Using a public key registry for improved trust and scalability in national E-health systems

Liu, Vicky, Caelli, William, & Chen, Yu-Nien Maggie (2013) Using a public key registry for improved trust and scalability in national E-health systems. International Journal of E-Health and Medical Communications, 4(4), pp. 66-83.

[img] Accepted Version (PDF 397kB)
Administrators only | Request a copy from author

View at publisher

Abstract

An increasing number of countries are faced with an aging population increasingly needing healthcare services. For any e-health information system, the need for increased trust by such clients with potentially little knowledge of any security scheme involved is paramount. In addition notable scalability of any system has become a critical aspect of system design, development and ongoing management. Meanwhile cryptographic systems provide the security provisions needed for confidentiality, authentication, integrity and non-repudiation. Cryptographic key management, however, must be secure, yet efficient and effective in developing an attitude of trust in system users. Digital certificate-based Public Key Infrastructure has long been the technology of choice or availability for information security/assurance; however, there appears to be a notable lack of successful implementations and deployments globally. Moreover, recent issues with associated Certificate Authority security have damaged trust in these schemes. This paper proposes the adoption of a centralised public key registry structure, a non-certificate based scheme, for large scale e-health information systems. The proposed structure removes complex certificate management, revocation and a complex certificate validation structure while maintaining overall system security. Moreover, the registry concept may be easier for both healthcare professionals and patients to understand and trust.

Impact and interest:

0 citations in Scopus
Search Google Scholar™

Citation counts are sourced monthly from Scopus and Web of Science® citation databases.

These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.

Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.

ID Code: 69885
Item Type: Journal Article
Refereed: Yes
Keywords: public key registry, non-certificate-based cryptosystem, e-health security, trust in information systems, e-health security solutions
DOI: 10.4018/ijehmc.2013100105
ISSN: 1947-315X
Subjects: Australian and New Zealand Standard Research Classification > INFORMATION AND COMPUTING SCIENCES (080000) > COMPUTER SOFTWARE (080300) > Computer System Security (080303)
Divisions: Current > Schools > School of Electrical Engineering & Computer Science
Past > QUT Faculties & Divisions > Faculty of Science and Technology
Past > Institutes > Information Security Institute
Copyright Owner: Copyright 2014 IGI Global
Deposited On: 06 Apr 2014 23:31
Last Modified: 25 Oct 2016 23:41

Export: EndNote | Dublin Core | BibTeX

Repository Staff Only: item control page