Presentation is loading. Please wait.

Presentation is loading. Please wait.

The World Internet Security Company ID Management in e-Health February 2007.

Published byRyan Hazleton Modified over 10 years ago

Similar presentations

Presentation on theme: "The World Internet Security Company ID Management in e-Health February 2007."— Presentation transcript:

1 The World Internet Security Company ID Management in e-Health February 2007

2 The World Internet Security Company About WISeKey Company founded in 1999 Privately held Headquarters in Geneva, Switzerland Trust services hosted in our highly secure datacenters Affiliates around the world, including Bulgaria for Eastern Europe Solutions deployed in over 20 countries Strong technological alliances in the e-Health sector

3 The World Internet Security Company Recent Misuses of Patient Health Information Banker collects On Cancer Patients Mortgages Hospital Employee Sells Country Singers Medical Records for $2610 Psychological records of 62 children accidentally posted on website Physicians Laptop with patient medical histories stolen health.org exposes customer names, addresses, phone numbers & email addresses on web Washington DC Hospital Fined $25,000 Sick employee fired by self-insured employer

4 The World Internet Security Company Risks in the e-Health World Wrongful access to patient or medical information Theft of physicians laptops and data Posting of confidential data on rogue websites Breach of doctor-patient secrecy through the interception of electronic communications Failure to comply with regulations due to weak security

5 The World Internet Security Company What is Identity for eHealth? People –Employees –Patients –Partners –Suppliers Material –Computers –Medical Supplies –Drugs –Surgical Equipment

6 The World Internet Security Company Need for e-Identity

7 The World Internet Security Company Patient Centric Model

8 The World Internet Security Company Digital Identity

9 The World Internet Security Company Identity and healthcare Regulations mandate protection of patient health information Protection defined (technical security services) Access control – what you can access Audit control – what you have accessed Authorization control – what you can do once you access Data integrity – ensuring data is intact Entity authentication - proving your identity Once again, it all comes back to Identity

10 The World Internet Security Company

11 Core PKI Services essential assurance to an entity that data has not been altered between there and here or between then and now assurance to an entity that no one can read a particular piece of data except the intended receiver assurance to one entity that another entity is who he, she, or it claims to be a public key infrastructure (PKI) is an arrangement that provides for trusted third partys vouching for user identities Integrity Confidentiality Authentication

12 The World Internet Security Company Use of Trusted Certificates Data Encryption Intranet/Extranet Access Management Mobile Data Encryption Digital Identity Digital Signature Email encryption And signature Access Control User management

13 The World Internet Security Company Strong Application Authentication Web Based Portal Patient Encrypted HTTPS Tunnel Through the use of a WISeKey Trusted Certificate incorporated on a smart- card/token, the patient is able to authenticate himself in safer and stronger ways in order to access web- based portals Secure Zone www.ehealth.bg Electronic Patient Records E-Prescriptions Data Repository E-Prescriptions Data Repository Health Insurance Service Custom Hospital Application

14 The World Internet Security Company Secure Communications Data Encryption and digital signature of e-mails with WISeKey Certificates Assurance of the Authenticity of the Sender and the integrity of the message The right people see the right information Doctors Health Insurances Government Hospitals

15 The World Internet Security Company Guaranteed Data Integrity Patient sends Data XYZ Doctor receives Data XYZ Internet/Extrane t By using WISeKey solutions, we are able to guarantee the integrity of data sent between two parties. This is crucial when exchanging data in such instances as e-Prescriptions. Prevents man in the middle attacks By using WISeKey solutions, we are able to guarantee the integrity of data sent between two parties. This is crucial when exchanging data in such instances as e-Prescriptions. Prevents man in the middle attacks Safe Zone

16 The World Internet Security Company Digital Form Signing Non-compliant Digital Forms Digital Signature using a WISeKey Certificate Compliant Form Digital Signatures permit the legal endorsement of such documents as electronic patient records, lab orders, prescriptions and requisitions thus helping compliance with different EU and country based directives.

17 The World Internet Security Company Regulatory compliance By combining WISeKeys technologies with secure infrastructures and policies, you are able to better reach compliance with such directives as: – HIPPA – SAFE – EU Directive 2004/9/CE – Swiss Data Protection Law And others By combining WISeKeys technologies with secure infrastructures and policies, you are able to better reach compliance with such directives as: – HIPPA – SAFE – EU Directive 2004/9/CE – Swiss Data Protection Law And others

18 The World Internet Security Company Foreseen Swiss Model Identification StandardCertificate Authentication Non-Repudiation AdvancedCertificate

19 The World Internet Security Company Contact us 8, Tzar Ivan Shishman st. 1000 Sofia, Bulgaria Tel. +359 2 9888 103 Fax: +359 2 9816 999 www.wisekey.com email: info@bg.wisekey.com

Download ppt "The World Internet Security Company ID Management in e-Health February 2007."

Similar presentations

Public Key Infrastructure and Applications

Public Key Infrastructure and Applications
© 1998-2003 ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Building Confidence in E-government Services ITU-T Workshop on.

© ITU Telecommunication Development Bureau (BDT) – E-Strategy Unit.. Page - 1 Building Confidence in E-government Services ITU-T Workshop on.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.

CIS 725 Key Exchange Protocols. Alice ( PB Bob (M, PR Alice (hash(M))) PB Alice Confidentiality, Integrity and Authenication PR Bob M, hash(M) M, PR Alice.
Bringing HIPAA to Hospital Systems HIPAA impact on hospital systems viaMD solution for HIPAA compliance W e b e n a b l i n g Pa t i e n t A d m i t t.

Bringing HIPAA to Hospital Systems HIPAA impact on hospital systems viaMD solution for HIPAA compliance W e b e n a b l i n g Pa t i e n t A d m i t t.
Westbrook Technologies from Document Management’s Role in HIPAA.

Westbrook Technologies from Document Management’s Role in HIPAA.
SLIDE 1 Westbrook Technologies from Fortis: A Healthcare Solution for Medical Records, Billing and HIPAA.

SLIDE 1 Westbrook Technologies from Fortis: A Healthcare Solution for Medical Records, Billing and HIPAA.
Public Key Infrastructure (PKI) Hosting Services.

Public Key Infrastructure (PKI) Hosting Services.
Confidentiality and Privacy Controls

Confidentiality and Privacy Controls
August 2004 Providing Industry-wide Security and Identity Management Solutions.

August 2004 Providing Industry-wide Security and Identity Management Solutions.
1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:

1 Pertemuan 12 Authentication, Encryption, Digital Payments, and Digital Money Matakuliah: M0284/Teknologi & Infrastruktur E-Business Tahun: 2005 Versi:
Grid Security. Typical Grid Scenario Users Resources.

Grid Security. Typical Grid Scenario Users Resources.
Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.

Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.
Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.

Department of Information Engineering1 Major Concerns in Electronic Commerce Authentication –there must be proof of identity of the parties in an electronic.
Identity 1.0 2.0 /. Citizen Centric Model Digital Identity.

Identity /. Citizen Centric Model Digital Identity.
Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.

Client/Server Computing Model of computing in which very powerful personal computers (clients) are connected in a network with one or more server computers.
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
Introduction to PKI Mark Franklin September 10, 2003 Dartmouth College PKI Lab.

Introduction to PKI Mark Franklin September 10, 2003 Dartmouth College PKI Lab.

Similar presentations

Ads by Google