A HIPAA-compliant key management scheme with revocation of authorization
| Autor: | Chien-Ding Lee, Wei-Bin Lee, Kevin Ho |
|---|---|
| Rok vydání: | 2013 |
| Předmět: |
Scheme (programming language)
Computer science Internet privacy Control (management) Taiwan Health Informatics Cryptography Computer security computer.software_genre Consent Forms Health care Health insurance Electronic Health Records Humans Key management Computer Security Protected health information computer.programming_language Health Insurance Portability and Accountability Act Revocation business.industry Authorization Computational Biology United States Computer Science Applications Accountability Guideline Adherence business computer Software Confidentiality |
| Zdroj: | Computer methods and programs in biomedicine. 113(3) |
| ISSN: | 1872-7565 |
| Popis: | Patient control over electronic protected health information (ePHI) is one of the major concerns in the Health Insurance and Accountability Act (HIPAA). In this paper, a new key management scheme is proposed to facilitate control by providing two functionalities. First, a patient can authorize more than one healthcare institute within a designated time period to access his or her ePHIs. Second, a patient can revoke authorization and add new authorized institutes at any time as necessary. In the design, it is not required to re-encrypt ePHIs for adding and revoking authorizations, and the implementation is time- and cost-efficient. Consent exception is also considered by the proposed scheme. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full Text from ScienceDirect