Abstract
Advances in healthcare IT bring new concerns with respect to privacy and security. Security critical patient data no longer resides on mainframes physically isolated within an organization, where physical security measures can be taken to defend the data and the system. Modern solutions are heading towards open, interconnected environments where storage outsourcing and operations on untrusted servers happen frequently. In order to allow secure sharing of health records between different healthcare providers, Rights Management Techniques facilitating a datacentric protection model can be employed: data is cryptographically protected and allowed to be outsourced or even freely float on the network. Rather than relying on different networks to provide confidentiality, integrity and authenticity, data is protected at the end points of the communication. In this paper we compare Enterprise/Digital Rights Management with traditional security techniques and discuss how Rights Management can be applied to secure Electronic Health Records.
Original language | English |
---|---|
Title of host publication | Highlights of the Information Security Solutions Europe Conference on Securing Electronic Business Processes (ISSE/SECURE 2007) 25-27 September 2007, Warsaw, Poland |
Editors | N. Pohlmann, H. Reimer, W. Schneider |
Place of Publication | Wiesbaden, Germany |
Publisher | Vieweg |
Pages | 178-187 |
ISBN (Print) | 978-3-83480346-7 |
DOIs | |
Publication status | Published - 2007 |
Event | conference; ISSE/SECURE 2007, Warsaw, Poland; 2007-09-25; 2007-09-27 - Duration: 25 Sept 2007 → 27 Sept 2007 |
Conference
Conference | conference; ISSE/SECURE 2007, Warsaw, Poland; 2007-09-25; 2007-09-27 |
---|---|
Period | 25/09/07 → 27/09/07 |
Other | ISSE/SECURE 2007, Warsaw, Poland |