Data privacy considerations in Intensive Care Grids

Autor: Luna, J., Dikaiakos, Marios D., Kyprianou, T., Bilas, Angelos 1971, Marazakis, M.
Přispěvatelé: Dikaiakos, Marios D. [0000-0002-4350-6058]
Rok vydání: 2008
Předmět:
Zdroj: Studies in Health Technology and Informatics
6th Annual HealthGrid Conference-Global HealthGrid: E-Science Meets Biomedical Informatics, HealthGrid 2008
Popis: Novel eHealth systems are being designed to provide a citizen-centered health system, however the even demanding need for computing and data resources has required the adoption of Grid technologies. In most of the cases, this novel Health Grid requires not only conveying patient's personal data through public networks, but also storing it into shared resources out of the hospital premises. These features introduce new security concerns, in particular related with privacy. In this paper we survey current legal and technological approaches that have been taken to protect a patient's personal data into eHealth systems, with a particular focus in Intensive Care Grids. However, thanks to a security analysis applied over the Intensive Care Grid system (ICGrid) we show that these security mechanisms are not enough to provide a comprehensive solution, mainly because the data-at-rest is still vulnerable to attacks coming from untrusted Storage Elements where an attacker may directly access them. To cope with these issues, we propose a new privacy-oriented protocol which uses a combination of encryption and fragmentation to improve data's assurance while keeping compatibility with current legislations and Health Grid security mechanisms. © 2008 The authors and IOS Press. All rights reserved. 138 178 187
Databáze: OpenAIRE
Externí odkaz: