Securing electronic medical records using attribute-based encryption on mobile devices

Joseph A. Akinyele, Matthew W. Pagano, Matthew D. Green, Christoph U. Lehmann, Zachary N J Peterson, Aviel D. Rubin

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.

Original languageEnglish (US)
Title of host publicationProceedings of the ACM Conference on Computer and Communications Security
Pages75-86
Number of pages12
DOIs
StatePublished - 2011
Event1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, SPSM'11, Held in Association with the 18th ACM Conference on Computer and Communications Security, CCS 2011 - Chicago, IL, United States
Duration: Oct 17 2011Oct 17 2011

Other

Other1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, SPSM'11, Held in Association with the 18th ACM Conference on Computer and Communications Security, CCS 2011
CountryUnited States
CityChicago, IL
Period10/17/1110/17/11

Fingerprint

Electronic medical equipment
Mobile devices
Cryptography
Smartphones
Application programs
Access control
Availability

Keywords

  • access control
  • attribute-based encryption
  • continuity of care record
  • electronic medical record
  • medical security
  • mobile device
  • privacy
  • public-key cryptography

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Akinyele, J. A., Pagano, M. W., Green, M. D., Lehmann, C. U., Peterson, Z. N. J., & Rubin, A. D. (2011). Securing electronic medical records using attribute-based encryption on mobile devices. In Proceedings of the ACM Conference on Computer and Communications Security (pp. 75-86) https://doi.org/10.1145/2046614.2046628

Securing electronic medical records using attribute-based encryption on mobile devices. / Akinyele, Joseph A.; Pagano, Matthew W.; Green, Matthew D.; Lehmann, Christoph U.; Peterson, Zachary N J; Rubin, Aviel D.

Proceedings of the ACM Conference on Computer and Communications Security. 2011. p. 75-86.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Akinyele, JA, Pagano, MW, Green, MD, Lehmann, CU, Peterson, ZNJ & Rubin, AD 2011, Securing electronic medical records using attribute-based encryption on mobile devices. in Proceedings of the ACM Conference on Computer and Communications Security. pp. 75-86, 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, SPSM'11, Held in Association with the 18th ACM Conference on Computer and Communications Security, CCS 2011, Chicago, IL, United States, 10/17/11. https://doi.org/10.1145/2046614.2046628
Akinyele JA, Pagano MW, Green MD, Lehmann CU, Peterson ZNJ, Rubin AD. Securing electronic medical records using attribute-based encryption on mobile devices. In Proceedings of the ACM Conference on Computer and Communications Security. 2011. p. 75-86 https://doi.org/10.1145/2046614.2046628
Akinyele, Joseph A. ; Pagano, Matthew W. ; Green, Matthew D. ; Lehmann, Christoph U. ; Peterson, Zachary N J ; Rubin, Aviel D. / Securing electronic medical records using attribute-based encryption on mobile devices. Proceedings of the ACM Conference on Computer and Communications Security. 2011. pp. 75-86
@inproceedings{92deef195a434e89b27ae6bd76bb279f,
title = "Securing electronic medical records using attribute-based encryption on mobile devices",
abstract = "We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.",
keywords = "access control, attribute-based encryption, continuity of care record, electronic medical record, medical security, mobile device, privacy, public-key cryptography",
author = "Akinyele, {Joseph A.} and Pagano, {Matthew W.} and Green, {Matthew D.} and Lehmann, {Christoph U.} and Peterson, {Zachary N J} and Rubin, {Aviel D.}",
year = "2011",
doi = "10.1145/2046614.2046628",
language = "English (US)",
isbn = "9781450310000",
pages = "75--86",
booktitle = "Proceedings of the ACM Conference on Computer and Communications Security",

}

TY - GEN

T1 - Securing electronic medical records using attribute-based encryption on mobile devices

AU - Akinyele, Joseph A.

AU - Pagano, Matthew W.

AU - Green, Matthew D.

AU - Lehmann, Christoph U.

AU - Peterson, Zachary N J

AU - Rubin, Aviel D.

PY - 2011

Y1 - 2011

N2 - We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.

AB - We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.

KW - access control

KW - attribute-based encryption

KW - continuity of care record

KW - electronic medical record

KW - medical security

KW - mobile device

KW - privacy

KW - public-key cryptography

UR - http://www.scopus.com/inward/record.url?scp=80755181009&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80755181009&partnerID=8YFLogxK

U2 - 10.1145/2046614.2046628

DO - 10.1145/2046614.2046628

M3 - Conference contribution

AN - SCOPUS:80755181009

SN - 9781450310000

SP - 75

EP - 86

BT - Proceedings of the ACM Conference on Computer and Communications Security

ER -