S3PHER: Secure and Searchable System for Patient-driven HEalth data shaRing
Ivan Costa, Ivone Amorim, Eva Maia, Pedro Barbosa, Isabel Praca
TL;DR
This paper addresses secure patient centered sharing of health data and consent management by combining Proxy Re-Encryption, Searchable Encryption, and Homomorphic Encryption. S3PHER provides two integrated modules Data Sharing and SE enabling patients to grant revoke and audit access while enabling private search over encrypted medical data. The authors implement these ideas in Rust using Umbral PRE and TFHE based SE and validate performance with end to end simulations and real datasets. Results indicate scalable performance with respect to data size and keyword dimensionality, supporting practical deployment for GDPR HIPAA compliant healthcare data sharing.
Abstract
Healthcare data contains some of the most sensitive information about an individual, yet sharing this data with healthcare practitioners can significantly enhance patient care and support research efforts. However, current systems for sharing health data between patients and caregivers do not fully address the critical security requirements of privacy, confidentiality, and consent management. Furthermore, compliance with regulatory laws such as GDPR and HIPAA is often deficient, largely because patients typically are asked to provide general consent for healthcare entities to access their data. Recognizing the limitations of existing systems, we present S3PHER, a novel approach to sharing health data that provides patients with control over who accesses their data, what data is accessed, and when. Our system ensures end to end privacy by integrating a Proxy ReEncryption Scheme with a Searchable Encryption Scheme, utilizing Homomorphic Encryption to enable healthcare practitioners to privately search and access patients' documents. The practicality and benefits of S3PHER are further validated through end to end deployment and use case analyses, with tests on real datasets demonstrating promising execution times.