IEEE J Biomed Health Inform. 2014 Jul;18(4):1404-12. doi: 10.1109/JBHI.2013.2292776.
The interoperability of services and the sharing of health data have been a continuous goal for health professionals, patients, institutions, and policy makers. However, several issues have been hindering this goal, such as incompatible implementations of standards (e.g., HL7, DICOM), multiple ontologies, and security constraints. Cross-enterprise document sharing (XDS) workflows were proposed by Integrating the Healthcare Enterprise (IHE) to address current limitations in exchanging clinical data among organizations. To ensure data protection, XDS actors must be placed in trustworthy domains, which are normally inside such institutions. However, due to rapidly growing IT requirements, the outsourcing of resources in the Cloud is becoming very appealing. This paper presents a software proxy that enables the outsourcing of XDS architectural parts while preserving the interoperability, confidentiality, and searchability of clinical information. A key component in our architecture is a new searchable encryption (SE) scheme-Posterior Playfair Searchable Encryption (PPSE)-which, besides keeping the same confidentiality levels of the stored data, hides the search patterns to the adversary, bringing improvements when compared to the remaining practical state-of-the-art SE schemes.
服务的互操作性和健康数据的共享一直是医疗保健专业人员、患者、机构和政策制定者的持续目标。然而,一些问题一直阻碍着这一目标的实现,例如标准(如 HL7、DICOM)的不兼容实现、多个本体和安全约束。跨企业文档共享 (XDS) 工作流程是由集成医疗保健企业 (IHE) 提出的,旨在解决当前组织之间交换临床数据的局限性。为了确保数据保护,XDS 参与者必须置于可信任的域中,这些域通常位于这些机构内部。然而,由于 IT 需求的快速增长,将资源外包到云端变得非常有吸引力。本文提出了一种软件代理,允许外包 XDS 架构部分,同时保持临床信息的互操作性、机密性和可搜索性。我们架构中的一个关键组件是一种新的可搜索加密 (SE) 方案——后 Playfair 可搜索加密 (PPSE)——除了保持存储数据的相同机密性级别外,还可以向对手隐藏搜索模式,与现有的实用 SE 方案相比,这带来了改进。