TY - GEN
T1 - Securing electronic medical records using attribute-based encryption on mobile devices
AU - Akinyele, Joseph A.
AU - Pagano, Matthew W.
AU - Green, Matthew D.
AU - Lehmann, Christoph U.
AU - Peterson, Zachary N.J.
AU - Rubin, Aviel D.
PY - 2011
Y1 - 2011
N2 - We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.
AB - We provide a design and implementation of self-protecting electronic medical records (EMRs) using attribute-based encryption on mobile devices. Our system allows healthcare organizations to export EMRs to locations outside of their trust boundary. In contrast to previous approaches, our solution is designed to maintain EMR availability even when providers are offline, i.e., where network connectivity is not available. To balance the needs of emergency care and patient privacy, our system is designed to provide fine-grained encryption and is able to protect individual items within an EMR, where each encrypted item may have its own access control policy. We implemented a prototype system using a new key- and ciphertext-policy attribute-based encryption library that we developed. Our implementation, which includes an iPhone app for storing and managing EMRs offline, allows for flexible and automated policy generation. An evaluation of our design shows that our ABE library performs well, has acceptable storage requirements, and is practical and usable on modern smartphones.
KW - access control
KW - attribute-based encryption
KW - continuity of care record
KW - electronic medical record
KW - medical security
KW - mobile device
KW - privacy
KW - public-key cryptography
UR - http://www.scopus.com/inward/record.url?scp=80755181009&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=80755181009&partnerID=8YFLogxK
U2 - 10.1145/2046614.2046628
DO - 10.1145/2046614.2046628
M3 - Conference contribution
AN - SCOPUS:80755181009
SN - 9781450310000
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 75
EP - 86
BT - SPSM'11 - Proceedings of the 1st ACM Workshop
T2 - 1st ACM Workshop on Security and Privacy in Smartphones and Mobile Devices, SPSM'11, Held in Association with the 18th ACM Conference on Computer and Communications Security, CCS 2011
Y2 - 17 October 2011 through 17 October 2011
ER -