rss
JAMIA 2005;12:263-268 doi:10.1197/jamia.M1681
  • The Practice of Informatics
  • Position Paper

Wireless Technology Infrastructures for Authentication of Patients

PKI that Rings

  1. Ulrich Sax,
  2. Isaac Kohane,
  3. Kenneth D Mandl
  1. Affiliations of the authors: Children's Hospital Informatics Program (US, IK, KDM) and Division of Emergency Medicine, Children's Hospital Boston, (IK, KDM); Harvard Medical School, (US, IK, KDM) Boston, MA
  1. Correspondence and reprints: Ulrich Sax, PhD, Children's Hospital Informatics Program, 1 Autumn Street AU543, Boston, MA 02115; e-mail: <usax{at}med.uni-goettingen.de>
  • Received 20 August 2004
  • Accepted 20 December 2004

Abstract

As the public interest in consumer-driven electronic health care applications rises, so do concerns about the privacy and security of these applications. Achieving a balance between providing the necessary security while promoting user acceptance is a major obstacle in large-scale deployment of applications such as personal health records (PHRs). Robust and reliable forms of authentication are needed for PHRs, as the record will often contain sensitive and protected health information, including the patient's own annotations. Since the health care industry per se is unlikely to succeed at single-handedly developing and deploying a large scale, national authentication infrastructure, it makes sense to leverage existing hardware, software, and networks. This report proposes a new model for authentication of users to health care information applications, leveraging wireless mobile devices. Cell phones are widely distributed, have high user acceptance, and offer advanced security protocols.

The authors propose harnessing this technology for the strong authentication of individuals by creating a registration authority and an authentication service, and examine the problems and promise of such a system.

Footnotes

  • This work was supported by Deutsche Forschungsgemeinschaft (DFG, SA1009/1-1) and by the National Institutes of Health through contract N01-LM-3-3515 from the National Library of Medicine.

  • The authors thank Bill Simons, Pete Szolovits, Matvey B. Palchuk, Teresa Zayas-Cabán, Min Wu, and Peter Pharow for their input.

This Article

  1. Abstract
  2. Full text
  3. PDF

Responses

  1. Submit a response
  2. No responses published

Access policy for JAMIA

All content published in JAMIA is deposited with PubMedCentral by the publisher but with varying embargo times. Authors/funders may pay an Unlocked fee of $2,000 to make the article free on the JAMIA website and PMC immediately on publication. Research funded by government and other recognised agencies is deposited with a 12 month embargo. All other content is deposited with a 36 month embargo.

AMIA members log in here to access the full text of JAMIA.

Register for free content

Individuals may register for a free 30 day online trial to all content.

The Journal of the American Medical Informatics Association is published for the American Medical Informatics Association by BMJ Publishing Group Ltd.