A Patient-centric, Attribute-based, Source-verifiable Framework for Health Record Sharing

Abstract

The storage of health records in electronic format, and the
\nwide-spread sharing of these records among different health
\ncare providers, have enormous potential benefits to the U.S.
\nhealthcare system. These benefits include both improving
\nthe quality of health care delivered to patients and reducing
\nthe costs of delivering that care. However, maintaining the
\nsecurity of electronic health record systems and the privacy
\nof the information they contain is paramount to ensure that
\npatients have confidence in the use of such systems. In this
\npaper, we propose a framework for electronic health record
\nsharing that is patient centric, i.e. it provides patients with
\nsubstantial control over how their information is shared and
\nwith whom; provides for verifiability of original sources of
\nhealth information and the integrity of the data; and permits fine-grained decisions about when data can be shared
\nbased on the use of attribute-based techniques for authorization and access control. We present the architecture of the
\nframework, describe a prototype system we have built based
\non it, and demonstrate its use within a scenario involving
\nemergency responders' access to health record information.

Ähnliche Arbeiten