Presentation is loading. Please wait.

Presentation is loading. Please wait.

EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria."— Presentation transcript:

1 EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria 2° EUBIROD Meeting Brussels 22-23 January 2011

2 www.eubirod.eu Factors = Key Elements of Data Protection  The key elements of data protection (FACTORS) identified in the management of diabetes registries are as follows: A1. Accountability of personal information A2. Collection of Personal Information A3. Consent A4. Use of Personal Information A5. Disclosure and Disposition of Personal Information A6. Accuracy of Personal Information A7. Safeguarding Personal Information A8. Openness A9. Individual Access to Personal Information A10. Challenging Compliance A11. Anonymization Process for Secondary Uses of Health Data

3 www.eubirod.eu Introduction to Cryptography Conventional Cryptography

4 www.eubirod.eu Introduction to Cryptography Public Key Cryptography

5 www.eubirod.eu Introduction to Cryptography Digital Signatures

6 www.eubirod.eu Introduction to Cryptography Hash Functions and Digital Signatures

7 www.eubirod.eu =facilitate establishing whether a public key truly belongs to the purported owner =a public key + owner identity information  signed together Introduction to Cryptography Digital Certificates

8 www.eubirod.eu Public Key Infrastructure Certification Authority – Issue certificates Verify identity – Keep a list of (valid) certificates – Certificate revocation Web of Trust (PGP)

9 www.eubirod.eu Security Key Concepts Communication Security Services Authenticity Authorization / Access Control Integrity Confidentiality Non-Repudiation

10 www.eubirod.eu Security Key Concepts Authenticity = verifying a claim of identity e.g. Airport: I am John Doe, I want to fly to Brussels  Passport something you know, something you have, or something you are username password (cryptographic) key challenge-response biometrics Protection mechanisms TAN

11 www.eubirod.eu Security Key Concepts Authorization / Access Control =Apply and configure mechanisms to enforce administrative policies Protection Mechanisms Access Control List + Role based access control  (e.g. file system, DBs, Web-Apps) Capabilities Data input Physician Local Administrator Global Administrator Administer Centers Import Data Administer Staff Create Reports Execute Analyses Enter Data Sheets Administer Patients Login www..at

12 www.eubirod.eu Security Key Concepts Integrity =Avoid undetected modification of data Protection mechanism – message integrity Message Digests (Hashing) Protection mechanism – communication stream integrity Sequence Numbers Time Stamps

13 www.eubirod.eu Security Key Concepts Confidentiality =Prevent the disclosure of information to unauthorized individuals or systems Protection mechanism symmetric or asymmetric encryption

14 www.eubirod.eu Security Key Concepts Non-Repudiation =implies that one party of a transaction cannot deny having received a transaction nor can the other party deny having sent a transaction Protection mechanism digital signatures  time stamp, notarization

15 www.eubirod.eu Safeguarding Data How can you protect your data and software? Use and maintain anti-virus software and a firewall Regularly scan your computer (viruses, spyware…) Keep software up to date Evaluate your software's settings Avoid unused software programs Create separate user accounts Establish guidelines for computer use Use passwords and encrypt sensitive files Set up and follow corporate policies for handling and storing data Dispose of sensitive information properly Follow good security habits

16 www.eubirod.eu Anonymisation I =Make it impossible to establish or indicate who or what (someone or something) is remove any direct identifiers (SSN, name, DOB…) replace direct identifiers by indirect patient IDs (Pseudonymisation) – requires a trusted third party  reversible pseudonymisation (encryption with a key)  irreversible pseudonymisation (hash, …)

17 www.eubirod.eu Anonymisation II ensure that any combination of data cannot identify an individual – not easy, especially for sparse data  k-anonymity use aggregated data only (no individual data sets) – all analyses have to be done in line with data source – further calculatons not possible

18 www.eubirod.eu Data flow throgh Trusted Third Party (the case of the Disease Management Program in Austria) Physician officeHealth Information Network Social Insurance Internet DMP Medical Data Repository Physician Software Browser Terminal Stand-alone Client Data Centre GINA e-card Central System Social Insurance online Portal Pseudonymi- sation centre DMP Administration Software Documentation Prepare Data: Check, Split Administrative and Risk Data Clinical Data: Sign+Encrypt Data Transmission Administrative + Risk Data SSN Risk Data SSN Risk Data Clinical Data SSN Clinical Data Pseudo- nym SSN Clinical Data Pseudo- nym Sign+ Submit Risk Data Clinical Data

19 www.eubirod.eu Local Aggregation of Data (the case of the BIRO Reporting Architecture) BIRO Central Reporting Partner Work Conversion Source Dataset Local BIRO Database Engine Statistical Analysis Aggregated Data „Statistical Objects“ |A|12|1|5| |B|18|2|6| |C|16|1|4| Sender Central BIRO System Authenticated, Signed & Encrypted Communication Regional Data Processing Regional Register BIRO Database Receiver ReportBIRO Central Engine

20 www.eubirod.eu Tanks for your attention!

Download ppt "EUropean Best Information through Regional Outcomes in Diabetes Privacy and Disease Registries Technical Aspects Peter Beck JOANNEUM RESEARCH, Austria."

Similar presentations

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.

1 ABCs of PKI TAG Presentation 18 th May 2004 Paul Butler.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.

Information security An introduction to Technology and law with focus on e-signature, encryption and third party service Yue Liu Feb.2008.
Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.

Public Key Infrastructure (PKI) Providing secure communications and authentication over an open network.
70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.

70-293: MCSE Guide to Planning a Microsoft Windows Server 2003 Network, Enhanced Chapter 9: Planning and Managing Certificate Services.
6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.

6/4/2015National Digital Certification Agency1 Security Engineering and PKI Applications in Modern Enterprises Mohamed HAMDI National.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.

Beyond HIPAA, Protecting Data Key Points from the HIPAA Security Rule.
TrustPort Public Key Infrastructure. WWW.TRUSTPORT.COM Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.

TrustPort Public Key Infrastructure. Keep It Secure Table of contents  Security of electronic communications  Using asymmetric cryptography.
Copyright © 2015 Pearson Education, Inc. Confidentiality and Privacy Controls Chapter 9 9-1.

Copyright © 2015 Pearson Education, Inc. Confidentiality and Privacy Controls Chapter
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Controller of Certifying Authorities PKI Technology - Role of CCA Assistant Controller (Technology) Controller of Certifying Authorities Ministry of Communications.

Controller of Certifying Authorities PKI Technology - Role of CCA Assistant Controller (Technology) Controller of Certifying Authorities Ministry of Communications.
INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.

INTRODUCTION Why Signatures? A uthenticates who created a document Adds formality and finality In many cases, required by law or rule Digital Signatures.
31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

31.1 Chapter 31 Network Security Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.

Similar presentations

Ads by Google