Healthcare SaaS Based on a Data Model with Built-In Security and Privacy

Cloud computing is a major technology enabler for providing efficient services at affordable costs by reducing the costs of traditional software and hardware licensing models. As it continues to evolve, it is widely being adopted by healthcare organisations. But hosting healthcare solutions on cloud is challenging in terms of security and privacy of health data. To address these challenges and to provide security and privacy to health data on the cloud, the authors present a Software-as-a-Service (SaaS) application with a data model with built-in security and privacy. This data model enhances security and privacy of the data by attaching security levels in the data itself expressed in the form of XML instead of relying entirely on application level access controls. They also present the performance evaluation of their application using this data model with different scaling indicators. To further investigate the adoption of IT and cloud computing in Indian healthcare industry they have done a survey of some major hospitals in India.

[1]  P. Mell,et al.  The NIST Definition of Cloud Computing , 2011 .

[2]  Ruchika Asija,et al.  Data model to enhance the security and privacy of healthcare data , 2014, 2014 IEEE Global Humanitarian Technology Conference - South Asia Satellite (GHTC-SAS).

[3]  Chander Kant,et al.  Enhanced Security Architecture for Cloud Data Security , 2013 .

[4]  Alessandro Casavola,et al.  A feedback min-max MPC algorithm for LPV systems subject to bounded rates of change of parameters , 2002, IEEE Trans. Autom. Control..

[5]  Christopher Kuner Data Protection Law and International Jurisdiction on the Internet(Part 1) , 2010, Int. J. Law Inf. Technol..

[6]  Chenguang He,et al.  HCloud: A novel application-oriented cloud platform for preventive healthcare , 2012, 4th IEEE International Conference on Cloud Computing Technology and Science Proceedings.

[7]  Wouter Joosen,et al.  A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements , 2011, Requirements Engineering.

[8]  Ilias Maglogiannis,et al.  Mobile healthcare information management utilizing Cloud Computing and Android OS , 2010, 2010 Annual International Conference of the IEEE Engineering in Medicine and Biology.

[9]  E. M. Mohamed,et al.  Enhanced data security model for cloud computing , 2012, 2012 8th International Conference on Informatics and Systems (INFOS).

[10]  Eugene J. Schweitzer,et al.  Reconciliation of the cloud computing model with US federal electronic health record regulations , 2012, J. Am. Medical Informatics Assoc..

[11]  Jinan Fiaidhi,et al.  HCX: A Distributed OSGi Based Web Interaction System for Sharing Health Records in the Cloud , 2010, 2010 IEEE/WIC/ACM International Conference on Web Intelligence and Intelligent Agent Technology.

[12]  J. Bustamante,et al.  A mobile application for ambulatory electrocardiographic monitoring in clinical and domestic environments , 2013, 2013 Pan American Health Care Exchanges (PAHCE).

[13]  Jorge Werner,et al.  A Cloud Computing Solution for Patient's Data Collection in Health Care Institutions , 2010, 2010 Second International Conference on eHealth, Telemedicine, and Social Medicine.

[14]  Janice C. Sipior,et al.  The Internet Jurisdiction Risk of Cloud Computing , 2010, Inf. Syst. Manag..

[15]  Hyotaek Lim,et al.  Security System for Healthcare Data in Cloud Computing , 2014 .

[16]  C. Redhead The Health Information Technology for Economic and Clinical Health (HITECH) Act , 2009 .

[17]  Cong Wang,et al.  Achieving Secure, Scalable, and Fine-grained Data Access Control in Cloud Computing , 2010, 2010 Proceedings IEEE INFOCOM.

[18]  Milan Petkovic,et al.  A Home Healthcare System in the Cloud--Addressing Security and Privacy Challenges , 2011, 2011 IEEE 4th International Conference on Cloud Computing.

[19]  États-Unis Uniting and strengthening America by providing appropriate tools required to intercept and obstruct terrorism (USA patriot act) Act of 2001 , 2001 .