Electronic signature for medical documents - Integration and evaluation of a public key infrastructure in hospitals

Methods of Information in Medicine

Volumn 41, Issue 4, 2002, Pages 321-330

  Brandner, Ralf ^a   Van der Haak, M ^a   Hartmann, M ^a   Haux, R ^a   Schmucker P ^a  

^a UNIVERSITY OF HEIDELBERG   (Germany)

Author keywords

Data security; Electronic patient records; Electronic signature; Public key infrastructure

Indexed keywords

ARTICLE; CERTIFICATION; COMPUTER SECURITY; DATA BASE; ELECTRONIC MEDICAL RECORD; GERMANY; HOSPITAL CARE; HOSPITAL DISCHARGE; HOSPITAL INFORMATION SYSTEM; INTERVIEW; LAW; LEGAL ASPECT; MEDICAL DOCUMENTATION; PRIORITY JOURNAL; QUESTIONNAIRE; RESPONSIBILITY;

EID: 0036394536     PISSN: 00261270     EISSN: None     Source Type: Journal    
DOI: 10.1055/s-0038-1634389     Document Type: Article

References (29)

1. van Bemmel JH. Toward a Virtual Electronic Patient Record. MD Comput 1999; 16 (6): 20-1.
2. Smith E, Eloff JH. Security in health-care information systems - Current trends. Int J Med Inf 1999; 54 (1): 39-54.
3. Blobel B. The European Trust Health Project experiences with implementing a security infrastructure. Int J Med Inf 2000; 60 (2): 193-201.
4. Dujat C, Haux R, Schmiicker P, Winter A. Digital Optical Archiving of Medical Records in Hospital Information Systems - A Practical Approach Towards the Computer-based Patient Record? Methods Inf Med 1995; 34 (5): 489-97.
5. Safran C, Goldberg H. Electronic patient records and the impact of the Internet. Int J Med Inf 2000; 60 (2): 77-83.
6. Epstein MA, Pasieka MS, Lord WP, Wong STC, Mankovich NJ. Security for the Digital Information Age of Medicine: Issues, Applications, and Implementation. J Digit Imaging 1998; 11 (1): 33-4.
7. van Dyk J. Public Key Infrastructure - Securing the Exchange of Health Information. MD Comput 2000; 17 (5): 44-6.
8. Diffie W, Hellmann ME. New Directions in Cryptography. IEEE Trans Inf Theory 1976; 22 (6): 644-54.
9. ISO 7498-2. Information processing systems Open Systems Interconnection - Basic Reference Model - Part 2: Security Architecture. International Organization for Standardization JTC 1. 1989.
10. SigG 1997. Federal Act Establishing the General Conditions for Information and Communication Services - Information and Communication Services Act - Article 3 Digital Signature Act. Bundesgesetzblatt Teil I 52: 1872-6.
11. SigR 2000. Directive 1999/93/EC of the European Parliament and of the Council of 13 December 1999 on a Community framework for electronic signatures. Official Journal of the European Communities L13: 12-20.
12. Anderson JG, Aydin CE, Jay SJ. Evaluating Health Care Information Systems: Methods and Application. Thousand Oaks (California): Sage Publications; 1994.
13. O'Brien DG, Yasnoff WA. Privacy, Confidentiality, and Security in Information Systems of State Health Agencies. Am J Prev Med 1999; 16 (4): 351-8.
14. Secude. Security Development Environment for Open Systems. Darmstadt: Secude Sicherheitstechnologie Informationssysteme GmbH; 1997.
15. Boy O, Ohmann C, Aust B, Eich HP, Koller M, Knode O et al. Systematische Evaluierung der Anwenderzufriedenheit mit einem Krankenhausinformationssystem - Erste Ergebnisse. In: Hasman A., eds. Medical Infobahn for Europe - Proceedings of MIE2000 and GMDS2000. Amsterdam: IOS Press; 2000: 518-22.
16. Pruemper J. Software-Evaluation Based upon ISO 9241 Part 10. Lect Notes Comput Sc 1993; 733: 255.
17. SigG 2001. Law Governing Framework Conditions for Electronic Signatures and Amending Other Regulations. Bundesgesetzblatt Teil I 22: 876-84.
18. ENV 13729. Health informatics - Secure user identification for healthcare strong authentication using microprocessor cards. European Committee for Standardization TC 251. 1999.
19. HPC-D v. 1.1. German Health Professional Card - Spezification Physician Version 1.1. Gemeinsame AG der Kassenärztlichen Bundesvereinigung und der Bundesärztekammer. 1999.
20. Rivest R, Shamir A, Adleman L. A method for obtaining digital signatures and public key cryptosystems. Commun ACM 1978; 21 (2).
21. ISO/IEC 14888-3. Information technology Security techniques - Digital signatures with appendix - Part 3: Certificate-based mechanisms. International Organization for Standardization JTC 1/SC 27.
22. ISO/IEC 10118-3. Information technology Security techniques - Hash-functions - Part 3: Dedicated hash-functions. International Organization for Standardization JTC 1/SC 27. 1998.
23. NIST FIPS Publication 180-1. Secure Hash Standard (SHS-1). National Institute of Standards and Technology. 1995.
24. PKCS#7. Cryptographic Message Syntax Standard. Public Key Cryptography Standards. RSA Laboratories. 1993.
25. RFC 2251. Lightweight Directory Access Protocol (v3). Network Working Group. 1997.
26. RFC 2560. Online Certificate Status Protocol OCSP. X.509 Internet Public Key Infrastructure. Network Working Group. 1999.
27. XML Signature. Syntax and Processing W3C Candidate Recommendation 19-April-2001. World Wide Web Consortium. 2001.
28. DICOM Supplement 41. Digital Imaging and Communications in Medicine (DICOM) Digital Signatures. NEMA Standards Publication PS 3. National Electric Manufacturers Association 2001.
29. Winter A, Haux R. A Three Level graph-based Model for Management of Computer-Supported Hospital Information Systems. Methods Inf Med 1995; 34 (4): 378-96.