Abstract—Demand of healthcare service has been increasing worldwide. With advance development of pervasive technology, wearable device with multiple sensors can be effectively used as instruments to remotely supervise patient condition at any place and any time. However, this requires dynamically scale storage resources to handle tremendous amount of data that generated from various sensors. So the public cloud suits this requirement very well, as it provides high scalable data storage service with effective cost. But data confidentiality and privacy are still challenging issues, because cloud infrastructure is maintained by the third party, so data is security compromised and generally prone to potential treats. We therefore propose architecture with security schemes that aim to overcome this challenge. The architecture supports mobile application that continuously monitors patient health condition in the secure way. The security scheme is based on public key infrastructure to protect confidentiality, privacy and authenticity of personal data. Our proposed architecture has been implemented and initially tested by group of sampling patients at a local hospital in Thailand. Index Terms—Healthcare, cloud computing, mobile computing, public key infrastructure, security. I. INTRODUCTION The rapid growth of using wearable device and smart phone play a significant role in accelerating the development of healthcare application. As smart phone and wearable device are consisted of various sensors that can detect heart pulse, respiratory and blood pressure, so continuous remote monitoring can be achieve with minimum cost, and enable healthcare service provider to give effective treatment to the patient. Number of sensors periodically collect data which are later remotely transmitted to store on server hosted by healthcare provider for further analysis. As sensors generate data with exponential growth, how to handle tremendous amount of data is a challenge as it require high scalability infrastructure to support. Cloud computing can overcome this challenge, however there is security vulnerabilities especially on public cloud that the infrastructure is maintained by service provider’s staff. Even though service provider cannot legally access these data owned by their customer, but these data is vulnerable to malicious program that allow data to be accessed without authorization. Because health and medical data is highly sensitive, so security and privacy becomes problems. This paper propose an architecture with security scheme that help eliminating potential security treats of health and medical data situated on the cloud. The Manuscript received December 12, 2016; revised April 7, 2017. The authors are with Chiang Rai Rajabhat University, Thailand (e-mail: nacha.cho@mfu.ac.th; p.pattra1985@gmail.com). architecture serves mobile application that support authorized doctors and medical staff to remotely monitor patient in secure manner. The rest of this paper is organized as follows. Section II addresses related works, highlight existing approach and methods in securing application in healthcare domain. We explain proposed architecture and security scheme in section III and IV respectively. Section V presents the illustration of proposed architecture with state of the art technologies. The paper concludes in Section VI. II. RELATED WORK As healthcare system is required to be secure, there are many proposals on how to protect confidential and privacy of information on the cloud. Cloud computing provides scalability and availability to the software system, however it pose a high risk that information stored on infrastructure of cloud service provider can be access by other unauthorized entity or malicious program. Cryptographic technique is widely proposed for securing healthcare system on the cloud with both symmetric and asymmetric encryption algorithm. The main challenge is how keys and encryption are smoothly managed without affecting usability of the system, and allow only authorized entity to access only information they need. Therefore, fine grain access control becomes a focus. Goyal et al. [1] propose Attribute-Based Encryption (ABE) for fine-grained access control and Kumar et al. [2] enhance ABE to be effective for cloud critical application. Therefore, ABE can also be applied to secure healthcare system on the cloud, however there are challenges such as how access control can be managed, and integration of key and access structure. Therefore, Lounis et al. [3] propose fine grain access control that combines ABE and symmetric cryptography to tackle these problems for cloud-based healthcare system. Barua et al. [4] proposes new security scheme called ESPAC that can handle access control problem on personal health information based on ABE. There are also other works [5]-[7] that apply ABE with healthcare system. Beside, identity-based encryption [8] is also proposed to integrate into healthcare system, as it uses the user’s identity information as public key and can be cost-effective on the cloud such as a work presented by Wanga et al. [9]. III. PROPOSED ARCHITECTURE The proposed architecture supports healthcare system that enables patient to be monitored by mobile applications. Personal record application helps gathering health data from Secure Mobile Cloud Architecture for Healthcare Application Nacha Chondamrongkul and Pattra Chondamrongkul International Journal of Future Computer and Communication, Vol. 6, No. 3, September 2017 76 doi: 10.18178/ijfcc.2017.6.3.493