A Security and Privacy Validation Methodology for E-Health Systems Using Cloud Storage

Abstract

E-Health applications enable one to acquire, process, and share patient medical data to improve diagnosis, treatment, and patient monitoring. Despite the undeniable benefits brought by the digitization of health systems, the transmission of and access to medical information raises critical issues, mainly related to security and privacy. This paper describes a safe e-health data management system that employs the MERN stack (MongoDB, Express, React, and Node.js) and strong encryption algorithms. The solution improves security by using client-side encryption with the AES-256-CBC technique to encrypt e-health files before uploading them to MongoDB. To improve security, encrypted files and keys are stored separately. User authentication employs bcryptjs for password hashing and JSON Web Tokens (JWT) for permission, ensuring that only authorized users can access and decrypt data. The study demonstrates the efficiency of coupling MERN stack development with encryption in protecting sensitive patient information, establishing confidence, and boosting the adoption of e-health solutions.