Mohammad Jafari
ABSTRACT
We propose a digital rights management approach for sharing electronic health records in a health research facility and argue advantages of the approach. We also give an outline of the system under development and our implementation of the security features and discuss challenges that we faced and future directions.
- }}Microsoft Active Directory Rights Management Service. http://technet.microsoft.com/en-ca/windowsserver/dd448611.asp.Google Scholar
- }}Microsoft Office SharePoint Server. http://sharepoint.microsoft.com.Google Scholar
- }}eXtensible rights Markup Language version 1.2. http://www.xrml.org/XrML_12.asp, 2001.Google Scholar
- }}International Standards Organization, Information Technology, Multimedia Framework (MPEG-21), part 4: Intellectual Property Management and Protection Components. ISO/IEC 21000-4, 2006.Google Scholar
- }}A. Fragopoulos, J. Gialelis, and D. Serpanos. Security Framework for Pervasive Healthcare Architectures Utilizing MPEG-21 IPMP Components. International Journal of Telemedicine and Applications, 2009.Google ScholarCross Ref
- }}B. C. M. Fung, K. Wang, R. Chen, and P. S. Yu. Privacy-preserving data publishing: A survey of recent developments. ACM Computing Surveys, 42(4):1--53, 2010. Google ScholarDigital Library
- }}M. Jafari, R. Safavi-Naini, C. Saunders, and N. P. Sheppard. Securing medical research data with a rights management system. In USENIX HealthSec'10: 1st USENIX Workshop on Health Security and Privacy (to appear), 2010.Google Scholar
- }}S. Kenny and L. Korba. Applying digital rights management systems to privacy rights management. Computers & Security, 21(7):648 -- 664, 2002.Google ScholarDigital Library
- }}W. Leister, T. Fretland, and I. Balasingham. Security and Authentication Architecture Using MPEG-21 for Wireless Patient Monitoring Systems. International Journal On Advances in Security, 2(1):16--29, 2009.Google Scholar
- }}Q. Liu, R. Safavi-Naini, and N. P. Sheppard. Digital rights management for content distribution. In ACSW Frontiers '03, pages 49--58, 2003. Google ScholarDigital Library
- }}Microsoft. Rights Management Services (RMS): Client-to-Server Protocol Specification. http://msdn.microsoft.com/en-us/library/cc243191%28v=PROT.13%29.aspx, 2010.Google Scholar
- }}M. Petković, S. Katzenbeisser, and K. Kursawe. Rights management technologies: A good choice for securing electronic health records?, In ISSE'07: Proceedings of the International Conference on Information Security Solutions Europe, pages 178--187, 2007.Google ScholarCross Ref
- }}N. P. Sheppard and R. Safavi-Naini. Protecting Privacy with the MPEG-21 IPMP Framework. In PET'06: Proceedings of the International Workshop on Privacy Enhancing Technologies, pages 152--171, 2006. Google ScholarDigital Library
- }}N. P. Sheppard, R. Safavi-Naini, and M. Jafari. A digital rights management model for healthcare. In POLICY'09: Proceedings of the IEEE International Workshop on Policies for Distributed Systems and Networks, pages 106--109, London, UK, 2009. Google ScholarDigital Library
- }}N. P. Sheppard, R. Safavi-Naini, and M. Jafari. A secure electronic healthcare record infrastructure in the digital rights management model. Technical report, 2009-939-18, Department of Computer Science, University of Calgary, 2009.Google Scholar
- }}S. H. Woolf. The meaning of translational research and why it matters. The Journal of American Medical Association, 2008.Google ScholarCross Ref
Index Terms
- Using digital rights management for securing data in a medical research environment
Recommendations
Using Latent Class Analysis to Identify Sophistication Categories of Electronic Medical Record Systems in U.S. Acute Care Hospitals
Many believe that electronic medical record (EMR) systems hold promise for improving the quality of health care services. The body of research on this topic is still in the early stages, however, in part because of the challenge of measuring the ...
Development and validation of a continuous measure of patient condition using the Electronic Medical Record
Graphical abstractDisplay Omitted New method to estimate patient condition during a hospital visit.Patient condition is computed by summing risks measured in each of 26 variables.Leverages data already in the EMR: vital signs, lab results, nursing ...
Using electronic health record systems in diabetes care: emerging practices
IHI '10: Proceedings of the 1st ACM International Health Informatics SymposiumWhile there has been considerable attention devoted to the deployment of electronic health record (EHR) systems, there has been far less attention given to their appropriation for use in clinical encounters --- particularly in the context of complex, ...
Comments