• KSII Transactions on Internet and Information Systems
    Monthly Online Journal (eISSN: 1976-7277)

Biometric-based key management for satisfying patient’s control over health information in the HIPAA regulations


Abstract

According to the privacy regulations of the health insurance portability and accountability act (HIPAA), patients’ control over electronic health data is one of the major concern issues. Currently, remote access authorization is considered as the best solution to guarantee the patients’ control over their health data. In this paper, a new biometric-based key management scheme is proposed to facilitate remote access authorization anytime and anywhere. First, patients and doctors can use their biometric information to verify the authenticity of communication partners through real-time video communication technology. Second, a safety channel is provided in delivering their access authorization and secret data between patient and doctor. In the designed scheme, the user’s public key is authenticated by the corresponding biometric information without the help of public key infrastructure (PKI). Therefore, our proposed scheme does not have the costs of certificate storage, certificate delivery, and certificate revocation. In addition, the implementation time of our proposed system can be significantly reduced.


Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from December 1st, 2015)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article

[IEEE Style]
Q. Bui, W. Lee, J. Lee, H. Wu and J. Liu, "Biometric-based key management for satisfying patient’s control over health information in the HIPAA regulations," KSII Transactions on Internet and Information Systems, vol. 14, no. 1, pp. 437-454, 2020. DOI: 10.3837/tiis.2020.01.024.

[ACM Style]
Quy-Anh Bui, Wei-Bin Lee, Jung-San Lee, Hsiao-Ling Wu, and Jo-Yun Liu. 2020. Biometric-based key management for satisfying patient’s control over health information in the HIPAA regulations. KSII Transactions on Internet and Information Systems, 14, 1, (2020), 437-454. DOI: 10.3837/tiis.2020.01.024.