An Access Control Framework for Protecting Personal Electronic Health Records

Izaara, Ambrose Atiheire; Ssembatya, Richard; Kaggwa, Fred

An Access Control Framework for Protecting Personal Electronic Health Records

Files

Ssembatya_Access control_2018.pdf(4.06 MB)

Date

2018

Authors

Izaara, Ambrose Atiheire

Ssembatya, Richard

Kaggwa, Fred

Publisher

The MAURICON 2018 International Conference on Intelligent and Innovative Computing Applications (ICONIC)

Abstract

The increasing expansion of wireless systems and the extensive popularity and usage of mobile devices such as mobile phones and wireless tablets represents a great opportunity to use mobile devices as widespread health data access tools. Unfortunately, some problems impeding the general acceptance of mhealth such as privacy protection, limitation of wireless networks and handheld devices are still common. Challenges such as unreliable data repositories and limited connection speeds in resource-limited environments are also evident. The inadequate capabilities of hand-held devices and wireless systems make these Public Key Cryptography based frameworks unsuitable for mobile networks. Moreover, these protocols were designed to preserve the customary flow of health data, which is vulnerable to attack and increase the user’s risk. This research drew its foundations from literature and theoretical review and used qualitative approaches. In this paper, the researchers build on existing concepts of Medical Information Systems and use of Symmetric Key Infrastructure to design a framework for secure access to personal electronic health records. The framework provides identity protection for a patient from all forms of unauthorised data access. The framework not only reduces the computational operations between the engaging parties, but also achieves privacy protection for the user. Validation results from ICT experts demonstrate that the designed framework is applicable to secure access to personal medical health records in resource-limited settings.

Description

This paper was presented and part of the proceedings of The MAURICON 2018 International Conference on Intelligent and Innovative Computing Applications (ICONIC).

Keywords

Personal health records, Electronic - Security aspects, Electronic health records

Cite item using this URI

https://hdl.handle.net/20.500.11951/665

Collections

Faculty of Engineering, Design and Technology

Full item page