Health records and the cloud computing paradigm from a privacy perspective

Journal of Healthcare Engineering

Volumn 2, Issue 4, 2011, Pages 487-508

  Stingl, Christian ^a   Slamanig, Daniel ^a  

^a CARINTHIA UNIVERSITY OF APPLIED SCIENCES   (Austria)

Author keywords

Cloud computing; Electronic health record; Personal health record; Privacy aspects; Privacy protection

Indexed keywords

EID: 84864091173     PISSN: 20402295     EISSN: 20402309     Source Type: Journal    
DOI: 10.1260/2040-2295.2.4.487     Document Type: Article

References (30)

1. Google. com. Google Health-Personal Health Record Service. www.google.com/health.
2. Microsoft. Microsoft HealthVault. www.healthvault.com.
3. Computer Security Institute (CSI). Computer Crime and Security Survey 2007. http://www.gocsi.com/forms/csi survey.jhtml
4. Gain, B. Cloud Computing & SaaS In 2010-What To Expect After The Uncertainty & Hype Fade. Processor 32(1), 2010.
5. Rittinghouse, J., and Ransome, F. Cloud Computing: Implementation, Management and Security. CRC Press, 2010.
6. Mell, P., and Grance, T. The NIST Definition of Cloud Computing. National Institute of Standards and Technology, http://csrc.nist.gov/groups/SNS/cloud-computing
7. Tang, P.C., Ash, J.S., Bates, D.W., Overhage, J.M., and Sands, D.Z. Personal Health Records: Definitions, Benefits, and Strategies for Overcoming Barriers to Adoption. J Am Med Inform Assoc. 13 (2): 121-126, 2006.
8. Frick, U., Baer, N. et al. Chronisch Kranke einstellen? Eine experimentelle Vignettenstudie unter Personalmanagern. In Proc. FFH 2008, pages 45-50, Martin Meidenbauer Verlag, 2008.
9. Jensen, M., Schwenk, S., Gruschka, N., and Lo Iacono, L. On Technical Security Issues in Cloud Computing. In Proc. of the IEEE International Conference on Cloud Computing, pages 109-116. IEEE, 2009.
10. Thomson, I. Google Docs leaks private user data online. http://www.v3.co.uk/vnunet/news/2238122/google-docs-leaks-private.
11. Riedl, B., Grascher, V., and Neubauer, T. A Secure e-Health Architecture based on the Appliance of Pseudonymization. Journal of Software 3(2): 23-32, 2008.
12. Caumanns, J. Der Patient bleibt Herr seiner Daten. Realisierung des eGK-Berechtigungs-konzepts -ber ein ticketbasiertes, virtuelles Dateisystem. Informatik-Spektrum 29 (5): 323-331, 2006.
13. Alhaqbani, B., Fidge, C. Privacy-Preserving Electronic Health Record Linkage Using Pseudonym Identifiers. In Proc. of HealthComm 2008, pages 108 - 117, IEEE Communications Society, 2008.
14. Huda, N., Sonehara, N., and Yamada, S. A Privacy Management Architecture for Patient-Controlled Personal Health Record System. Journal of Engineering Science and Technology 4(2): 154-170, 2009.
15. Sweeney, L. k-Anonymity: a Model for Protecting Privacy. International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems 10(5): 557-570, 2002.
16. Samarati, P. Protecting Respondents- Identities in Microdata Release. IEEE Trans. Knowl. Data Eng. 13(6): 1010-1027, 2001.
17. Bellare, M., and Rogaway, P.: Optimal Asymmetric Encryption. In Proc. of EUROCRYPT 1994. LNCS vol. 950, pages 92-111. Springer-Verlag, 1994.
18. El Gamal, T.: A Public Key Cryptosystem and a Signature Scheme Based on Discrete Logarithms. In Proc. of CRYPTO 1984, LNCS vol. 196, pages 10-18. Springer-Verlag, 1984.
19. Cramer, R., Shoup, V.: APractical Public Key Cryptosystem Provably Secure Against Adaptive Chosen Ciphertext Attack. In Proc. of CRYPTO 1998, LNCS vol. 1462, pages 13-25. Springer-Verlag 1998.
20. Stingl, C. and Slamanig, D. Privacy-enhancing methods for e-health applications: how to prevent statistical analyses and attacks. Int. J. Bus. Intell. Data Min. 3(3): 236-254, 2008.
21. Slamanig, D., and Stingl, C. Privacy Aspects of eHealth. In Proc. of ARES 2008, pages 1226-1233. IEEE Computer Society, 2008.
22. Bellare, M., Boldyreva, A., O-Neill, A. Deterministic and Efficiently Searchable Encryption. In Proc. of CRYPTO 2007. LNCS, vol. 4622, pages 535-552. Springer-Verlag, 2007.
23. Danezis, G. and Diaz, C. A Survey of Anonymous Communication Channels. Technical Report MSRTR-2008-35, Microsoft Research, 2008.
24. Ateniese, G., Camenisch, J., Joye, M., Tsudik, G. A Practical and Provably Secure Coalition-Resistant Group Signature Scheme. In Proc. of CRYPTO 2000. LNCS, vol. 1880, pages 255-270. Springer-Verlag, 2000.
25. Boneh, D., Boyen, X., Shacham, H. Short Group Signatures. In Proc. of CRYPTO 2004. LNCS, vol. 3152, pages 41-55. Springer-Verlag, 2004.
26. Teranishi, I., Sako, K. k-Times Anonymous Authentication with a Constant Proving Cost. In Proc. of Public-Key Cryptography 2006. LNCS, vol. 3958, pages 525-542. Springer-Verlag, 2006.
27. Slamanig, D., Schartner, P., Stingl, C. Practical Traceable Anonymous Identification. In Proc. of SECRYPT 2009, pages 225-232. INSTICC Press, 2009.
28. Slamanig, D., and Rass, S. Anonymous But Authorized Transactions Supporting Selective Traceability. In Proc. of SECRYPT 2010, IEEE Communications Society, 2010.
29. Shamir, A. How to Share a Secret. Commun. ACM 22(11): 612-613, 1979.
30. Benaloh, J.C., and Leichter, J. Generalized Secret Sharing and Monotone Functions. In Proc. of CRYPTO 1988. LNCS, vol. 403, pages 27-35, Springer-Verlag, 1988.