Comparative study on attribute-based encryption for health records in cloud storage

摘要

Adoptions of IT technologies in the healthcare facilities has raised protection and security concerns. There has been extensive research in creating methodologies to recognize and prevent insider as well as outsider threats in healthcare frameworks. In the health-care, data security in outsourced storage and un-trusted cloud servers become a challenging concern. Access control model is a productive approach to guarantee the information security in the healthcare framework. Existing Attribute-Based Encryption (ABE) does not satisfy the prerequisite of the health industry and provide secure sharing mechanism for health records. There is no agreement on absolutely what is implied by ABE or the required elements of ABE in the health industry. In this survey, we study existing access control mechanisms to provide security to the health records then study and research on different enforcement models, implementation standards for ABE with policy composition. Additionally, research in regards to the security issues in different ABE schemes and give the development for a multi-authority ABE in light of a novel approach. This survey outlines distinctive ABE schemes with correlation table for healthcare applications in cloud applications as the key criteria. Also, highlights the different ABE schemes with their advantages and disadvantages. We argue which ABE model is appropriate for healthcare application for storing records on cloud storage.