TY - GEN
T1 - An end-to-end security architecture to collect, process and share wearable medical device data
AU - Rohloff, Kurt
AU - Polyakov, Yuriy
N1 - Publisher Copyright:
© 2015 IEEE.
PY - 2015
Y1 - 2015
N2 - Embedded medical devices, such as wearable devices, are becoming increasingly common, but data from these devices is both very private and highly vulnerable to theft. Data needs to be collected from multiple devices to improve the effectiveness of treatment. The medical devices, data processing sites and intended care givers are often geographically distributed, and operate on different time scales with collected data being aggregated for days or months before analysis and usage. Current approaches to data security do not provide a framework for end-to-end protection, where data can always be encrypted but still used effectively. We present a security architecture with end-to-end encryption that supports 1) secure collection of data from embedded medical devices, 2) protected computing on this data in low-cost commodity cloud environment and 3) restricts the delegation of access to this data to designated recipients. The basis of the architecture comes from recent advances in lattice encryption technologies. This approach leverages recent breakthroughs in Homomorphic Encryption (HE) and Proxy Re-Encryption (PRE) that would practically support specific data aggregation, processing and distribution needs of a secure medical data architecture. This architecture lowers health care data system costs by securely outsourcing computation to cloud computing environments while simultaneously reducing vulnerabilities to some of the most problematic security challenges such as insider attacks and enables additional cost savings with lower-cost embedded medical devices.
AB - Embedded medical devices, such as wearable devices, are becoming increasingly common, but data from these devices is both very private and highly vulnerable to theft. Data needs to be collected from multiple devices to improve the effectiveness of treatment. The medical devices, data processing sites and intended care givers are often geographically distributed, and operate on different time scales with collected data being aggregated for days or months before analysis and usage. Current approaches to data security do not provide a framework for end-to-end protection, where data can always be encrypted but still used effectively. We present a security architecture with end-to-end encryption that supports 1) secure collection of data from embedded medical devices, 2) protected computing on this data in low-cost commodity cloud environment and 3) restricts the delegation of access to this data to designated recipients. The basis of the architecture comes from recent advances in lattice encryption technologies. This approach leverages recent breakthroughs in Homomorphic Encryption (HE) and Proxy Re-Encryption (PRE) that would practically support specific data aggregation, processing and distribution needs of a secure medical data architecture. This architecture lowers health care data system costs by securely outsourcing computation to cloud computing environments while simultaneously reducing vulnerabilities to some of the most problematic security challenges such as insider attacks and enables additional cost savings with lower-cost embedded medical devices.
UR - http://www.scopus.com/inward/record.url?scp=84966588646&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84966588646&partnerID=8YFLogxK
U2 - 10.1109/HealthCom.2015.7454578
DO - 10.1109/HealthCom.2015.7454578
M3 - Conference contribution
AN - SCOPUS:84966588646
T3 - 2015 17th International Conference on E-Health Networking, Application and Services, HealthCom 2015
SP - 615
EP - 620
BT - 2015 17th International Conference on E-Health Networking, Application and Services, HealthCom 2015
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 17th International Conference on E-Health Networking, Application and Services, HealthCom 2015
Y2 - 13 October 2015 through 17 October 2015
ER -