Wireless technology infrastructures for authentication of patients: PKI that rings.

Advanced Search

Ulrich Sax, Isaac Kohane, Kenneth D Mandl

Author Information

Ulrich Sax: Children's Hospital Informatics Program, 1 Autumn Street AU543, Boston, MA 02115, USA. usax@med.uni-goettingen.de

PMID: 15684133 DOI: 10.1197/jamia.M1681

As the public interest in consumer-driven electronic health care applications rises, so do concerns about the privacy and security of these applications. Achieving a balance between providing the necessary security while promoting user acceptance is a major obstacle in large-scale deployment of applications such as personal health records (PHRs). Robust and reliable forms of authentication are needed for PHRs, as the record will often contain sensitive and protected health information, including the patient's own annotations. Since the health care industry per se is unlikely to succeed at single-handedly developing and deploying a large scale, national authentication infrastructure, it makes sense to leverage existing hardware, software, and networks. This report proposes a new model for authentication of users to health care information applications, leveraging wireless mobile devices. Cell phones are widely distributed, have high user acceptance, and offer advanced security protocols. The authors propose harnessing this technology for the strong authentication of individuals by creating a registration authority and an authentication service, and examine the problems and promise of such a system.

BMJ. 2001 Feb 3;322(7281):283-7 [PMID: 11157533]
Int J Med Inform. 2001 Jun;62(1):27-40 [PMID: 11340004]
J Am Med Inform Assoc. 2002 Mar-Apr;9(2):171-80 [PMID: 11861632]
Int J Med Inform. 2002 Apr;65(1):1-6 [PMID: 11904243]
Behav Res Methods Instrum Comput. 2002 May;34(2):163-9 [PMID: 12109007]
Proc AMIA Symp. 2002;:825-9 [PMID: 12463940]
J Am Med Inform Assoc. 2005 Jan-Feb;12(1):47-54 [PMID: 15492031]
BMC Med Inform Decis Mak. 2004 Jun 15;4:7 [PMID: 15196308]
J Am Med Inform Assoc. 1994 Jul-Aug;1(4):316-9 [PMID: 7719815]
Proc AMIA Symp. 1998;:356-60 [PMID: 9929241]
J Am Med Inform Assoc. 2004 Nov-Dec;11(6):479-81 [PMID: 15298996]
J Am Med Inform Assoc. 2004 Nov-Dec;11(6):448-57 [PMID: 15299002]
Int J Comput Dent. 2002 Apr-Jul;5(2-3):125-32 [PMID: 12680044]

N01-LM-3-3515/NLM NIH HHS

Cell Phone

Computer Security

Confidentiality

Humans

Medical Informatics Applications

Medical Records Systems, Computerized

Journal Article Research Support, N.I.H., Extramural Research Support, Non-U.S. Gov't Research Support, U.S. Gov't, P.H.S.

RUASN: a robust user authentication framework for wireless sensor networks.A New Privacy-Preserving Handover Authentication Scheme for Wireless Networks.Secure Authentication Protocol for Wireless Sensor Networks in Vehicular Communications.Efficient and Anonymous Authentication Scheme for Wireless Body Area Networks.A Mutual Authentication Framework for Wireless Medical Sensor Networks.An Efficient Remote Authentication Scheme for Wireless Body Area Network.A secure and efficient handover authentication protocol for wireless networks.Finger-to-Heart (F2H): Authentication for Wireless Implantable Medical Devices.Mobilizing physicians for wireless technology.New uses for wireless technology.

Implementation issues for mobile-wireless infrastructure and mobile health care computing devices for a hospital ward setting.Early experiences with personal health records.Personal health record systems and their security protection.Evaluating authentication options for mobile health applications in younger and older adults.Indivo: a personally controlled health record for health information exchange and communication.A research agenda for personal health records (PHRs).

OpenLB
Open Library of Bioscience