Protecting Personal Health Record System using Attribute-Based Encryption

Personal health record is maintain in the centralize server to maintain patient’s personal and diagnosis information. Personal health record (PHR) is an emerging patient-centric model of health information exchange, which is often outsourced to be stored at a third party, such as cloud providers. However, there have been wide privacy concerns as personal health information could be exposed to those third party servers and to unauthorized parties. The security schemes are used to protect personal data from public access. To assure the patients’ control over access to their own PHRs, it is a promising method to encrypt the PHRs before outsourcing. In the greater part of the past plans, in spite of the fact that the entrance policy is hidden, they face two functional issues: (1) these plans don’t bolster huge attribute universe, so their reasonableness in PHR is significantly restricted, and (2) the expense of decryption is particularly high since the entrance policy is installed in ciphertext. To address these issues, we build a CP-ABE plot with effective decryption, where both the size of open parameters and the expense of decryption are steady. It needs to keep multiple encrypted copies of the same key that incurs high computational costs. So, there is a need for a suitable access control mechanism that should support effective policies.