Biometric based Multi-Authority Inner Product Encryption for Electronic Health Record

INTRODUCTION: Attribute-based encryption enhances the security of electronic health records outsourced to the cloud. At thesame time, single authority attribute based encryption leads to user privacy breech and attribute management complexity.Multi authority attribute-based encryption enhances user privacy and attribute management, but lacks privacy and integrityof data. Therefore, biometric-based multi-authority inner product encryption is proposed to improve data integrity, dataprivacy, and user privacy.OBJECTIVES: The proposed scheme aims to enhance data integrity, data privacy, and user privacy in cloud-based ElectronicHealth Record.METHODS: An exhaustive literature review has been made related to securing electronic health record outsourced to thecloud and found that data integrity is lacking in existing schemes. So an efficient encryption scheme has been proposedwhich adopts elliptic curve cryptography to enhance data integrity. The security analysis and computational complexity ofthe proposed scheme is done and compared with existing schemes.RESULTS: The proposed scheme guarantees data integrity and privacy of the sensitive information stored in the electronichealth records. The scheme also satisfied the security requirements user privacy, fine-grained access control, andscalability needed for electronic health record outsourced to the cloud. The computational complexity of the proposedscheme is compared with the existing schemes. The result shows that user access rejection complexity and key generationcomplexity are comparatively low.CONCLUSION: Biometric, as a global identifier of the user, could improve data integrity for the electronic health recordsoutsourced to the cloud. Multi-authority Inner Product Encryption hides the access structure, along with the data, couldimprove data privacy and user privacy. Employing NOT gate in the access structure reduces user access rejectioncomplexity.