Johannes Heurix, Michael Karlinger, Michael Schrefl, Thomas Neubauer,
"A Hybrid Approach Integrating Encryption and Pseudonymization for Protecting Electronic Health Records"
: Proceedings of the Eighth IASTED International Conference on Biomedical Engineering (Biomed 2011), February 16-18, 2011, Innsbruck, Austria, 2-2011
Original Titel:
A Hybrid Approach Integrating Encryption and Pseudonymization for Protecting Electronic Health Records
Sprache des Titels:
Englisch
Original Buchtitel:
Proceedings of the Eighth IASTED International Conference on Biomedical Engineering (Biomed 2011), February 16-18, 2011, Innsbruck, Austria
Original Kurzfassung:
Federated Health Information Systems (FHIS) integrate autonomous information systems of participating health care providers to facilitate the exchange of Electronic Health Records (EHR), which improve the quality and efficiency of patients? care. However, the main problem with collecting and maintaining the sensitive data in electronic form is the issue of preserving data confidentiality and patients? privacy. Although multiple technical measures to restrict access to only authorized persons are implemented, they are usually aimed against external attackers. In this work, we propose to integrate pseudonymization and encryption to a hybrid approach which not only protects against external attackers, but also ensures that even potential internal attackers with full data access, like administrators, cannot gain any useful information.