The widespread acceptance of cloud based services in healthcare sector has resulted in cost effective and convenient exchange of Personal Health Records (PHRs) among several participating entities of the e-Health systems. Nevertheless, storing confidential health information to cloud servers is susceptible to revelation or theft and calls for the development of methodologies that ensure the privacy of the PHRs. Therefore, we propose a methodology called SeSPHR for secure sharing of the PHRs in the cloud. The SeSPHR scheme ensures patient-centric control on the PHRs and preserves the confidentiality of the PHRs. The patients store the encrypted PHRs on the un-trusted cloud servers and selectively grant access to different types of users on different portions of the PHRs. A semi-trusted proxy called Setup and Re-encryption Server (SRS) is introduced to set up the public/private key pairs and to produce the re-encryption keys. Moreover, the methodology is secure against insider threats and also enforces a forward and backward access control. Furthermore, we formally analyze and verify the working of SeSPHR methodology through High Level Petri Nets (HLPN). Performance evaluation with regard to time consumption indicates that the SeSPHR methodology has potential to be employed for securely sharing the PHRs in the cloud.

中文翻译：

---

SeSPHR：一种在云中安全共享个人健康记录的方法

医疗保健部门对基于云的服务的广泛接受导致了电子健康系统的多个参与实体之间的个人健康记录 (PHR) 的经济高效和便捷的交换。然而，将机密健康信息存储到云服务器很容易泄露或被盗，因此需要开发确保 PHR 隐私的方法。因此，我们提出了一种称为 SeSPHR 的方法，用于在云中安全共享 PHR。SeSPHR 方案确保以患者为中心对 PHR 进行控制并保护 PHR 的机密性。患者将加密的 PHR 存储在不受信任的云服务器上，并选择性地授予 PHR 不同部分上不同类型用户的访问权限。引入了一种称为设置和重新加密服务器 (SRS) 的半可信代理来设置公钥/私钥对并生成重新加密密钥。此外，该方法对内部威胁是安全的，并且还强制执行向前和向后访问控制。此外，我们通过高级 Petri 网（HLPN）正式分析和验证了 SeSPHR 方法的工作。关于时间消耗的性能评估表明，SeSPHR 方法具有用于在云中安全共享 PHR 的潜力。我们通过高级 Petri 网（HLPN）正式分析和验证 SeSPHR 方法的工作。关于时间消耗的性能评估表明，SeSPHR 方法具有用于在云中安全共享 PHR 的潜力。我们通过高级 Petri 网（HLPN）正式分析和验证 SeSPHR 方法的工作。关于时间消耗的性能评估表明，SeSPHR 方法具有用于在云中安全共享 PHR 的潜力。