International Journal of Computer Applications (0975 – 8887) Volume 182 – No. 41, February 2019 5 Cloud based Framework for Secure Sharing of Medical Reports Jayashree Katti Pimpri Chinchwad College of Engineering Pune, India Aparna M. Lanjekar Pimpri Chinchwad College of Engineering Pune, India Apurva K. Thakur Pimpri Chinchwad College of Engineering Pune, India Yaminee A. Koli Pimpri Chinchwad College of Engineering Pune, India ABSTRACT Cloud computing has recently emerged as a new paradigm for hosting and delivering services over the Internet which define the shape of a new era. Cloud computing is the changing way to store, compute and use the data and resources which are stored on the remote servers due its properties such as it provides robustness, on-demand self-service, measured resources, broad network access and low cost. But data leakage, insecure interface and sharing of resources are the major issue that prevents users from storing files on the cloud. Everyday extensive amount of data is generated in multi-specialist hospitals. This article presents various techniques to protect electronic medical reports (EMR)in various forms like images, videos or documents etc. stored on cloud. If doctors of various specializations want to view the reports it will be easy for them if those are placed on the cloud. This will also help patient in not carrying the prescriptions or big size reports. This article addresses these issues by proposing Advanced Encryption Standard (AES) for securing the multiple EMR. In order to prevent issues like breaches and malware attacks on cloud, this innovative scheme helps in high level security to safeguard the files or reports that are stored on the cloud. Keywords Cloud Computing, Advanced Encryption Standard (AES), Electronic Medical Reports (EMR). 1. INTRODUCTION Medical records are central to all patient healthcare activities. The main reason for maintaining medical records is to ensure continuity of care for the patient. Healthcare organizations are expected to provide new and improved patient care capabilities. Information Technology plays an important role in the health and patient care arenas, with cloud computing beginning to make its mark. With the adoption of cloud computing approaches in the healthcare sector by most health institutions, medical image data are stored remotely in third party servers. To ensure confidentiality and authentication methods privacy, safety and security needs to be guaranteed for such digital data by engaging encryption to ensure authorship. Cloud is the practice of using a network of remote servers hosted on the Internet to store, manage, and process data, rather than a local server or a personal computer[3]. Cloud Computing allows us not only to access the applications as utilities, over the network but also to create, configure, and customize the business applications online. Cloud computing, the environment that offers resources encapsulation on the Internet in the form of dynamic, scalable, and virtualized services, presents a variety of on demand services to the public such as the telemedicine services[3]. In spite of the cloud computing advantages, it has a number of disadvantages such as the data security which considered a major problem that face the users of this technology since they outsource their data to distributed storage systems and not a local one. Therefore, when transferring user's data over the cloud environment, especially the medical data, this kind of data which contains crucial information about the patients, a high level of protection of the integrity and confidentiality of these data have to be guaranteed to overcome any attacking attempts that may face these transmitted data. The Advanced Encryption Standard, also known as Rijndael. The Advanced Encryption Standard is a specification for the encryption of electronic medical data. AES is based on a design principle known as a substitution– permutation network, a combination of both substitution and permutation, and is fast in both software and hardware. The Advanced Encryption Standard provides the demonstration of encryption and decryption of images and videos to the users. Due to the strong security and operation efficiency, the proposed secure cloud computing system should be extremely suitable for use in Health Information Exchange through cloud computing environment [6]. 2. RELATED WORK 2.1 Definition of Cloud Cloud is the practice of using a network of remote servers hosted on the Internet to store, manage and process data, rather than a local server or a personal computer. Cloud Computing provides us a means by which we can access the applications as utilities, over the internet. It allows us to create, configure, and customize the business applications online. 5 Essential Characteristics of Cloud 1. On Demand Self-Service: In this customer can self-provision compute storage without human interaction. 2. Broad Network Access: Applications are available on the network and accessed through standard mechanisms. 3. Resource Pooling: To serve multiple consumers using multi-tenant model, the provider’s resources are pooled. 4. Rapid Elasticity: Capabilities can be elastically released and provided by cloud provider. 5. Measured Service: It must be measured by performance with pay-as- you-go pricing model. The data exchange framework is designed as part of healthcare services which the whole platform is deployed on cloud-based environment. The platform uses Platform-as-a- Service (PaaS) concept so that systems belong to any registered healthcare institutes can call the services and integrate them as part of their implemented healthcare applications. The architecture is divided into three layers; Infrastructure-as-a-Service (IaaS) layer, Platform as-a-