Privacy in Commercial Medical Storage Systems
Today, people grow older than some decades ago. This inevitably leads to an increasing number of commercial players in the healthcare domain. Privacy is a major concern in many eHealth application, especially when sensitive personal data is stored in databases. This paper presents a secure, fair and privacy-preserving solution to enforce the patient’s privacy preferences on his or her personal medical records. The proposed cryptographic tools and protocols are thoroughly explained. Moreover, a prototype implementation validates the concept. Finally, it is shown that a convenient, modular and generic system based on lightweight cryptographic primitives can be realized as proposed.
KeywordsEmergency Physician Forward Secrecy Cryptographic Hash Function Identity Provider Current Timestamp
Unable to display preview. Download preview PDF.
- 1.Agrawal, R., Kiernan, J., Srikant, R., Xu, Y.: Hippocratic databases. In: VLDB, pp. 143–154. Morgan Kaufmann, San Francisco (2002)Google Scholar
- 3.Brands, S., Légaré, F.: Digital identity management based on digital credentials. In: Schubert, S.E., Reusch, B., Jesse, N. (eds.) GI Jahrestagung. LNI, vol. 19, pp. 120–126. GI (2002)Google Scholar
- 4.Camenisch, J., Van Herreweghen, E.: Design and implementation of the demix anonymous credential system. In: Atluri, V. (ed.) ACM Conference on Computer and Communications Security, pp. 21–30. ACM, New York (2002)Google Scholar
- 10.Maglogiannis, I., Kazatzopoulos, L.: Enabling location privacy and medical data encryption in patient telemonitoring systems. IEEE Trans. Inf. Technol. Biomed. (2009)Google Scholar
- 11.University of Illinois at Urbana-Champaign. I-living the assisted living project (August 2009), http://lion.cs.uiuc.edu/assistedliving/
- 12.University of Virginia. Smart in-home monitoring system (June 2009), http://marc.med.virginia.edu/projects_smarthomemonitor.html
- 13.The European Parliament and the Council of the European Union. Directive 95/46/ec of the european parliament and of the council of October 24, 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data. Official Journal of the European Communities L(281), 31 (1995)Google Scholar
- 14.Schartner, P., Schaffer, M.: Efficient privacy-enhancing techniques for medical databases. In: Fred, A.L.N., Filipe, J., Gamboa, H. (eds.) BIOSTEC (Selected Papers). CCIS, vol. 25, pp. 467–478. Springer, Heidelberg (2008)Google Scholar
- 16.Steg, H., Strese, H., Loroff, C., Hull, J., Schmidt, S.: Europe is facing a demographic challenge ambient assisted living offers solutionsGoogle Scholar