Sensitive Data Exchange Protocol Suite for Healthcare

Thibaud Ecarot, Benoit Fraikin, Francis Ouellet, Luc Lavoie, Mark McGilchrist, Jean Francois Ethier

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

Learning Healthcare System (LHS) is an increasingly deployed approach in health to improve patient care. For the successful implementation of this approach, communications must become cross-cutting between research and primary care. To meet this need, standardized protocols for health data exchange, such as Fast Healthcare Interoperability Resources from Health Level Seven organization, are massively used in healthcare organizations. However, these protocols don't meet new security needs and they don't natively integrate anonymization mechanisms for data sources and patients while maintaining individuation. In this paper, a new protocol suite is proposed for sensitive health data exchange. Thus, an architecture is presented: it integrates proxies and anonymizers for the extraction and transmission phases of sensitive data. Then, requirements on several new protocols are detailed to meet the exchanges needs between the learning health system entities. Finally, a comparison of security properties and a vulnerability analysis are carried out between the Fast Healthcare Interoperability Resources protocol and the protocol suite proposed. These analyses show that the protocol suite integrates most of the defenses against common protocol attacks and that anonymization, confidentiality, authentication and logging requirements are met.

Original languageEnglish
Title of host publication2020 IEEE Symposium on Computers and Communications, ISCC 2020
PublisherInstitute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)9781728180861
DOIs
Publication statusPublished - Jul 2020
Event2020 IEEE Symposium on Computers and Communications, ISCC 2020 - Rennes, France
Duration: 7 Jul 202010 Jul 2020

Publication series

NameProceedings - IEEE Symposium on Computers and Communications
Volume2020-July
ISSN (Print)1530-1346

Conference

Conference2020 IEEE Symposium on Computers and Communications, ISCC 2020
Country/TerritoryFrance
CityRennes
Period7/07/2010/07/20

Keywords

  • Communication system security
  • Data security
  • Network security
  • Protocols
  • Public healthcare

ASJC Scopus subject areas

  • Software
  • Signal Processing
  • General Mathematics
  • Computer Science Applications
  • Computer Networks and Communications

Fingerprint

Dive into the research topics of 'Sensitive Data Exchange Protocol Suite for Healthcare'. Together they form a unique fingerprint.

Cite this