Privacy-preserving Distributed Access Control for Medical Data

Christian Maulany; Majid Nateghizad; Bart Mennink; Zekeriya Erkin

doi:10.5220/0006841404880497

Privacy-preserving Distributed Access Control for Medical Data

Christian Maulany, Majid Nateghizad, Bart Mennink, Zekeriya Erkin

2018

Abstract

The availability of wearable devices such as smartwatches and fitness trackers are a recent development. Among other things, these devices can measure the activity and vital signs of their wearers. As the types of data these devices are able to gather increases the potential for them to be used as a source of data grows. This calls for a secure method of controlling the digital exchange of medical data between wearables and healthcare providers, and healthcare providers in general. By enforcing the exchange of data to go through a central authority, a patient can be given more control over who is able to access his medical data. This central authority is then given the task of monitoring access and ensuring that all access requirements are met. Though effective, this solution relies on a highly trusted central authority. In this work, we propose a scheme using Polymorphic Encryption and Pseudonomysation and Secret Sharing to provide anonymous data storage and data exchange. Our proposal removes the need for a central authority, and instead uses a group of authorities, of which a quorum is needed to facilitate the exchange of data.

Download

Paper Citation

in Harvard Style

Maulany C., Nateghizad M., Mennink B. and Erkin Z. (2018). Privacy-preserving Distributed Access Control for Medical Data.In Proceedings of the 15th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT, ISBN 978-989-758-319-3, pages 322-331. DOI: 10.5220/0006841403220331

in Bibtex Style

@conference{secrypt18,
author={Christian Maulany and Majid Nateghizad and Bart Mennink and Zekeriya Erkin},
title={Privacy-preserving Distributed Access Control for Medical Data},
booktitle={Proceedings of the 15th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,},
year={2018},
pages={322-331},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006841403220331},
isbn={978-989-758-319-3},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 15th International Joint Conference on e-Business and Telecommunications - Volume 2: SECRYPT,
TI - Privacy-preserving Distributed Access Control for Medical Data
SN - 978-989-758-319-3
AU - Maulany C.
AU - Nateghizad M.
AU - Mennink B.
AU - Erkin Z.
PY - 2018
SP - 322
EP - 331
DO - 10.5220/0006841403220331