2008 Third International Conference on Availability, Reliability and Security Secure Team-Based EPR Access Acquisition in Wireless Networks March 04-March 07 ISBN: 978-0-7695-3102-1
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2008.178
Electronic patient records (EPR) may contain highly confidential and sensitive medical data, and it is therefore essential that such information is properly protected. Medical teams that are providing care to a patient has a legitimate need to access the medical dataof the concerning patient, and this could be a valid criteria for medical professionals to obtain access to such data. Moreover, since teams consist of more than one individual, the consent or agreement among a number of the members of a medical team could by itself be a proper basis for trust and therefore a legitimate basis for medical teams to acquire access to medical data.In this paper, we present three closely related cryptographic protocols for secure team-based EPR access acquisition where the cryptographically verifiable mutual consent from some minimum number of participants of a medical team is the granting criteria for the team to acquire EPR access. The schemes are based on thresholdcryptography and are moreover broadcast-oriented, and are thus well-suitable for wireless networks. All schemes do also provide secure transfer of medical data.
Index Terms:
Broadcast-oriented threshold decryption, Secure EPR acquisition, Access control
Citation:
Sigurd Eskeland, Vladimir Oleshchuk, "Secure Team-Based EPR Access Acquisition in Wireless Networks," ares, pp.943-949, 2008 Third International Conference on Availability, Reliability and Security, 2008 Usage of this product signifies your acceptance of the Terms of Use. | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb