PROXY ACCESS VERIFICATION ON HIDING SENSITIVE DATA IN EMERGENCY
PATIENT CASE
Abstract: This systematic study explores the use
of Electronic Health Records (EHRs) to
enhance interoperability among healthcare
institutions while ensuring patient privacy and
confidentiality. EHRs consist of structured
data, including text and images, designed with
the objectives of decentralization, security,
transparency, and traceability. Utilizing
cryptographic systems, the study examines
existing security and privacy measures in EHR
implementations. However, challenges arise
during data extraction on the proxy server side,
as full decryption in emergency cases may
inadvertently expose sensitive information. To
address this, a solution is proposed that employs
a data hashing algorithm and a Private Key
Generator (PKG) for proxy access to patient
data in emergencies while concealing sensitive
details. This approach enhances data security
by selectively masking sensitive information in
medical reports. The analysis reveals a gap in
the literature regarding the combined
implementation of these security protocols,
emphasizing the need for robust authentication,
authorization, and access control mechanisms,
as well as improved privacy protection for both
data and images in EHR systems.
Keywords: Electronic Health Records,
Structured Data, Cryptographic Systems, Proxy
Server Side, Data Hashing Algorithm, Privacy
Protection.
1. INTRODUCTION
The adoption of Electronic Health Records
(EHRs) has become a cornerstone for improving
healthcare interoperability and ensuring efficient
management of patient health information across
medical institutions. EHR systems store
structured data, including textual and imaging
records, with a focus on decentralization,
security, transparency, and traceability. Despite
significant advances in the development of
EHRs, ensuring robust privacy and security
while maintaining accessibility during critical
medical situations remains a challenge. In
emergency scenarios, full decryption of EHR
data is often required to provide life-saving care;
however, this can inadvertently expose sensitive
patient information, leading to potential privacy
breaches.
To address these concerns, this study proposes an
enhanced security framework for EHR systems,
utilizing cryptographic techniques such as data
hashing and Private Key Generators (PKGs) to
facilitate secure proxy access to patient data.
This framework ensures that critical medical
information is accessible while sensitive details
remain protected, even in urgent circumstances.
By implementing a dual-layered security
approach, including privacy-preserving
algorithms and controlled access protocols, this
project aims to improve EHR system integrity
and address the current gaps in safeguarding
patient confidentiality. The proposed method not
only enhances data protection but also ensures
compliance with healthcare regulations, offering
a comprehensive solution for secure and efficient
EHR management.
2. LITERATURE SURVEY
Wenting Shen; Jing Qin; Jia Yu; Rong
Hao; Jiankun Hu [1] Cloud storage services
enable users to store and share data remotely, but
ensuring data integrity while protecting sensitive
information remains a challenge. This paper
proposes a remote data integrity auditing scheme
that allows data sharing with hidden sensitive
information. The scheme uses a sanitizer to
modify sensitive data blocks and generate valid
signatures for integrity verification, ensuring
both secure data sharing and efficient integrity
auditing. By leveraging identity-based
cryptography, the scheme simplifies certificate
management while maintaining security and
performance.
Yi-Hui Chen; Pei-Yu Lin [2] Cloud services,
while convenient, pose security risks such as
privacy breaches and unauthorized access. This
paper presents a reversible data embedding
scheme using Hamming coding for encrypted
images, allowing sensitive data to be securely
embedded and later extracted, with the image
fully restored to its original state. Compared to
existing methods, this scheme offers a higher
data hiding capacity, with experimental results
demonstrating its effectiveness.
Himanshu Makkar; Durga Toshniwal; Shalini
Jangra [3] Frequent item set mining identifies
associations and patterns in transactional datasets
for decision-making, such as product co-
purchase and price optimization. However,
sensitive patterns within these datasets may
expose confidential information, prompting the
need for Privacy Preserving Data Mining
(PPDM) techniques. This paper proposes two
heuristics-based algorithms, MaxRCSI and
MinRCSI, for hiding sensitive patterns by
sanitizing closed sensitive itemsets, improving
data utility. Parallelized on the Spark framework,
these algorithms show enhanced privacy
preservation and utility with lower execution
time compared to traditional methods in real and
synthetic datasets.
V Vilasini; K Hariharan; Nethra Chezhian; D
Kaviyarasu [4] In today's digital age, the
increasing volume of data underscores the need
for robust security measures to protect sensitive
information from cyber threats. This project
implements a two-level authentication system for
secure data storage, utilizing Auth for first-level
authentication to offer convenient access and
Advanced Encryption Standard (AES) with user-
generated patterns as a hidden encryption layer
for the second level. This combination enhances
data security by ensuring confidentiality and
integrity during storage and access.
Boyang Li [5] Current reversible data hiding
methods often have fixed data capacity when
applied to a specific host media, lacking
scalability. To address this, this paper introduces
a fusion of reversible image data hiding with
lightweight encryption to securely hide multiple
types of sensitive data, offering scalable
capacity. By dividing images into non-
overlapping sub-blocks and applying histogram
shifting on each block, the scheme efficiently
hides data with minimal impact on image
fidelity, as demonstrated in experiments using
standard grayscale images, with the approach
being equally applicable to color images.
Fatina Shukur; Ahmed Fatlawi [6] In recent
years, wearable devices have gained popularity
due to their ease of use, affordability, and wide
range of services. However, they collect sensitive
personal data, raising concerns about privacy and
security. This research proposes a wearable
security protocol designed to protect user identity
and sensitive data without compromising data
quality, ensuring privacy while enabling secure
data processing across various applications.
Amare Genetu; Tesfa Tegegne [7] Sensitive
information, if disclosed, can harm its owner and
requires detection and classification for
protection. Due to the linguistic uniqueness of
Amharic, models from other languages cannot be
directly applied. To address this, we proposed a
model for detecting and classifying personal
sensitive information in Amharic texts,
experimenting with LSTM, BI-LSTM, and CNN.
The BI-LSTM achieved the highest accuracy,
90% for sensitivity classification and 93% for
domain classification, outperforming the other
models.
Lulu Xue; Jiani Li; Kejia Zhang; Tianqiu Yu [8]
Existing multi-authority attribute-based
encryption (MA-ABE) schemes with policy
hiding rely on a centralized authority (CA) to
manage attributes and generate partial decryption
keys, which raises security concerns. This paper
introduces a decentralized MA-ABE scheme that
eliminates the need for a CA by distributing
attribute management across multiple attribute
authorities (AAs), enhancing security. The
proposed scheme incorporates an exponential
operation during encryption and key generation,
improving protection of sensitive data while
maintaining full security, as validated through
performance analysis.
Asha S; Punitha. K; Tanmay Joshi [9] As data
growth makes local storage challenging, many
users opt for cloud storage, which enables remote
data access. In scenarios like healthcare,
sensitive data stored in the cloud should not be
shared openly. This paper proposes a solution
that uses a sanitizer to hide sensitive data by
modifying related data blocks and signatures
while allowing secure data sharing and efficient protected and usable within healthcare
integrity auditing. Built on identity-based environments.
cryptography, the proposed method simplifies
certificate management and demonstrates strong
security and efficiency in performance analysis.
Janaki Sivakumar; Mazhar Malik; Arun Sekar
Rajasekaran [10] Cloud storage services enable 4. PROPOSED SYSTEM
users to store and share data, but ensuring data
integrity, particularly for sensitive information, is This project proposes a secure cloud storage
crucial. In systems like electronic health records, system that addresses the challenge of data
encrypting entire files protects privacy but sharing with sensitive information hiding in
restricts access for others. This method sanitizes Electronic Health Record (EHR) systems while
sensitive data blocks and updates signatures for supporting remote data integrity auditing. The
secure sharing while still allowing efficient system introduces a privacy-preserving public
remote integrity audits without exposing private auditing scheme that allows users to share data
information. without revealing sensitive information. To
achieve this, the system selectively encrypts
3. EXISTING SYSTEM sensitive portions of the shared file, ensuring that
non-sensitive data remains accessible, while
In the current system, patient medical records are sensitive information is hidden from
secured using cryptographic techniques to ensure unauthorized users.
confidentiality and integrity. This approach
The proposed framework integrates a Third-
minimizes Third-Party Auditor (TPA) access and
Party Auditor (TPA) to verify the integrity of
safeguards patient health data by encrypting the
outsourced data without compromising user
entire medical record before storing it in the
privacy or imposing additional burdens on the
database. However, the challenge of preserving
user. The TPA can efficiently conduct audits for
patient privacy in Electronic Health Record
multiple users concurrently, thereby enhancing
(EHR) systems extends beyond simple
scalability and efficiency. Moreover, the system
encryption. Effective security must incorporate
incorporates performance optimization
both encryption and access control mechanisms.
techniques, particularly focusing on the selection
Furthermore, enabling patients to generate and
of optimal parameter values to minimize
manage their own encryption keys enhances
computational costs for both clients and cloud
privacy protection, even in cases where the host
service providers. The proposed solution
data center may be compromised.
significantly reduces computation and
communication overheads compared to non-
A common concern is that encryption may cooperative approaches, improving both system
impede the functionality of EHR systems, efficiency and security. This dual emphasis on
particularly in scenarios where data sharing or privacy and performance optimization ensures a
search capabilities are required. However, it is practical, robust solution for secure cloud-based
possible to develop an efficient system that EHR data sharing and integrity verification.
allows patients to selectively share access rights
while still performing search operations on their
encrypted records. To address these challenges,
we define the requirements for a Patient-
Controlled Encryption (PCE) scheme, which
leverages established cryptographic protocols to
balance privacy with system functionality.
Various implementations of this scheme are
explored, each offering a different set of security
properties to ensure patient data remains both
 hashing algorithm alongside a Private Key
Generator (PKG). This methodology enables
Signature
proxy access to patient data during emergencies
while effectively concealing sensitive elements
Doctor EHR within medical reports.
Level 1 security Sanitizer

Key Findings:
Signature Server
Enhanced Security Mechanisms: The proposed
approach demonstrates a significant
Medical record improvement in data security by selectively
masking sensitive information, thereby reducing
the risk of unauthorized disclosure.

Interoperability Gaps: The study highlights

Level 2 security existing barriers to interoperability among
Private Key Generator
healthcare systems, which can impede the
Third party auditing seamless sharing and exchange of EHRs.
Third Party Access
Robust Privacy Protections: The findings
underscore the critical need for advanced
Fig 1 System architecture of the proposed authentication, authorization, and access control
solution mechanisms to safeguard patient privacy
effectively.
5. EXPERIMENTAL RESULTS
AND ANALYSIS Accura Reca Precisi F1-
cy ll on measur
This systematic investigation focuses on the es
utilization of Electronic Health Records (EHRs)
to enhance interoperability across healthcare Existin
institutions while ensuring stringent patient g 85 70 75 72
privacy and confidentiality. EHRs encompass system
structured data types, including both textual and
imaging data, aimed at achieving Propos 92 89 88 90
decentralization, security, transparency, and ed
traceability. Through the application of system
cryptographic systems, the study critically
evaluates the existing security and privacy Table 1 The accuracy classification of existing
measures employed in current EHR and proposed
implementations.
Identified Gaps in Literature:
Challenges Identified:
The analysis reveals a deficiency in the literature
During the analysis, notable challenges were concerning the integrated implementation of
observed in the data extraction phase on the security protocols that protect both textual and
proxy server side. Specifically, the necessity for imaging data within EHR systems. This gap
full decryption in emergency scenarios can emphasizes the necessity for further
inadvertently expose sensitive patient advancements in privacy protection strategies,
information, thereby compromising ensuring that sensitive patient information
confidentiality. To address this vulnerability, a remains secure during critical data access,
novel solution is proposed that integrates a data particularly in emergency situations.
The insights gleaned from this research highlight
the urgent need for comprehensive frameworks
that not only bolster the security of EHRs but
also facilitate effective interoperability while
preserving patient confidentiality. The proposed
solution serves as a foundation for future
investigations into advanced cryptographic
techniques and their applicability in enhancing
the integrity and security of EHR systems.
Proposed F1-measures
system Precision
Recall
Existing Accuracy
system
0 50 100
Fig 2 shows the accuracy chart of the
compared existing and proposed system
6. CONCLUSION AND FUTURE
ENHANCEMENT
The proposed identity-based data hiding scheme
with information integrity auditing offers a
robust solution for securing cloud storage while
facilitating the sharing of sensitive information.
This scheme allows users to share files without
exposing confidential data, ensuring that remote
integrity auditing can be performed seamlessly
and efficiently. The security analysis, along with
experimental findings, underscores the scheme's
effectiveness and reliability. The established
objectives of the system have been successfully
achieved, demonstrating promising results
throughout the implementation process.
Furthermore, the solution ensures secure storage
and retrieval of records in the cloud, employing
encryption and decryption techniques to uphold
data confidentiality. As the project progresses,
future research may focus on further
optimizations to enhance system performance
and functionality, potentially leading to more
advanced security measures and improved user
experience in cloud environments.
7. REFERENCES
[1] Wenting Shen; Jing Qin; Jia Yu; Rong
Hao; Jiankun Hu, Enabling Identity-Based
Integrity Auditing and Data Sharing With
Sensitive Information Hiding for Secure Cloud
Storage, Transactions on Information Forensics
and Security, 2019
[2] Yi-Hui Chen; Pei-Yu Lin, Integrated
Hamming Coding Operation to Reversible Data
Hiding Scheme for Encrypted Images, 22nd
International Conference on Software
Engineering, Artificial Intelligence, Networking
and Parallel/Distributed Computing (SNPD),
2021
[3] V Vilasini; K Hariharan; Nethra Chezhian; D
Kaviyarasu, Secured Data Storage Using OAuth
and Encryption of Data Using AES with Patterns
and Hidden Layer, International Conference on
Smart Systems for Electrical, Electronics,
Communication and Computer Engineering,
2024
[4] Himanshu Makkar; Durga
Toshniwal; Shalini Jangra, Closed Itemset
based Sensitive Pattern Hiding for Improved
Data Utility and Scalability, International
Conference on Big Data (Big Data), 2020
[5] Boyang Li, Secure Reversible Data Hiding
in Images with Scalable Capacity, Asia
Symposium on Image Processing (ASIP), 2023
[6] Fatina Shukur; Ahmed Fatlawi, Privacy and
Security Awareness for Sensitive/Non-sensitive
Data based Wearable Devices, International
Conference on Emerging Trends in Smart
Technologies (ICETST), 2022
[7] Amare Genetu; Tesfa Tegegne, Designing
Sensitive Personal Information Detection and
Classification Model for Amharic Text,
International Conference on Information and
Communication Technology for Development
for Africa , 2021
[8] Janaki Sivakumar; Mazhar Malik; Arun
Sekar Rajasekaran, Integrity Auditing for Secure
Cloud Storage on Sensitive Data Protection,
IEEE 2nd International Conference on Mobile
Networks and Wireless Communications, 2022

[9] Lulu Xue; Jiani Li; Kejia Zhang; Tianqiu

Yu, Decentralized Multi-Authority Ciphertext-
Policy Attribute-Based Encryption with Hidden
Policy for Cloud Data Sharing, International
Conference on Computer Engineering and
Intelligent Control , 2023

[10] Asha S; Punitha. K; Tanmay Joshi,

Enabling Identity-Based Integrity Auditing and
Data Sharing with Sensitive Information Hiding
for Secure Cloud Storage, Third International
Conference on Intelligent Computing
Instrumentation and Control Technologies,2022