论文信息 - A contactless e-health information system with privacy

A contactless e-health information system with privacy

E-health information systems give rise to many security and privacy concerns. Security of these systems involves a large amount of sensitive data shared by several actors, such as doctors or nurses in various institutions. However, the privacy preserving issue, including data minimization and data sovereignty, is not necessary treated. This paper presents an e-health infrastructure intended to minimize personal data disclosure, with an access to right system based on a secret sharing. We analyze the security of the proposed infrastructure in accordance with medical constraints through contactless transactions.

[1] Riley Davis. Health Insurance Portability and Accountability Act , 2011 .

[2] A. Pfitzmann,et al. Anonymity, Unlinkability, Unobservability, Pseudonymity, and Identity Management – A Consolidated Proposal for Terminology , 2002 .

[3] Adi Shamir,et al. How to share a secret , 1979, CACM.

[4] Dorina Ghindici. Information flow analysis for embedded systems : from practical to theoretical aspects , 2008 .

[5] R. Scandariato,et al. Identity in federated electronic healthcare , 2008, 2008 1st IFIP Wireless Days.

[6] Nicolas Sklavos. On the Hardware Implementation Cost of Crypto-Processors Architectures , 2010, Inf. Secur. J. A Glob. Perspect..

[7] Ross J. Anderson,et al. A security policy model for clinical information systems , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[8] Ross Anderson,et al. Under threat: patient confidentiality and NHS computing , 2006 .

[9] David-Olivier Jaquet-Chiffelle,et al. Centralised versus Decentralised Management of Patients' Medical Records , 2009, MIE.

[10] Bart De Decker,et al. A Privacy-Preserving eHealth Protocol Compliant with the Belgian Healthcare System , 2008, EuroPKI.

[11] Bart Preneel,et al. Towards a cross-context identity management framework in e-health , 2009, Online Inf. Rev..

[12] Ross Anderson,et al. Confidentiality and connecting for health. , 2008, The British journal of general practice : the journal of the Royal College of General Practitioners.