16th Annual Computer Security Applications Conference
December 11-15, 2000
New Orleans, Louisiana

Applications in Health Care using Public-Key Certificates and Attribute Certificates

Petra Wohlmacher
University of Klagenfurt

Peter Pharow
Otto-von-Guericke University of Magdeburg

Security infrastructures are increasingly used in the health care and welfare sector, particularly for providing security, like confidentiality, authenticity, integrity, non-repudiation, and auditing. Especially within the health care sector, there is a need for different kinds of certificates, namely public-key certificates and attribute certificates. This necessity is caused by the huge range of processes and procedures deriving from different application areas within the health care sector. Due to that, this leads to a large amount of specific and different roles, rules, access rights, and permissions for each health professional. An important security token within health care is represented by the smart card, called health professional card (HPC). Existing solutions e.g. the German HPC, prototypes, and European as well as national projects, activities, and initiatives, show the state of the art with respect to certificates. Finally, we point out unsolved problems regarding security infrastructures, jurisdiction, data protection, and advertizing via Internet.

Read Paper Read Paper (in PDF)