEEE Transactions on Consumer Electronics, Vol. 58, No. 1, February 2012
2. Ming Li, Shucheng Yu, Yao Zheng and Kui Ren, and Wenjing Lou1 "Securing Personal Health Records in Cloud Computing: Patient-centric and Fine-grained Data Access Control in Multi-owner Settings"IEEE Transactions on parallel and distributed systems vol. XX, NO. XX, XX 2012
3. http://docs.oracle.com/cd/B28196_01/idmanage.1014/b25355/intro.htm
4. A. Beloglazov, R. Buyya, Y. C. Lee, and A. Zomaya, "A taxonomy and survey of energy-efficient data centers and cloud computing systems," Univ. of Melbourne, Technical Report CLOUDS-TR-2010-3, 2010.
5. K. D. Mandl, P. Szolovits, and I. S. Kohane, "Public standards and patients' control: how to keep electronic medical records accessible but private," BMJ, vol. 322, no. 7281, p. 283, Feb. 2001.
6. V. Goyal, O. Pandey, A. Sahai, and B. Waters, "Attribute-based encryption for fine-grained access control of encrypted data," in CCS '06, 2006, pp. 89-98.
7. M. Scholl, K. Stine, K. Lin, and D. Steinberg, "Draft security architecture design process for health information exchanges (HIEs)," Report, NIST, 2009.
8. D. F. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn, and R. Chandramouli, "Proposed NIST standard for role-based access control," ACM TISSEC., vol. 4, no. 3, pp. 224-274, 2001.
9. S. D. C. di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Overencryption: management of access control evolution on outsourced data," in VLDB '07, 2007, pp. 123-134.
10. J. Benaloh, M. Chase, E. Horvitz, and K. Lauter, "Patient controlled encryption: ensuring privacy of electronic medical records," in CCSW '09: Proceedings of the 2009 ACM workshop on Cloud computing security, 2009, pp. 103-114.
11. W. Wang, Z. Li, R. Owens, and B. Bhargava, "Secure and efficient access to outsourced data," in CCSW '09, 2009, pp. 55-66.
12. M. Li, W. Lou, and K. Ren, "Data security and privacy in wireless body area networks," IEEE Wireless Communications Magazine, Feb. 2010.
13. L. Ibraimi, M. Petkovic, S. Nikova, P. Hartel, and W. Jonker, "Ciphertext-policy attribute-based threshold decryption with flexible delegation and revocation of user attributes," 2009. [Online]. Available: http://purl.org/utwente/65471
14. S. Yu, C. Wang, K. Ren, and W. Lou, "Achieving secure, scalable, and fine-grained data access control in cloud computing," in IEEE INFOCOM'10, 2010.
15. "Attribute based data sharing with attribute revocation," in ASIACCS'10, 2010.
16. X. Liang, R. Lu, X. Lin, and X. S. Shen, "Patient self-controllable access policy on phi in ehealthcare systems," in AHIC 2010, 2010.
17. S.Grzonkowski and P.Corcoran, "Sharing Cloud Services: User Authentication for Social Enhancement of Home Networking", IEEE Transactions on Consumer Electronics, vol.57, no.3, May 2011.
18. P. Angin, B. Bhargava, R. Ranchal, N. Singh, L. Lilien and L. Ben Othmane, "An Entity-centric Approach for Privacy and Identity Management in Cloud Computing", in Proc. of the 29th IEEE International Symposium on Reliable Distributed Systems (SRDS), pp. 177-183, 2010.
19. A. Celesti, F. Tusa, M. Villari, and A. Puliafito, "Three-Phase Cross-Cloud Federation Model: The Cloud SSO Authentication", 2nd International Conference on Advances in Future Internet (AFIN), 2010.
20. L. Xiong and L. Liu, "PeerTrust: Supporting Reputation-Based Trust for Peer-to-Peer Electronic Communities", IEEE Transactions on Knowledge and Data Eng., vol. 16, no. 7, pp. 843-857, 2004.
21. H. Hexmoor, "Trust-based protocols for regulating online, friend-of-a-friend communities", Journal of Experimental & Theoretical Artificial Intelligence, pp. 1-21, 2009
22. S. Pearson, "Taking Account of Privacy when Designing Cloud Computing Services", in Proc. of the Software Engineering Challenges of Cloud Computing (CLOUD'09), ICSE Workshop, 2009.
23. Federal Trade Commission, "Privacy Online: Fair Information Practices in the Electronic Marketplace", A Federal Trade Commission Report to Congress. Washington DC, May 2000.
24. Federal Trade Commission (FTC), "Protecting Consumer Privacy in an Era of Rapid Change", Preliminary FTC Staff Report, Dec. 2011.
25. A. Cavoukian, "Privacy in the clouds", Identity in the Information Society, Dec. 2008
26. Z. Li, E. Chang, K Huang, and F. Lai, "A Secure Electronic Medical Record Sharing Mechanism in the Cloud Computing Platform", in Proc. of the 15th IEEE International Symposium on Consumer Electronics, 2011.
27. S. D. C. di Vimercati, S. Foresti, S. Jajodia, S. Paraboschi, and P. Samarati, "Over-encryption: management of access control evolution on outsourced data," in VLDB '07, 2007, pp. 123-134. [b28]
28. S. Yu, C. Wang, K. Ren, and W. Lou, "Attribute based data sharing with attribute revocation," in ASIACCS'10, 2010.
29. M. Chase and S. S. Chow, "Improving privacy and security in multi-authority attribute-based encryption," in CCS '09, 2009, pp. 121-130.
30. S. Yu, C. Wang, K. Ren, and W. Lou, "Achieving secure, scalable, and fine-grained data access control in cloud computing," in IEEE INFOCOM'10, 2010.
31. "The health insurance portability and accountability act." [Online]. Available: http://www.cms.hhs.gov/HIPAAGenInfo/01Overview.asp
32. A. Jøsang, R. Ismail, and C. Boyd, "A survey of trust and reputation systems for online service provision", Decision Support System, vol. 43, no. 2, pp. 681-644, Elsevier (ed.), 2007.
33. www.cloudfoundry.com