Loading...
Please wait, while we are loading the content...
Similar Documents
Privacy-Preserving Audit for Broker-Based Health Information Exchange
| Content Provider | CiteSeerX |
|---|---|
| Author | Oh, Se Eun Chun, Ji Young Jia, Limin Garg, Deepak Gunter, Carl A. Datta, Anupam |
| Abstract | Developments in health information technology have en-couraged the establishment of distributed systems known as Health Information Exchanges (HIEs) to enable the sharing of patient records between institutions. In many cases, the parties running these exchanges wish to limit the amount of information they are responsible for holding because of sensitivities about patient information. Hence, there is an interest in broker-based HIEs that keep limited information in the exchange repositories. However, it is essential to audit these exchanges carefully due to risks of inappropriate data sharing. In this paper, we consider some of the require-ments and present a design for auditing broker-based HIEs in a way that controls the information available in audit logs and regulates their release for investigations. Our approach is based on formal rules for audit and the use of Hierarchical Identity-Based Encryption (HIBE) to support staged release of data needed in audits and a balance between automated and manual reviews. We test our methodology via an exten-sion of a standard for auditing HIEs called the Audit Trail and Node Authentication Profile (ATNA) protocol. |
| File Format | |
| Access Restriction | Open |
| Subject Keyword | Privacy-preserving Audit Broker-based Health Information Exchange Broker-based Hies Audit Trail Limited Information Patient Information Staged Release Audit Log Manual Review Hierarchical Identity-based Encryption Health Information Technology Patient Record Node Authentication Profile Formal Rule Distributed System Inappropriate Data Exchange Repository Many Case |
| Content Type | Text |
