Tian‑Fu Leea*, Jyun‑Guo Wanga, Yen‑Chang Chenb,c
aDepartment of Medical Informatics, Tzu Chi University, Hualien, Taiwan, bDepartment of Anatomical Pathology, Hualien Tzu Chi Hospital, Buddhist Tzu Chi Medical Foundation, Hualien, Taiwan, cInstitute of Medical Sciences, Tzu Chi University, Hualien, Taiwan
Open Access funded by Buddhist Compassion Relief Tzu Chi Foundation
Abstract
Key management schemes for hierarchical access control enable users who have hierarchical relationships with each other to manage their secret keys efficiently. In these schemes, the users are divided into several groups, and all groups have their own central authorities. Each central authority is responsible for setting parameters and generating user’s secret keys in a hierarchical structure such that all users efficiently derive their secret keys and solve dynamic access control problems. Several key management schemes with Health Insurance Portability Accountability Act regulations were recently proposed for hierarchical access control in e‑medicine systems. However, these schemes either are insecure or require a large amount of storage and heavy computations. Therefore, this study reviews and discusses hierarchical access control schemes with privacy/security regulations for medical record databases.
Keywords: Access control, E‑medicine systems, Hierarchical, Medical information security