A Flexible Role-based Secure Messaging Service: Exploiting IBE Technology in a Health Care Trial
نویسندگان
چکیده
IBE, secure messaging, RBAC, access control, health care, security, privacy The management of confidential and sensitive information is a major problem for people and organisations. Dynamic organisations require secure solutions to protect confidential documents against unauthorised access and to cope with changes to people's roles and permissions. Solutions based on traditional cryptographic systems and PKI show their limitations, in terms of flexibility and manageability. This paper describes an innovative technical solution in the area of role-based secure messaging that exploits Identifier-based Encryption (IBE) technology. It illustrates the advantages over a similar approach based on traditional cryptography and PKI. It discusses a few open issues. A secure messaging system based on our technology has been fully implemented and it is currently used in a trial with a major European health service organization.
منابع مشابه
A Flexible Role-based Secure Messaging Service: Exploiting IBE Technology for Privacy in Health Care
The management of private and confidential information is a major problem for dynamic organizations. Secure solutions are needed to exchange confidential documents, protect them against unauthorised accesses and cope with changes of people’s roles and permissions. Traditional cryptographic systems and PKI show their limitations, in terms of flexibility and
متن کاملIBE Applied to Privacy and Identity Mangement
Identifier-based Encryption (IBE) is an emerging cryptography schema. As it happens for new technologies, there are ongoing debates about its usefulness and best usage. This paper describes some practical applications of IBE, in the areas of confidentiality enforcement, privacy and identity management. These applications include: a service for timed release of confidential information; a secure...
متن کاملSome Implementation Issues for Security Services based on IBE
Identity Based Encryption (IBE) is a public key cryptosystem where a unique identity string, such as an e-mail address, can be used as a public key. IBE is simpler than the traditional PKI since certificates are not needed. An IBE scheme is usually based on pairing of discrete points on elliptic curves. An IBE scheme can also be based on quadratic residuosity. This paper presents an overview of...
متن کاملIs Provider Secure Messaging Associated With Patient Messaging Behavior? Evidence From the US Army
BACKGROUND Secure messaging with health care providers offers the promise of improved patient-provider relationships, potentially facilitating outcome improvements. But, will patients use messaging technology in the manner envisioned by policy-makers if their providers do not actively use it? OBJECTIVE We hypothesized that the level and type of secure messaging usage by providers might be ass...
متن کاملKey Dependent Message Security and Receiver Selective Opening Security for Identity-Based Encryption
We construct two identity-based encryption (IBE) schemes. The first one is IBE satisfying key dependent message (KDM) security for user secret keys. The second one is IBE satisfying simulation-based receiver selective opening (RSO) security. Both schemes are secure against adaptive-ID attacks and do not have any a-priori bound on the number of challenge identities queried by adversaries in the ...
متن کامل