Title:
|
AN INEXPENSIVE TRUSTED THIRD PARTY TO PROTECT WIDE-AREA EHEALTH PLATFORMS |
Author(s):
|
Stefan Benzschawel, Uwe Roth |
ISBN:
|
978-989-8704-11-5 |
Editors:
|
Piet Kommers, Pedro Isaías, Claire Gauzente, Miguel Baptista Nunes, Guo Chao Peng and Mário Macedo |
Year:
|
2014 |
Edition:
|
Single |
Keywords:
|
Electronic Health Records, Data Protection, Trusted Third Party, Administrator Attacks, Intruder |
Type:
|
Full Paper |
First Page:
|
247 |
Last Page:
|
253 |
Language:
|
English |
Cover:
|
|
Full Contents:
|
click to dowload
|
Paper Abstract:
|
This paper is about the necessity of protection and the demonstration of inexpensive methods to protect wide-area eHealth platforms. Such platforms manage electronic health records and improve the collaboration of healthcare professionals. Data privacy concerns are major arguments against wide-area eHealth platforms. The question that needs to be addressed first is whether the usual IT techniques are sufficient to protect such a system, with thousands of doctors and millions of patients as users? The enormous amount of valuable data and the anonymity within the large number of users invites criminal dealers of data to attack such a wide-area eHealth platform. Protection should be better than usual, remembering that the information in a Health platform should never be exploited for its value to employers, life insurance companies or organ traders but solely used in the treatment context of patients. In case of misuse, the consequences might become fatal, or at least financially and socially disastrous for some patients. With this in mind, a standard weighing-up of investment vs. the price of privacy is not appropriate. This paper shows how IT-architectural techniques like pseudonymization and re-encryption without disclosure risks will massively increase the security level. In a second part we show how this can be established for low-budget implementations. |
|
|
|
|