A Privacy-Preserving Framework for Personally Controlled Electronic Health Record (PCEHR) System

Mahmuda Begum, Quazi Mamun, Mohammed Kaosar

Research output: Book chapter/Published conference paperConference paperpeer-review

23 Downloads (Pure)


The electronic health record (eHR) system has recently been considered one of the biggest advancements in healthcare services. A personally controlled electronic health record (PCEHR) system is proposed by the Australian government to make the health system more agile, secure, and sustainable. Although the PCEHR system claims the electronic health records can be controlled by the patients, healthcare professionals and database/system operators may assist in disclosing the patients’ eHRs for retaliation or other ill purposes. As the conventional methods for preserving the privacy of eHRs solely trust the system operators, these data are vulnerable to be exploited by the authorised personnel in an immoral/unethical way. Furthermore, issues such as the sheer number of eHRs, their sensitive nature, flexible access, and efficient user revocation have remained the most important challenges towards fine-grained, cryptographically enforced data access control. In this paper we propose a patient centric cloud-based PCEHR framework, which employs a homomorphic encryption technique in storing the eHRs. The proposed system ensures the control of both access and privacy of eHRs stored in the cloud database.
Original languageEnglish
Title of host publication2nd Australian eHealth Informatics and Security Conference
Place of PublicationAustralia
PublisherSecurity Research Institute, ECU
Number of pages10
ISBN (Electronic)9780729807159
Publication statusPublished - 2013
EventSecurity Research Institute (SRI) Conference - ECU, Perth, WA, Australia
Duration: 02 Dec 201304 Dec 2013


ConferenceSecurity Research Institute (SRI) Conference


Dive into the research topics of 'A Privacy-Preserving Framework for Personally Controlled Electronic Health Record (PCEHR) System'. Together they form a unique fingerprint.

Cite this