Presentation is loading. Please wait.

Presentation is loading. Please wait.

Open Pseudonymiser Project Julia Hippisley-Cox, 2011 www.openpseudonymiser.org.

Published byDaniel Cramp Modified over 9 years ago

Similar presentations

Presentation on theme: "Open Pseudonymiser Project Julia Hippisley-Cox, 2011 www.openpseudonymiser.org."— Presentation transcript:

1 Open Pseudonymiser Project Julia Hippisley-Cox, 2011 www.openpseudonymiser.org

2 Open pseudonymiser approach Need approach which doesn’t extract identifiable data but still allows linkageNeed approach which doesn’t extract identifiable data but still allows linkage Legal ethical and NIGB approvalsLegal ethical and NIGB approvals Secure, ScalableSecure, Scalable Reliable, AffordableReliable, Affordable Generates ID which are Unique to projectGenerates ID which are Unique to project Can be used by any set of organisations wishing to share dataCan be used by any set of organisations wishing to share data Pseudoymisation applied as close as possible to identifiable data ie within clinical systemsPseudoymisation applied as close as possible to identifiable data ie within clinical systems

3 Pseudonymisation: method Scrambles NHS number BEFORE extraction from clinical systemScrambles NHS number BEFORE extraction from clinical system Takes NHS number + project specific encrypted ‘salt code’ One way hashing algorithm (SHA2-256) – no collisions and US standard from 2010 Applied twice - before leaving clinical system & on receipt by next organisation Apply identical software to second datasetApply identical software to second dataset Allows two pseudonymised datasets to be linkedAllows two pseudonymised datasets to be linked Cant be reversed engineeredCant be reversed engineered

4

5 Wed tool to create encrypted salt: proof of concept Web site private key used to encrypt user defined project specific saltWeb site private key used to encrypt user defined project specific salt Encrypted salt distributed to relevant data supplier with identifiable dataEncrypted salt distributed to relevant data supplier with identifiable data Public key in supplier’s software to decrypt salt at run time and concatenate to NHS number (or equivalent)Public key in supplier’s software to decrypt salt at run time and concatenate to NHS number (or equivalent) Hash then appliedHash then applied Resulting ID then unique to patient within projectResulting ID then unique to patient within project

6 Openpseudonymiser.org Website for evaluation and testing withWebsite for evaluation and testing with Desktop applicationDesktop application DLL for integrationDLL for integration Test dataTest data DocumentationDocumentation Utility to generate encrypted salt codesUtility to generate encrypted salt codes Source code GNU GPLSource code GNU GPL (note: currently undertaking freedom to operate checks)(note: currently undertaking freedom to operate checks)

7 Key points Pseudonymisation at sourcePseudonymisation at source Instead of extracting identifiers and storing lookup tables/keys centrally, then technology to generate key is stored within the clinical systemsInstead of extracting identifiers and storing lookup tables/keys centrally, then technology to generate key is stored within the clinical systems Use of project specific encrypted salted hash ensures secure sets of ID unique to projectUse of project specific encrypted salted hash ensures secure sets of ID unique to project Full control of data controllerFull control of data controller Can work in addition to existing approachesCan work in addition to existing approaches Open source technology so transparent & freeOpen source technology so transparent & free

Download ppt "Open Pseudonymiser Project Julia Hippisley-Cox, 2011 www.openpseudonymiser.org."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
Computer Technology Timpview High School. A collection of local, regional, national, and international computer networks that are linked together to exchange.

Computer Technology Timpview High School. A collection of local, regional, national, and international computer networks that are linked together to exchange.
The Data Linkage Service 1. New service launched in September 2012 Brought together two established data linkage services with over 50 years’ experience.

The Data Linkage Service 1. New service launched in September 2012 Brought together two established data linkage services with over 50 years’ experience.
By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.

By: Hassan Waqar.  A PROTOCOL for securely transmitting data via the internet.  NETWORK LAYER application.  Developed by NETSCAPE.
Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.

Hardware Cryptographic Coprocessor Peter R. Wihl Security in Software.
Confidentiality and Privacy Controls

Confidentiality and Privacy Controls
Pseudonymisation at source “preserving patient confidentiality & public trust in doctors” Julia Hippisley-Cox 11 th July 2013 BMA House JGPIT.

Pseudonymisation at source “preserving patient confidentiality & public trust in doctors” Julia Hippisley-Cox 11 th July 2013 BMA House JGPIT.
Wireless access Nottingham, 23 rd April 2013 Pseudonymisation workshop.

Wireless access Nottingham, 23 rd April 2013 Pseudonymisation workshop.
Open Pseudonymisation Project Julia Hippisley-Cox, 2011 www.openpseudonymisation.org.

Open Pseudonymisation Project Julia Hippisley-Cox,
Information Sharing Options Phil Walker. Outline I have been asked to present a range of options for lawful data sharing. There is unlikely to be one.

Information Sharing Options Phil Walker. Outline I have been asked to present a range of options for lawful data sharing. There is unlikely to be one.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Copyright Justin Klein Keane InfoSec Training Encryption.

Copyright Justin Klein Keane InfoSec Training Encryption.
Online Security Tuesday April 8, 2003 Maxence Crossley.

Online Security Tuesday April 8, 2003 Maxence Crossley.
Security Security is critical in the storage and transmission of information loss of information can not only cause problems to the organisation but can.

Security Security is critical in the storage and transmission of information loss of information can not only cause problems to the organisation but can.
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
NHS e-Lab Nottingham, September 2010 John Ainsworth

NHS e-Lab Nottingham, September 2010 John Ainsworth
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Public Key Encryption An example of how a bank might accomplish encryption.

Public Key Encryption An example of how a bank might accomplish encryption.
Lecture 9: Email Security via PGP CS 436/636/736 Spring 2012 Nitesh Saxena.

Lecture 9: Security via PGP CS 436/636/736 Spring 2012 Nitesh Saxena.

Similar presentations

Ads by Google