Research & Reviews: Journal of Internet & Networking (e-ISSN: 3107-4839)

This project focuses on forming a secure and easy-to-use personal cloud system for healthcare centers, especially in places where internet access is limited or unavailable at all. The system allows different healthcare staff—like doctors, nurses, receptionists, and an administrator—to upload and access patient records based on their job roles. For example, doctors can view diagnosis reports, while nurses can access treatment logs, and receptionists handle appointments. To keep the data safe, we’ve used Role-Based Access Control (RBAC), which means users can only see what they’re allowed to. We also used a tool called OpenZiti to build an offline Zero Trust Network Access (ZTNA) system. This helps ensure that only trusted users can connect securely to the system, even without internet, the system is lightweight, runs on basic hardware, and doesn’t require any third-party software or cloud services. It’s built using PHP and MySQL on an Ubuntu virtual machine. Our goal was to make a secure, private, and self-hosted solution that protects sensitive medical data and works well in rural or small healthcare setups.

Guesmi H.A. A Trust-Driven Optimization of Role-Based Access Control in E-Health Cloud Systems. Journal of Computing & Biomedical Informatics. 2024, 8(01).

Al-hammuri K., Gebali F., Kanan A. ZTCloudGuard: Zero Trust Context-Aware Access Management Framework to Avoid Misuse Cases in the Era of Generative AI and Cloud- based Health Information Ecosystem. arXiv preprint. 2023, arXiv:2312.02993.

Sood N., Parlapalli R., Sharma P., Kashyap R. Application of Zero Trust Model in Preventing Med

Sun L., Yong ical Errors. Frontiers in Health Services. 2024, 4:1453804. J., Soar J. Access Control Management for e-Healthcare in Cloud Environment. arXiv preprint. 2017, arXiv:1711.10553.

Shakil K.A., Zareen F.J., Alam M., Jabin S. BAMHealthCloud: A Biometric Authentication and Data Management System for Healthcare Data in Cloud. arXiv preprint. 2017, arXiv:1705.07121.

Kayes A.S.M., Han J., Rahayu W., Islam M.S., Colman A. A Policy Model and Framework for Context-Aware Access Control to Information Resources. arXiv preprint. 2017, arXiv:1703.02162.

Marcelo A.C. Jr., Paulo Bandiera-Paiva. Health Information System Role-Based Access Control: Current Security Trends and Challenges. Journal of Medical Systems. 2018, 42(3), 54p.

Kim J., Park H. Constructing RBAC-Based Security Model in u-Healthcare Service Integration Platform. Healthcare Informatics Research. 2015, 21(1), 18-25p.

Palo Alto Networks. How Zero Trust Accelerates a More Secure Infrastructure for Healthcare. SASE Insights. 2022.

Appgate. How ZTNA Solves Secure Access and Data Protection Complexity for the Healthcare Industry. Security Blog. 2023.