A secure architecture for the pseudonymization of medical data

Proceedings - Second International Conference on Availability, Reliability and Security, ARES 2007

Volumn , Issue , 2007, Pages 318-324

  Riedl, Bernhard ^a   Neubauer, Thomas ^a   Goluch, Gernot ^a   Boehm, Oswald ^b   Reinauer, Gert ^b   Krumboeck, Alexander ^b  

^a Secure Business Austria ^*

^b Braincon Technologies   (Austria)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER ARCHITECTURE; COMPUTER CONTROL; HEALTH CARE; HOSPITAL DATA PROCESSING; QUALITY OF SERVICE;

CLINICAL QUALITY; DATA PROTECTION; ELECTRONIC HEALTHCARE RECORDS; SECURE ARCHITECTURE;

SECURITY OF DATA;

EID: 34548159019     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2007.22     Document Type: Conference Paper

References (23)

1. The Austrian Cancer Register.
2. J. Biskup and U. Flegel. Transaction-based pseudonyms in audit data for privacy respecting intrusion detection. In RAID '00: Proceedings of the Third International Workshop on Recent Advances in Intrusion Detection, pages 28-48, London, UK, 2000. Springer-Verlag.
3. F. R. Ernst and A. J. Grizzle. Drug-related morbidity and mortality: Updating the cost-of-illness model. Technical report, 1995.
4. F. R. Ernst and A. J. Grizzle. Drug-related morbidity and mortality: Updating the cost-of-illness model. Technical report, 2001.
5. U. Flegel. Pseudonymizing unix log flies. In InfraSec '02: Proceedings of the International Conference on Infrastructure Security, pages 162-179, London, UK, 2002. Springer-Verlag.
6. O. Jorns, S. Bessler, and R. Pailer. An efficient mechanism to ensure location privacy in telecom service applications. In Net-Con 2004, Mallorca, Spain, 2004.
7. O. Jörns, O. Jung, J. Gross, and S. Bessler. A privacy enhancement mechanism for location based service architectures using transaction pseudonyms. In 2nd International Conference on Trust, Privacy, and Security in Digital Business, Copenhagen, Denmark, 2005.
8. A. Lysyanskaya, R. L. Rivest, A. Sahai, and S. Wolf. Pseudonym systems. In Proceedings of the Sixth Annual Workshop on Selected Areas in Cryptography (SAC '99).
9. S. Maerkle, K. Koechy, R. Tschirley, and H. U. Lemke. The PREPaRe system - Patient Oriented Access to the Personal Electronic Medical Record. In CARS 2001 Computer Assisted Radiology and Surgery, H.U. Lemke, et al. (Eds.), Excerpta Medica International Congress Series, Elsevier, Amsterdam, Netherlands, pages 849-854, 2001.
10. K. Maris. The Human Factor, 2005.
11. A. Pfitzmann and M. Koehntopp. Anonymity, Unlinkability, Unobservability, Pseudonymity, and Identity Management A Consolidated Proposal for Terminology. In Lecture Notes in Computer Science. Springer Berlin / Heidelberg, 2005.
12. K. Pommerening. Medical Requirements for Data Protection. In IFIP Congress, Vol. 2, pages 533-540, 1994.
13. K. Pommerening and M. Reng. Secondary use of the Electronic Health Record via pseudonymisation. Medical Care Compunetics 1, -:441-446, 2004.
14. J. Pope. Implementing EHRs requires a shift in thinking. PHRs-the building blocks of EHRs-may be the quickest path to the fulfillment of disease management. Health Management Technology, 27(6):24,26,120, 2006.
15. J. Powell and I. Buchan. Electronic Health Records Should Support Clinical Research. Journal of Medical Internet Research, 7:e4, 2005.
16. A. Rector, J. Rogers, A. Taweel, D. Ingram, D. Kalra, J. Milan, P. Singleton, R. Gaizauskas, M. Hepple, D. Scott, and R. Power. Clef -joining up healthcare with clinical and postgenomic research, 2003.
17. R. Russell, D. Kaminsky, R. F. Puppy, J. Grand, D. Ahmad, H. Flynn, I. Dubrawsky, S. W. Manzuik, and R. Permeh. Hack Proofing Your Network (Second Edition). Syngress Publishing, 2002.
18. A. Shamir. How to share a secret. Commun. ACM, 22(11):612-613, 1979.
19. K. Taipale. Technology, Security and Privacy: The Fear of Frankenstein, the Mythology of Privacy and the Lessons of King Ludd. International Journal of Communications Law & Policy, 9:-, 2004.
20. C. Thielscher, M. Gottfried, S. Umbreit, F. Boegner, J. Haack, and N. Schroeders. Patent: Data processing system for patent data, 2005.
21. D. Thomson, L. Bzdel, K. Golden-Biddle, T. Reay, and C. A. Estabrooks. Central Questions of Anonymization: A Case Study of Secondary Use of Qualitative Data. Forum Qualitative Social Research, 6:29, 2005.
22. T. Thornburgh. Social engineering: the "Dark Art". In InfoSecCD '04: Proceedings of the 1st annual conference on Information security curriculum development, pages 133-135, New York, NY, USA, 2004. ACM Press.
23. T. Westran, M. Mack, and R. Enbody. The last line of defense: a host-based, real-time, kernel-level intrusion detection system. In submitted to IEEE Symposium on Security and Privacy, 2003.