Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Protection on Trust Delegated Medical Data in Public Mobile Networks Dasun Weerasinghe, Muttukrishnan Rajarajan and Veselin Rakocevic Mobile Networks.

Published byShannon Quinn Modified over 8 years ago

Similar presentations

Presentation on theme: "Security Protection on Trust Delegated Medical Data in Public Mobile Networks Dasun Weerasinghe, Muttukrishnan Rajarajan and Veselin Rakocevic Mobile Networks."— Presentation transcript:

1 Security Protection on Trust Delegated Medical Data in Public Mobile Networks Dasun Weerasinghe, Muttukrishnan Rajarajan and Veselin Rakocevic Mobile Networks Research Group School of Engineering and Mathematical Sciences City University London.

2 Outline of the Presentation Motivation Proposed solution Trust Negotiation Protocol Security tokens Security Capsule Implementation

3 Motivation Private Medical Center A & E Relying Service Provider Medical Healthcare Personal Requesting Service Provider

4 Problem statement Medical Healthcare Personal authenticates to the Dynamic Trust Negotiation network Trust negotiation between the Relying service provider and the Requesting service provider Securely transmit sensitive data from the relying service provider to the Medical Healthcare Personal mobile device Data security at the mobile device

5 Proposed Architecture

6 Proposed protocol phases Medical Healthcare Personal registers and authenticates in the Dynamic Trust Negotiation Network Trust Negotiation between Relying Service Provider and Requesting Service Provider Sensitive attributes are shared to Medical Healthcare Personal in a secure channel.

7 Proposed protocol phases (Contd.) Medical Healthcare Personal– MHP Requesting Service Provider– RequestingSP Relying Service Provider– RelyingSP Authentication and Trust Negotiation Server- ATNS

8 MHP registers and authenticates with ATNS ATNS Engine MHP 1. Login Token2. Login Token 3. Check Past records 4. Evaluate the Trust Trust Evaluation Engine Trust Mapping Database RequestingSP 5. Authentication Token

9 Trust Negotiation between MHP and RelyingSP ATNS Engine MHP 1. RecordAccess (PatientID, Authentication Token) 4. TrustChallenge Token 2. Check Past records 2. Evaluate the Trust Trust Evaluation Engine Trust Mapping Database RelyingSP 3. Trust Recommended Token 6. TrustChallenge Response 5. TrustChallenge Token 7. Trust Token

10 Sensitive attributes are shared to MHP MHP Relying SP Encrypted Data Trust Token is stored inside the MHP’s mobile device

11 Data protection at the mobile device Data transmission in Encrypted format The decryption key for the data decryption will be generated in the mobile device Decryption key generation using the identity and key parameters in the mobile device Real-time authorization for the data access Permanent data deletion after the data utilization

12 Security Capsule Architecture

13 Conclusion Negotiate trust between different entities in a healthcare domain Trust negotiation architecture Trust negotiation protocol for message communication Data protection in the mobile device Security capsule architecture

14 Q & A r.muttukrishnan@city.ac.uk r.muttukrishnan@city.ac.uk

Download ppt "Security Protection on Trust Delegated Medical Data in Public Mobile Networks Dasun Weerasinghe, Muttukrishnan Rajarajan and Veselin Rakocevic Mobile Networks."

Similar presentations

AUTHENTICATION AND KEY DISTRIBUTION

AUTHENTICATION AND KEY DISTRIBUTION
Windows 2000 Security --Kerberos COSC513 Project Sihua Xu June 13, 2014.

Windows 2000 Security --Kerberos COSC513 Project Sihua Xu June 13, 2014.
Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.

Unlicensed Mobile Access (UMA) Dasun Weerasinghe School of Engineering and Mathematical Sciences City University London.
Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
Cobalt: Separating content distribution from authorization in distributed file systems Kaushik Veeraraghavan Andrew Myrick Jason Flinn University of Michigan.

Cobalt: Separating content distribution from authorization in distributed file systems Kaushik Veeraraghavan Andrew Myrick Jason Flinn University of Michigan.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
CSE300-1 Profs. Steven A. Demurjian Q. Jin, J. Nam, Z. Qian and C. Phillips Computer Science & Engineering Department 191 Auditorium Road, Box U-155 The.

CSE300-1 Profs. Steven A. Demurjian Q. Jin, J. Nam, Z. Qian and C. Phillips Computer Science & Engineering Department 191 Auditorium Road, Box U-155 The.
SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.

SSL Protocol By Oana Dini. Overview Introduction to SSL SSL Architecture SSL Limitations.
Key Provisioning Use Cases and Requirements 67 th IETF KeyProv BOF – San Diego Mingliang Pei 11/09/2006.

Key Provisioning Use Cases and Requirements 67 th IETF KeyProv BOF – San Diego Mingliang Pei 11/09/2006.
A Versatile Storage System for Future Networking Architecture Prof. Xiaohua Jia City University of Hong Kong 1.

A Versatile Storage System for Future Networking Architecture Prof. Xiaohua Jia City University of Hong Kong 1.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.

Dorian Grid Identity Management and Federation Dialogue Workshop II Edinburgh, Scotland February 9-10, 2006 Stephen Langella Department.
An In-Depth Examination of PKI Strengths, Weaknesses and Recommendations.

An In-Depth Examination of PKI Strengths, Weaknesses and Recommendations.
Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.

Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.
Patient’s privacy protection with anonymous access to medical services Dasun Weerasinghe, Kalid Elmufti, M Rajarajan, Veselin Rakocevic Mobile Networks.

Patient’s privacy protection with anonymous access to medical services Dasun Weerasinghe, Kalid Elmufti, M Rajarajan, Veselin Rakocevic Mobile Networks.
A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :11.23 1.

A Secure Remote User Authentication Scheme with Smart Cards Manoj Kumar 報告者 : 許睿中 日期 :
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Identity Federation in Healthcare Networks Xiaohui Chen Department of Computer Science University of Virginia.

Identity Federation in Healthcare Networks Xiaohui Chen Department of Computer Science University of Virginia.

Similar presentations

Ads by Google