PSD 2006: Privacy in Statistical Databases pp 360-374 | Cite as
On Secure e-Health Systems
Abstract
This paper is devoted to e-healthcare security systems based on modern security mechanisms and Public Key Infrastructure (PKI) systems. We signified that only general and multi-layered security infrastructure could cope with possible attacks to e-healthcare systems. We evaluated security mechanisms on application, transport and network layers of ISO/OSI reference model. These mechanisms include confidentiality protection based on symmetrical cryptographic algorithms and digital signature technology based on asymmetrical algorithms for authentication, integrity protection and non-repudiation. User strong authentication procedures based on smart cards, digital certificates and PKI systems are especially emphasized. We gave a brief description of smart cards, HSMs and main components of the PKI systems, emphasizing Certification Authority and its role in establishing cryptographically unique identities of the valid system users based on X.509 digital certificates. Emerging e-healthcare systems and possible appropriate security mechanisms based on proposed Generic CA model are analyzed.
Keywords
E-healthcare systems Multilayered security systems PKI systems smart cardsPreview
Unable to display preview. Download preview PDF.
References
- 1.Oppliger, R.: Internet and Intranet Security, Artech House, ISBN 0-89006-829 (1998)Google Scholar
- 2.Ford, W., Baum, M.S.: Secure Electronic Commerce: Building the Infrastructure for Digital Signatures and Encryption, 2nd edn. Prentice Hall PTR, Upper Saddle River (2001)Google Scholar
- 3.Marković, M.: Cryptographic Techniques and Security Protocols in Modern TCP/IP Computer Networks, Short-Tutorial. In: Proc. of ICEST 2002, October 1-4 (2002)Google Scholar
- 4.Schneier, B.: Applied Cryptography, Second Edition, Protocols, Algorithms and Source Code in C. John Wiley & Sons, Inc., New York, Chichester, Brisbane, Toronto, Singapore (1996)Google Scholar
- 5.RSA Laboratories: PKCS standards Google Scholar
- 6.Marković, M., Unkašević, T., Djorđević, G.: RSA algorithm optimization on assembler of TI TMS320C54x signal processors. In: Proc. of EUSIPCO 2002, Toulouse, France, September 3-6 (2002)Google Scholar
- 7.Unkašević, T., Marković, M., Djorđević, G.: Optimization of RSA algorithm implementation on TI TMS320C54x signal processors based on a modified Karatsuba-Offman’s algorithm. In: Proc. of ECMCS 2001, Budapest, September 11-13 (2001)Google Scholar
- 8.Djorđević, G., Unkašević, T., Marković, M.: Optimization of modular reduction procedure in RSA algorithm implementation on assembler of TMS320C54x signal processors. In: DSP 2002, Santorini, Greece (July 2002) Google Scholar
- 9.Marković, M., Djorđević, G., Unkašević, T.: On Optimizing RSA Algorithm Implementation on Signal Processor Regarding Asymmetric Private Key Length. In: Proc. of WISP 2003, Budapest, September 2003, pp. 73–77 (2003)Google Scholar
- 10.Marković, M., Savić, Z., Obrenović, Ž., Nikolić, A.: A PC Cryptographic Coprocessor Based on TI Signal Processor and Smart Card System. In: Steinmetz, R., Dittman, J., Steinebach, M. (eds.) Communications and Multimedia Security Issues of the New Century, pp. 383–393. Kluwer Ac. Publishers, Dordrecht (2001)Google Scholar
- 11.Healthcare Insurance Portability and Accountability Act: HIPAA Requirements for Technical Security, Services and Mechanisms (1996)Google Scholar
- 12.Oppliger, R.: Security Technologies for the World Wide Web, Artech House, Boston, London (2000)Google Scholar
- 13.Savić, Z., Nikolić, A., Marković, M.: Cryptographic proxy gateways in securing TCP/IP computer networks. In: Proc. of Information Security Solution Europe, ISSE 2001, London, UK (2001)Google Scholar
- 14.Savić, Z., Marković, M.: Development of Secure Web Financial Services in Serbia. In: Proc. of ISSE 2003, Vienna, Austria, October 7-10 (2003)Google Scholar