eHealth
Authentication in e-health is of special interest. Security and privacy need not be traded off against one another, if privacy enhancing architectures -- using embedded PKI and smartcards -- can be implemented. Practical models are included of large scale health PKI.
Babystep 12: Electronic Medic Alert
An innovative way to secrete personal emergency medical information - such as alergies and contraindications - in smartcards, including strong authentication of the healthcare professionals originating the alerts.
Babystep 7: Smartcards and Prescription Shopping
Smartcards can address Prescription Shopping, detecting this form of fraud at source, without compromising the privacy of innocent patients.
Babystep 6: Smartcards and Provider Fraud
Smartcards can detect fraudulent claiming by corrupt providers for services not actually delivered, or the counterfeiting of claims by administrative clerical staff.
A novel application of PKI smartcards to anonymise Health Identifiers
Paper presented to AusCERT Academic Refereed Paper Stream May 2005
Patient Privacy and Security - Not a zero sum game!
A look at the tension between privacy and public health interests in electronic health record security, with a proposal to move safely to opt-out participation using smartcards to mask individual identifiers.
PKI State of Play
A presentation to the Argus Foundation Forum in 2004, outlining steady improvmenets to health PKI, and showing how local small scale trust schemes like PGP can be supported in parallel.
PKI without tears
A critical analysis of orthodox PKI, including a detailed outline of how a health PKI could be implemented