Enhancing Security for Cloud-Based Electronic Health Records through Context-Aware Access Controls

Abinaya Pandiyarajan; Senthil Kumar Jagatheesaperumal; Anits Sherin J; Subriya C

doi:10.2478/ias-2025-0010

.blurhash-client-img { display: none !important; }

Enhancing Security for Cloud-Based Electronic Health Records through Context-Aware Access Controls

Journal of Information Assurance and Security

Volume 20 (2025): Issue 4 (December 2025)

By: Abinaya Pandiyarajan, Senthil Kumar Jagatheesaperumal, Anits Sherin J and Subriya C

Open Access

|Apr 2026

Abstract

Cloud-based electronic health records (EHRs) are increasingly vulnerable to insider threats, privacy issues, and fine-grained access. Modern state-of-the-art techniques, such Ciphertext-Policy Attribute-Based Encryption (CP-ABE), some-times have scaling problems in actual healthcare settings, high computational costs, and restricted revocation possibilities. In order to overcome these drawbacks, we provide a hybrid security system that integrates symmetric Fernet encryption with CP-ABE, together with a Trusted Third Party (TTP) for key management, policy enforcement, and dynamic role-based access. A time-bound access control mecha-nism, user revocation, and real-time access auditing are all supported by the system. Under a 500-user load with 50 transactions per second, our solution, which was cre-ated using Flask and React.js on a cloud-backed Ubuntu server, exhibits minimal latency—150 ms for registration, 120 ms for login, and 200 ms for 1 MB EHR upload. According to experimental findings, the suggested approach outperforms current methods in terms of cryptographic efficiency and computing cost. Because of this, our platform is useful for actual EHR implementations in addition to being scalable and safe.

References

J. Liu, J. Qin, W. Wang, L. Mei, and H. Wang, “Key-aggregate based access control encryption for flexible cloud data sharing,” Computer Standards & Interfaces, vol. 88, p. 103800, Mar. 2024.
Search in Google Scholar Back to article
Y. Baseri, A. Hafid, M. D. Firoozjaei, S. Cherkaoui, and I. Ray, “Statistical privacy protection for secure data access control in cloud,” Journal of Information Security and Applications, vol. 84, p. 103823, Aug. 2024.
Search in Google Scholar Back to article
Q. Li, G. Liu, Q. Zhang, L. Han, W. Chen, R. Li, and J. Xiong, “Efficient and fine-grained access control with fully-hidden policies for cloud-enabled iot,” Digital Communications and Networks, 2024.
Search in Google Scholar Back to article
J. C. Ferreira, L. B. Elvas, R. Correia, and M. Mascarenhas, “Enhancing ehr interoperability and security through distributed ledger technology: A review,” Healthcare, vol. 12, no. 19, p. 1967, 2024.
Search in Google Scholar Back to article
A. Alabdulatif, I. Khalil, and V. Mai, “Protection of electronic health records (ehrs) in cloud,” in 35th Annual International Conference of the IEEE Engineering in Medicine and Biology Society (EMBC), Osaka, Japan, Jul. 2013, pp. 2234–2237.
Search in Google Scholar Back to article
P. Pawar, V. K. Kasula, A. Bhuvanesh, D. Kumar, A. R. Yadulla, and R. Keerthanadevi, “Exploring blockchain-enabled secure storage and trusted data sharing mechanisms in iot systems,” in Proc. 2025 IEEE Int. Conf. Interdisciplinary Approaches in Technology and Management for Social Innovation (IATMSI), vol. 3, 2025, pp. 1–6.
Search in Google Scholar Back to article
K. Ma, G. Song, Y. Zhou, R. Xu, and B. Yang, “An efficient identity authentication protocol with revocation, tracking and fine-grained access control for electronic medical system,” Computer Standards & Interfaces, vol. 88, p. 103784, Mar. 2024.
Search in Google Scholar Back to article
B. Waters, “Ciphertext-policy attribute-based encryption: An expressive, efficient, and provably secure realization,” in International Workshop on Public Key Cryptography (PKC 2008). Springer Berlin Heidelberg, 2008, pp. 53–70.
Search in Google Scholar Back to article
H. Wang, J. Liang, Y. Ding, S. Tang, and Y. Wang, “Ciphertext-policy attributebased encryption supporting policy-hiding and cloud auditing in smart health,” Computer Standards & Interfaces, vol. 84, p. 103696, Jan. 2023.
Search in Google Scholar Back to article
A. W. C. D’Layla, N. J. D. L. Croix, T. Ahmad, and F. Han, “Ehr-protect: A steganographic framework based on data-transformation to protect electronic health records,” Intelligent Systems with Applications, vol. 26, p. 200493, 2025.
Search in Google Scholar Back to article
Y. Zhang, D. Zhang, and H. Deng, “Security and privacy in smart health: Efficient policy-hiding attribute-based access control,” IEEE Internet of Things Journal, vol. 5, no. 3, pp. 2130–2145, Jun. 2018.
Search in Google Scholar Back to article
L. Zhang, K. Li, K. Sun, D. Wu, Y. Liu, H. Tian, and Y. Liu, “Acf ix: Guiding llms with mined common rbac practices for context-aware repair of access control vulnerabilities in smart contracts,” IEEE Transactions on Software Engineering, 2025.
Search in Google Scholar Back to article
A. Punia, P. Gulia, N. S. Gill, E. Ibeke, C. Iwendi, and P. K. Shukla, “A systematic review on blockchain-based access control systems in cloud environment,” Journal of Cloud Computing, vol. 13, no. 1, p. 146, 2024.
Search in Google Scholar Back to article
R. Nzeako and R. A. Shittu, “Leveraging ai for enhanced identity and access management in cloud-based systems to advance user authentication and access control,” World Journal of Advanced Research and Reviews, vol. 24, no. 3, pp. 1661–1674, 2024.
Search in Google Scholar Back to article
S. Potluri, “A zero trust-based identity and access management framework for crosscloud federated networks,” International Journal of Emerging Research in Engineering and Technology, vol. 5, no. 2, pp. 28–40, 2024.
Search in Google Scholar Back to article
S. Potluri, “Multi-layered security policy enforcement for confidential data in serverless cloud functions,” International Journal of Emerging Trends in Computer Science and Information Technology, vol. 6, no. 1, pp. 134–144, 2025.
Search in Google Scholar Back to article
K. Gu, W. Zhang, and X. Li, “Self-verifiable attribute-based keyword search scheme for distributed data storage in fog computing with fast decryption,” IEEE Transactions on Network and Service Management, vol. 19, no. 1, pp. 271–288, Mar. 2022.
Search in Google Scholar Back to article
H. Gardiyawasam and V. Oleshchuk, “A delegatable attribute based encryption scheme for a collaborative e-health cloud,” IEEE Transactions on Services Computing, vol. 16, no. 2, pp. 787–801, Mar. 2023.
Search in Google Scholar Back to article
X. Chen and X. Huang, “Rs-habe: Revocable-storage and hierarchical attributebased access scheme for secure sharing of e-health records in public cloud,” IEEE Transactions on Dependable and Secure Computing, vol. 18, no. 5, pp. 2301–2315, Sep. 2021.
Search in Google Scholar Back to article
M. R. H. Aminy, N. J. D. L. Croix, and T. Ahmad, “A reversible data hiding approach in medical images using difference expansion,” in Proc. IEEE 15th Int. Conf. Comput. Intell. Commun. Netw. (CICN), 2023, pp. 353–362
Search in Google Scholar Back to article

Articles in this issue

DOI: https://doi.org/10.2478/ias-2025-0010 | Journal eISSN: 1554-1029 | Journal ISSN: 1554-1010

Journal RSS Feed

Language: English

Page range: 159 - 179

Published on: Apr 28, 2026

Published by: Cerebration Science Publishing Co., Limited

In partnership with: Paradigm Publishing Services

Publication frequency: 6 issues per year

Keywords:

EHR Security,

Encryption,

Key Management,

Trusted Third Party (TTP),

Access Control,

Privacy

Related subjects:

Computer sciences,

Fundamentals of computer sciences,

Theoretical computer sciences,

IT-security and cryptology

© 2026 Abinaya Pandiyarajan, Senthil Kumar Jagatheesaperumal, Anits Sherin J, Subriya C, published by Cerebration Science Publishing Co., Limited
This work is licensed under the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 License.

Volume 20 (2025): Issue 4 (December 2025)