An Enhanced Approach to Supporting Controlled Access to EPRs with Three Levels of Identity Privacy Preservations

Addas, Rima; Zhang, Ning

doi:10.1007/978-3-642-25364-5_38

Cited by 3 publications

(5 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A fine-grained trust-based access control with multiple levels of identity privacy preservation was proposed (Addas, 2011). Specifically, three levels of pseudonym generations are developed.…”

Section: Trust-based Access Controlmentioning

confidence: 99%

Issues and Challenges in Securing eHealth Systems

Bai

Dai

2014

International Journal of E-Health and Medical Communications

View full text Add to dashboard Cite

With the widespread eHealth usage, security of eHealth services is becoming increasingly important. In this paper, we analyze the security problems in eHealth systems, discuss various approaches of securing health data collection and sharing proposed in the recent literature on eHealth security, and provide comparative evaluations that include advantages and limitations of each approach. Possible future research directions on each approach for enhancing security for eHealth applications are also suggested.

show abstract

Section: Trust-based Access Controlmentioning

confidence: 99%

Issues and Challenges in Securing eHealth Systems

Bai

Dai

2014

International Journal of E-Health and Medical Communications

View full text Add to dashboard Cite

show abstract

“…Both methods aim to securely integrate primary and secondary use of distributed medical data without compromising the patient's identity privacy. We described an alternative method in [15] with the aim to reduce access delays. In other words, our method proved to be more efficient than Deng's and PIPE methods.…”

Section: Introductionmentioning

confidence: 99%

“…In detail, to facilitate the minimum access right management, we have proposed a new method called 3LI2Pv2 method to support controlled access to EPRs with three levels of identity privacy reservations [15]. In this method, we have identified three different user groups, each with a defined level of access.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An Enhanced Linkable Anonymous Access Protocol of the Distributed Electronic Patient Records

Addas

Zhang

2014

2014 Ninth International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

Abstract-This paper describes the growing concern of privacy and security in e-health applications. Sharing sensitive patient data in a distributed environment introduces security and privacy risks. Therefore, there are increasing demands to provide secure access to distributed Electronic Patient Records (EPRs) but without compromising performance. The aim of this paper is to respond to such demands and to support secure and efficient access to distributed EPRs. In this paper, we enhance the Linkable Anonymous Access Protocol while supporting security and performance. To achieve this, we have designed a secure protocol called the Enhanced Linkable Anonymous Access (ELAA) protocol. To show that the ELAA protocol is secure and efficient, (1) we formally verify and analyse it against security properties using the Casper/FDR2 verification tool. In addition, (2) we build a prototype using the Java technology to demonstrate the performance of the enhanced protocol. By doing this, we prove that the ELAA protocol maintains a good balance between security and performance while supporting distributed access to EPRs.

show abstract

“…In [3], we have proposed a new method called 3LI2Pv2 method to support controlled access to electronic patient records (EPRs) with three levels of identity privacy reservations. In the method, we have identified three levels of patient identity privacy protection: * Level-1 (L1)-Linkable access: At this level, multiple data objects of the same patient can be linked, and this set of objects can be linked to the patient's identity.…”

Section: Introductionmentioning

confidence: 99%

Formal Security Analysis and Performance Evaluation of the Linkable Anonymous Access Protocol

Addas

Zhang

2014

Information and Communication Technology

Self Cite

View full text Add to dashboard Cite

Abstract. The introduction of e-Health applications has not only brought benefits, but also raised serious concerns regarding security and privacy of health data. The increasing demands of accessing health data, highlighted critical questions and challenges concerning the confidentiality of electronic patient records and the efficiency of accessing these records. Therefore, the aim of this paper is to provide secure and efficient access to electronic patient records. In this paper, we propose a novel protocol called the Linkable Anonymous Access protocol (LAA). We formally verify and analyse the protocol against security properties such as secrecy and authentication using the Casper/FDR2 verification tool. In addition, we have implemented the protocol using the Java technology to evaluate its performance. Our formal security analysis and performance evaluation proved that the LAA protocol supports secure access to electronic patient records without compromising performance.

show abstract

An Enhanced Approach to Supporting Controlled Access to EPRs with Three Levels of Identity Privacy Preservations

Cited by 3 publications

References 12 publications

Issues and Challenges in Securing eHealth Systems

Issues and Challenges in Securing eHealth Systems

An Enhanced Linkable Anonymous Access Protocol of the Distributed Electronic Patient Records

Formal Security Analysis and Performance Evaluation of the Linkable Anonymous Access Protocol

Contact Info

Product

Resources

About