In this paper, the authors present the design and implementation of Personal Health Records (PHR) and providing security to them while they are stored at third party such as cloud. Personal Health Record (PHR) is web based application that allows people to access and co-ordinate their lifelong health information. The patients have control over access to their own PHR. To achieve security of personal health records they use the attribute based encryption to encrypt the data before outsourcing it. Here, they focus on multiple types of PHR owner scenario and division of personal health records users into multiple security domains which reduce key management complexity for owners and users.