PAX: using pseudonymization and anonymization to protect patients’ identities and data in the healthcare system

Al-Zubaidie, Mishall and Zhang, Zhongwei and Zhang, Ji (2019) PAX: using pseudonymization and anonymization to protect patients’ identities and data in the healthcare system. International Journal of Environmental Research and Public Health, 16 (1490). pp. 1-36. ISSN 1660-4601

[img]
Preview
Text (Published version)
PAX_paper.pdf
Available under License Creative Commons Attribution 4.0.

Download (2156Kb) | Preview

Abstract

Electronic health record (EHR) systems are extremely useful for managing patients’ data and are widely disseminated in the health sector. The main problem with these systems is how to maintain the privacy of sensitive patient information. Due to not fully protecting the records from unauthorised users, EHR systems fail to provide privacy for protected health information. Weak security measures also allow authorised users to exceed their specific privileges to access medical records. Thus, some of the systems are not a trustworthy source and are undesirable for patients and healthcare providers. Therefore, an authorisation system that provides privacy when accessing patients’ data is required to address these security issues. Specifically, security and privacy precautions should be raised for specific categories of users, doctor advisors, physician researchers, emergency doctors, and patients’ relatives. Presently, these users can break into the electronic systems and even violate patients’ privacy because of the privileges granted to them or the inadequate security and privacy mechanisms of these systems. To address the security and privacy problems associated with specific users, we develop the Pseudonymization and Anonymization with the XACML (PAX) modular system, which depends on client and server applications. It provides a security solution to the privacy issues and the problem of safe-access decisions for patients’ data in the EHR. The results of theoretical and experimental security analysis prove that PAX provides security features in preserving the privacy of healthcare users and is safe against known attacks.


Statistics for USQ ePrint 36332
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: Published version made available in accordance with a Creative Commons Attribution license 4.0.
Faculty/School / Institute/Centre: Current - Faculty of Health, Engineering and Sciences - School of Agricultural, Computational and Environmental Sciences
Date Deposited: 29 May 2019 06:02
Last Modified: 25 Jun 2019 01:22
Uncontrolled Keywords: anonymity, ECDSA, electronic health record (EHR), PAX, pseudonym, XACML
Fields of Research : 08 Information and Computing Sciences > 0805 Distributed Computing > 080503 Networking and Communications
08 Information and Computing Sciences > 0806 Information Systems > 080605 Decision Support and Group Support Systems
08 Information and Computing Sciences > 0806 Information Systems > 080604 Database Management
10 Technology > 1005 Communications Technologies > 100503 Computer Communications Networks
08 Information and Computing Sciences > 0804 Data Format > 080401 Coding and Information Theory
08 Information and Computing Sciences > 0806 Information Systems > 080609 Information Systems Management
08 Information and Computing Sciences > 0804 Data Format > 080403 Data Structures
Identification Number or DOI: 10.3390/ijerph16091490
URI: http://eprints.usq.edu.au/id/eprint/36332

Actions (login required)

View Item Archive Repository Staff Only