J Med Syst - Security analysis of standards-driven communication protocols for healthcare scenarios.

Tópicos

{ system(1050) medic(1026) inform(1018) }
{ ehr(2073) health(1662) electron(1139) }
{ concept(1167) ontolog(924) domain(897) }
{ time(1939) patient(1703) rate(768) }
{ import(1318) role(1303) understand(862) }
{ system(1976) rule(880) can(841) }
{ problem(2511) optim(1539) algorithm(950) }
{ case(1353) use(1143) diagnosi(1136) }
{ health(3367) inform(1360) care(1135) }
{ analysi(2126) use(1163) compon(1037) }
{ data(1737) use(1416) pattern(1282) }
{ framework(1458) process(801) describ(734) }
{ data(1714) softwar(1251) tool(1186) }
{ general(901) number(790) one(736) }
{ howev(809) still(633) remain(590) }
{ model(2341) predict(2261) use(1141) }
{ research(1218) medic(880) student(794) }
{ health(1844) social(1437) communiti(874) }
{ process(1125) use(805) approach(778) }
{ sequenc(1873) structur(1644) protein(1328) }
{ assess(1506) score(1403) qualiti(1306) }
{ treatment(1704) effect(941) patient(846) }
{ surgeri(1148) surgic(1085) robot(1054) }
{ error(1145) method(1030) estim(1020) }
{ algorithm(1844) comput(1787) effici(935) }
{ model(2220) cell(1177) simul(1124) }
{ visual(1396) interact(850) tool(830) }
{ studi(1119) effect(1106) posit(819) }
{ model(3480) simul(1196) paramet(876) }
{ model(2656) set(1616) predict(1553) }
{ first(2504) two(1366) second(1323) }
{ intervent(3218) particip(2042) group(1664) }
{ activ(1138) subject(705) human(624) }
{ use(976) code(926) identifi(902) }
{ result(1111) use(1088) new(759) }
{ implement(1333) system(1263) develop(1122) }
{ estim(2440) model(1874) function(577) }
{ model(3404) distribut(989) bayesian(671) }
{ can(774) often(719) complex(702) }
{ imag(1947) propos(1133) code(1026) }
{ inform(2794) health(2639) internet(1427) }
{ measur(2081) correl(1212) valu(896) }
{ imag(1057) registr(996) error(939) }
{ bind(1733) structur(1185) ligand(1036) }
{ method(1219) similar(1157) match(930) }
{ featur(3375) classif(2383) classifi(1994) }
{ imag(2830) propos(1344) filter(1198) }
{ network(2748) neural(1063) input(814) }
{ imag(2675) segment(2577) method(1081) }
{ patient(2315) diseas(1263) diabet(1191) }
{ take(945) account(800) differ(722) }
{ studi(2440) review(1878) systemat(933) }
{ motion(1329) object(1292) video(1091) }
{ chang(1828) time(1643) increas(1301) }
{ learn(2355) train(1041) set(1003) }
{ clinic(1479) use(1117) guidelin(835) }
{ extract(1171) text(1153) clinic(932) }
{ method(1557) propos(1049) approach(1037) }
{ design(1359) user(1324) use(1319) }
{ control(1307) perform(991) simul(935) }
{ care(1570) inform(1187) nurs(1089) }
{ method(984) reconstruct(947) comput(926) }
{ search(2224) databas(1162) retriev(909) }
{ featur(1941) imag(1645) propos(1176) }
{ data(3963) clinic(1234) research(1004) }
{ studi(1410) differ(1259) use(1210) }
{ risk(3053) factor(974) diseas(938) }
{ perform(999) metric(946) measur(919) }
{ research(1085) discuss(1038) issu(1018) }
{ compound(1573) activ(1297) structur(1058) }
{ perform(1367) use(1326) method(1137) }
{ blood(1257) pressur(1144) flow(957) }
{ spatial(1525) area(1432) region(1030) }
{ record(1888) medic(1808) patient(1693) }
{ monitor(1329) mobil(1314) devic(1160) }
{ state(1844) use(1261) util(961) }
{ patient(2837) hospit(1953) medic(668) }
{ data(2317) use(1299) case(1017) }
{ age(1611) year(1155) adult(843) }
{ medic(1828) order(1363) alert(1069) }
{ signal(2180) analysi(812) frequenc(800) }
{ cost(1906) reduc(1198) effect(832) }
{ group(2977) signific(1463) compar(1072) }
{ sampl(1606) size(1419) use(1276) }
{ gene(2352) biolog(1181) express(1162) }
{ data(3008) multipl(1320) sourc(1022) }
{ patient(1821) servic(1111) care(1106) }
{ use(2086) technolog(871) perceiv(783) }
{ can(981) present(881) function(850) }
{ structur(1116) can(940) graph(676) }
{ high(1669) rate(1365) level(1280) }
{ cancer(2502) breast(956) screen(824) }
{ use(1733) differ(960) four(931) }
{ drug(1928) target(777) effect(648) }
{ survey(1388) particip(1329) question(1065) }
{ decis(3086) make(1611) patient(1517) }
{ activ(1452) weight(1219) physic(1104) }
{ method(1969) cluster(1462) data(1082) }
{ method(2212) result(1239) propos(1039) }
{ detect(2391) sensit(1101) algorithm(908) }

Resumo

The importance of the Electronic Health Record (EHR), that stores all healthcare-related data belonging to a patient, has been recognised in recent years by governments, institutions and industry. Initiatives like the Integrating the Healthcare Enterprise (IHE) have been developed for the definition of standard methodologies for secure and interoperable EHR exchanges among clinics and hospitals. Using the requisites specified by these initiatives, many large scale projects have been set up for enabling healthcare professionals to handle patients' EHRs. The success of applications developed in these contexts crucially depends on ensuring such security properties as confidentiality, authentication, and authorization. In this paper, we first propose a communication protocol, based on the IHE specifications, for authenticating healthcare professionals and assuring patients' safety. By means of a formal analysis carried out by using the specification language COWS and the model checker CMC, we reveal a security flaw in the protocol thus demonstrating that to simply adopt the international standards does not guarantee the absence of such type of flaws. We then propose how to emend the IHE specifications and modify the protocol accordingly. Finally, we show how to tailor our protocol for application to more critical scenarios with no assumptions on the communication channels. To demonstrate feasibility and effectiveness of our protocols we have fully implemented them.

Resumo Limpo

import electron health record ehr store healthcarerel data belong patient recognis recent year govern institut industri initi like integr healthcar enterpris ihe develop definit standard methodolog secur interoper ehr exchang among clinic hospit use requisit specifi initi mani larg scale project set enabl healthcar profession handl patient ehr success applic develop context crucial depend ensur secur properti confidenti authent author paper first propos communic protocol base ihe specif authent healthcar profession assur patient safeti mean formal analysi carri use specif languag cow model checker cmc reveal secur flaw protocol thus demonstr simpli adopt intern standard guarante absenc type flaw propos emend ihe specif modifi protocol accord final show tailor protocol applic critic scenario assumpt communic channel demonstr feasibl effect protocol fulli implement

Resumos Similares

J Med Syst - Integrating hospital information systems in healthcare institutions: a mediation architecture. ( 0,782789529229094 )
J Med Syst - Mobile agent application and integration in electronic anamnesis system. ( 0,771928876484537 )
Med Biol Eng Comput - An efficient forward-secure group certificate digital signature scheme to enhance EMR authentication process. ( 0,768052807140769 )
Int J Med Inform - Aspects of privacy for electronic health records. ( 0,760615430263391 )
Int J Med Inform - The EHR-ARCHE project: satisfying clinical information needs in a Shared Electronic Health Record system based on IHE XDS and Archetypes. ( 0,74181090044198 )
J Med Syst - A secure and efficient password-based user authentication scheme using smart cards for the integrated EPR information system. ( 0,739982757104076 )
J Med Syst - Secure verifier-based three-party authentication schemes without server public keys for data exchange in telecare medicine information systems. ( 0,736464337373626 )
J Med Syst - A secure EHR system based on hybrid clouds. ( 0,735308243985772 )
J Biomed Inform - d-dependency for privacy-preserving XML data publishing. ( 0,731410258639399 )
J Med Syst - A reliable RFID mutual authentication scheme for healthcare environments. ( 0,731094876348665 )
J Biomed Inform - Security and privacy in electronic health records: a systematic literature review. ( 0,727998978230938 )
J Med Syst - Security analysis and improvement of a privacy authentication scheme for telecare medical information systems. ( 0,721293566011906 )
J Med Syst - A robust uniqueness-and-anonymity-preserving remote user authentication scheme for connected health care. ( 0,720003484783139 )
J Med Syst - A secure chaotic maps and smart cards based password authentication and key agreement scheme with user anonymity for telecare medicine information systems. ( 0,715613273016432 )
J Med Syst - An enhanced biometric authentication scheme for telecare medicine information systems with nonce using chaotic hash function. ( 0,715155928050262 )
J Med Syst - Secure Dynamic access control scheme of PHR in cloud computing. ( 0,714700509242096 )
J Med Syst - A user anonymity preserving three-factor authentication scheme for telecare medicine information systems. ( 0,713444060547888 )
Int J Med Inform - Proposal and evaluation of FASDIM, a Fast And Simple De-Identification Method for unstructured free-text clinical records. ( 0,712643262562324 )
J Med Syst - Security enhancement of a biometric based authentication scheme for telecare medicine information systems with nonce. ( 0,711985904786417 )
J Med Syst - Cryptanalysis and improvement of 'A privacy enhanced scheme for telecare medical information systems'. ( 0,711750196331513 )
J Med Syst - Improving service accessibility in service-oriented HIS. ( 0,711651096367932 )
J Med Syst - A patient privacy protection scheme for medical information system. ( 0,71019433723139 )
J Med Syst - On the security of two remote user authentication schemes for telecare medical information systems. ( 0,709207298790485 )
J Med Syst - On the security flaws in ID-based password authentication schemes for telecare medical information systems. ( 0,707574404546319 )
J. Med. Internet Res. - Analysis of the security and privacy requirements of cloud-based electronic health records systems. ( 0,706214288352069 )
J Med Syst - A more secure anonymous user authentication scheme for the integrated EPR information system. ( 0,705653164877047 )
J Med Syst - A dynamic identity based authentication scheme using chaotic maps for telecare medicine information systems. ( 0,704800355859432 )
J Med Syst - An authentication scheme for secure access to healthcare services. ( 0,704704205616361 )
J Med Syst - A secure and efficient authentication and key agreement scheme based on ECC for telecare medicine information systems. ( 0,704409886778007 )
J Med Syst - A non-repudiated and traceable authorization system based on electronic health insurance cards. ( 0,704320450011335 )
J Med Syst - Strong authentication scheme for telecare medicine information systems. ( 0,704008041829726 )
J Med Syst - Security analysis of a chaotic map-based authentication scheme for telecare medicine information systems. ( 0,703819279394201 )
J Med Syst - Improvement of a uniqueness-and-anonymity-preserving user authentication scheme for connected health care. ( 0,703090847968872 )
J Med Syst - A privacy enhanced authentication scheme for telecare medical information systems. ( 0,702722913486059 )
J Med Syst - The secure authorization model for healthcare information system. ( 0,702692425995007 )
J Med Syst - An efficient chaotic maps-based authentication and key agreement scheme using smartcards for telecare medicine information systems. ( 0,701105443065276 )
J Med Syst - An efficient and robust RSA-based remote user authentication for telecare medical information systems. ( 0,699822474962691 )
Perspect Health Inf Manag - Leveraging the cloud for electronic health record access. ( 0,698915526934493 )
J Med Syst - Robust anonymous authentication scheme for telecare medical information systems. ( 0,697838630452061 )
J Med Syst - A secure smart-card based authentication and key agreement scheme for telecare medicine information systems. ( 0,69690199437315 )
J Med Syst - An efficient authentication scheme for telecare medicine information systems. ( 0,696106140174946 )
J Med Syst - A uniqueness-and-anonymity-preserving remote user authentication scheme for connected health care. ( 0,695869550340432 )
J Med Syst - On the designing of a tamper resistant prescription RFID access control system. ( 0,69560932359598 )
J Med Syst - An improved anonymous authentication scheme for telecare medical information systems. ( 0,69555699946815 )
J Biomed Inform - Scalable privacy-preserving data sharing methodology for genome-wide association studies. ( 0,694563461378072 )
J Am Med Inform Assoc - Strategies for maintaining patient privacy in i2b2. ( 0,69296814500173 )
Comput Methods Programs Biomed - Verifier-based three-party authentication schemes using extended chaotic maps for data exchange in telecare medicine information systems. ( 0,69283770412223 )
Inform Health Soc Care - Managing information and knowledge within maternity services: Privacy and consent issues. ( 0,692317779312311 )
J Med Syst - An effective and secure key-management scheme for hierarchical access control in E-medicine system. ( 0,691333224854719 )
J Med Syst - The enhancement of security in healthcare information systems. ( 0,691177016235174 )
J Med Syst - An efficient biometric and password-based remote user authentication using smart card for Telecare Medical Information Systems in multi-server environment. ( 0,690198656430472 )
J Med Syst - Improved dynamic ID-based authentication scheme for telecare medical information systems. ( 0,690189477012543 )
J Med Syst - Secure privacy-preserving biometric authentication scheme for telecare medicine information systems. ( 0,689562712808519 )
J Med Syst - Simple group password-based authenticated key agreements for the integrated EPR information system. ( 0,689081495207844 )
J Med Syst - Privacy preserving index for encrypted electronic medical records. ( 0,687083198550167 )
J Med Syst - A chaotic map-based authentication scheme for telecare medicine information systems. ( 0,686837490145464 )
J Med Syst - A robust and novel dynamic-ID-based authentication scheme for care team collaboration with smart cards. ( 0,685667443671725 )
J Med Syst - An efficient and provably-secure certificateless public key encryption scheme for telecare medicine information systems. ( 0,683139883053722 )
J Am Med Inform Assoc - Patients want granular privacy control over health information in electronic medical records. ( 0,681758469988812 )
J Med Syst - A secure and efficient chaotic map-based authenticated key agreement scheme for telecare medicine information systems. ( 0,681300788673445 )
J Am Med Inform Assoc - Security practices and regulatory compliance in the healthcare industry. ( 0,681075508268335 )
J Med Syst - A secure and efficient uniqueness-and-anonymity-preserving remote user authentication scheme for connected health care. ( 0,680866149646616 )
J Med Syst - Two RFID standard-based security protocols for healthcare environments. ( 0,680761041793861 )
J Med Syst - Lightweight ECC based RFID authentication integrated with an ID verifier transfer protocol. ( 0,680050043812537 )
J Med Syst - A secure biometrics-based authentication scheme for telecare medicine information systems. ( 0,678162005619003 )
BMC Med Inform Decis Mak - Privacy and information security risks in a technology platform for home-based chronic disease rehabilitation and education. ( 0,677464373255228 )
J Biomed Inform - FRR: fair remote retrieval of outsourced private medical records in electronic health networks. ( 0,674780003461338 )
J. Med. Internet Res. - Are personal health records safe? A review of free web-accessible personal health record privacy policies. ( 0,673237439194728 )
J Med Syst - A biometric authentication scheme for telecare medicine information systems with nonce. ( 0,672385272034256 )
J Med Syst - An improved and effective secure password-based authentication and key agreement scheme using smart cards for the telecare medicine information system. ( 0,672168025126895 )
J Med Syst - A privacy-strengthened scheme for E-Healthcare monitoring system. ( 0,671298299452141 )
J Med Syst - An improved authentication scheme for telecare medicine information systems. ( 0,669162744804714 )
Int J Comput Assist Radiol Surg - DICOM relay over the cloud. ( 0,668947092472913 )
J Med Syst - Robust chaotic map-based authentication and key agreement scheme with strong anonymity for telecare medicine information systems. ( 0,66821035972597 )
J Med Syst - Meeting the security requirements of electronic medical records in the ERA of high-speed computing. ( 0,665122961391505 )
J Med Syst - A broadcast-based key agreement scheme using set reconciliation for wireless body area networks. ( 0,664998164091474 )
J Am Med Inform Assoc - Protecting count queries in study design. ( 0,663963164756401 )
Int J Med Inform - The Natural Hospital Environment: a Socio-Technical-Material perspective. ( 0,66133957808254 )
J Med Syst - An efficient and secure dynamic ID-based authentication scheme for telecare medical information systems. ( 0,65959159047282 )
J Med Syst - An authentication scheme to healthcare security under wireless sensor networks. ( 0,65780741660407 )
J Med Syst - A design of tamper resistant prescription RFID access control system. ( 0,656669348686543 )
Int J Med Inform - Determining the privacy policy deficiencies of health ICT applications through semi-formal modelling. ( 0,656503412680605 )
J Med Syst - Energy-efficient key distribution using electrocardiograph biometric set for secure communications in wireless body healthcare networks. ( 0,655502477614363 )
J Med Syst - An efficient key-management scheme for hierarchical access control in e-medicine system. ( 0,653678872034806 )
J Med Syst - A more secure authentication scheme for telecare medicine information systems. ( 0,653336054994836 )
J Am Med Inform Assoc - The double-edged sword of electronic health records: implications for patient disclosure. ( 0,652733096937006 )
J Med Syst - Secure communication of medical information using mobile agents. ( 0,652204736301904 )
J Med Syst - A privacy authentication scheme based on cloud for medical environment. ( 0,651050543651501 )
J Med Syst - A study on agent-based secure scheme for electronic medical record system. ( 0,647244852737755 )
Telemed J E Health - Content-based management service for medical videos. ( 0,643946951997104 )
J Med Syst - A security and privacy preserving e-prescription system based on smart cards. ( 0,638208870224842 )
IEEE J Biomed Health Inform - Securing while Sampling in Wireless Body Area Networks with Application to Electrocardiography. ( 0,6372903845756 )
J Am Med Inform Assoc - Design and development of an international clinical data exchange system: the international layer function of the Dolphin Project. ( 0,634848965032106 )
Comput Math Methods Med - Privacy-preserving self-helped medical diagnosis scheme based on secure two-party computation in wireless sensor networks. ( 0,633841128606546 )
Int J Med Inform - Perspectives of Australian adults about protecting the privacy of their health information in statistical databases. ( 0,633709446915166 )
AMIA Annu Symp Proc - SOEMPI: A Secure Open Enterprise Master Patient Index Software Toolkit for Private Record Linkage. ( 0,632488238390056 )
J Med Syst - Three-factor anonymous authentication and key agreement scheme for Telecare Medicine Information Systems. ( 0,632250012546013 )
J Med Syst - On the security of a dynamic ID-based authentication scheme for telecare medical information systems. ( 0,630507423551376 )
J Am Med Inform Assoc - Patient-controlled sharing of medical imaging data across unaffiliated healthcare organizations. ( 0,629110882405506 )
Int J Med Inform - Accessing personal medical records online: a means to what ends? ( 0,627959825497044 )