当前位置:
X-MOL 学术
›
Secur. Commun. Netw.
›
论文详情
Our official English website, www.x-mol.net, welcomes your
feedback! (Note: you will need to create a separate account there.)
Enhancing Transaction Security for Handling Accountability in Electronic Health Records
Security and Communication Networks Pub Date : 2020-09-01 , DOI: 10.1155/2020/8899409 Chian Techapanupreed 1 , Werasak Kurutach 1
Security and Communication Networks Pub Date : 2020-09-01 , DOI: 10.1155/2020/8899409 Chian Techapanupreed 1 , Werasak Kurutach 1
Affiliation
Electronic healthcare systems have received extensive attention during the last decade due to the advancement of digital technology. Using these systems in the healthcare industry can improve the quality of healthcare services tremendously. However, a major issue that needs to be concerned, when utilizing this kind of system, is accountability. Employments of electronic health records, the core of the systems, without accountability can be a big risk to both patients and service personals and, consequently, to the entire society. Accountability in electronic health records is essential to creating trust among parties. Many researchers have been introduced to the accountability protocol. However, most of them still lack some essential security property that is mutual authentication. This leads to both information traceability and nonrepudiation which are necessary for resolving any conflict that may arise. In this paper, we propose accountability protocol for electronic health records; the protocol employs both asymmetric and symmetric encryptions to ensure that the electronic health records are having confidentiality, integrity, authentication, and authorization. The accountability analysis and performance analysis show that the proposed protocol is more capable and effective than others. The novel aspect of this idea lies in the inclusion of certain forms of security that are necessary to protect the patient’s electronic health records. To the best of our knowledge, the proposed protocol consumes less cost, energy, and time compared with the existing protocols. A proof of concept of our protocol is also presented in this paper by using BAN logic, an automated security protocol proof tool named Scyther, and AVISPA
中文翻译:
增强交易安全性以处理电子病历中的责任
在过去的十年中,由于数字技术的发展,电子医疗系统受到了广泛的关注。在医疗保健行业中使用这些系统可以极大地提高医疗保健服务的质量。但是,在使用这种系统时,需要关注的主要问题是问责制。电子医疗记录的使用是系统的核心,如果没有问责制,可能对患者和服务人员,乃至整个社会都是很大的风险。电子病历中的问责制对于在各方之间建立信任至关重要。已经向许多研究人员介绍了责任协议。但是,它们中的大多数仍然缺少一些基本的安全属性,即相互身份验证。这导致信息可追溯性和不可否认性,这对于解决可能出现的任何冲突都是必需的。在本文中,我们提出了电子健康记录的责任协议;该协议采用非对称和对称加密,以确保电子健康记录具有机密性,完整性,身份验证和授权。问责分析和性能分析表明,所提出的协议比其他协议更有能力和效率。这种想法的新颖之处在于包含了保护患者电子健康记录所必需的某些安全形式。据我们所知,与现有协议相比,所提议的协议消耗更少的成本,能量和时间。
更新日期:2020-09-01
中文翻译:
增强交易安全性以处理电子病历中的责任
在过去的十年中,由于数字技术的发展,电子医疗系统受到了广泛的关注。在医疗保健行业中使用这些系统可以极大地提高医疗保健服务的质量。但是,在使用这种系统时,需要关注的主要问题是问责制。电子医疗记录的使用是系统的核心,如果没有问责制,可能对患者和服务人员,乃至整个社会都是很大的风险。电子病历中的问责制对于在各方之间建立信任至关重要。已经向许多研究人员介绍了责任协议。但是,它们中的大多数仍然缺少一些基本的安全属性,即相互身份验证。这导致信息可追溯性和不可否认性,这对于解决可能出现的任何冲突都是必需的。在本文中,我们提出了电子健康记录的责任协议;该协议采用非对称和对称加密,以确保电子健康记录具有机密性,完整性,身份验证和授权。问责分析和性能分析表明,所提出的协议比其他协议更有能力和效率。这种想法的新颖之处在于包含了保护患者电子健康记录所必需的某些安全形式。据我们所知,与现有协议相比,所提议的协议消耗更少的成本,能量和时间。
京公网安备 11010802027423号