The document proposes a framework that uses attribute-based encryption to encrypt personal health records stored in the cloud, addressing privacy and security issues. It divides users into multiple security domains handled by separate attribute authorities to reduce key management complexity for owners and users. This approach allows flexible, fine-grained access control of personal health records while guaranteeing privacy. The framework supports dynamic policy changes, efficient user revocation, and break-glass access in emergencies. Evaluation shows it provides security, scalability and efficiency for patient-centric sharing of personal health records on semi-trusted servers.