Publications (2)0 Total impact
-
Conference Proceeding: A Security Gateway System for Medical Communication Networks Inter-Hospital Use of the Secure Socket Layer
[show abstract] [hide abstract]
ABSTRACT: Recently, the Japanese government has decided to introduce an electronic medical record system in hospitals and medical establishments throughout Japan. However, these will not be stand-alone systems alone, since one of the main purposes behind the government's decision is the ability to share patient information among different medical facilities. Essentially, a medical record contains the personal data of patients. Thus, secure data transmission is required in order to share such records through the public network like the Internet. In our previous work, we defined a three layered medical information network model and a medical security gateway (MSG) which connects several hospitals by using some security enhancement technologies for public networks. Moreover, the medical open policy service (M-OPS) is considered as a security policy delivery system to MSG. In this paper, we shall describe an experimental network for realizing secure communication and an implementation of MSG and M-OPS. Unfortunately, only secure socket layer technology is treated as an example of possible security enhancement technologies. However, we are convinced that the same method may be used for other security technologiesAutonomic and Autonomous Systems and International Conference on Networking and Services, 2005. ICAS-ICNS 2005. Joint International Conference on; 11/2005 -
Conference Proceeding: A New Trust Model for PKI Interoperability
[show abstract] [hide abstract]
ABSTRACT: The rapid deployment of the Internet over the last fifteen years has witnessed the birth of a number of serious security issues. In the case of e-commerce and e-government, security issues are of great concern due to the need for a high level of confidentiality in the information that is exchanged between business and governmental bodies as well as a high level of confidence or trust that in the processes of exchange. One approach to guaranteeing security in these cases is the public encryption key infrastructure or PKI. Basically, a PKI provides a structure of trust among its users or principals. PKI has become the object of international attention and much has been done to realize national and international standards for PKI, for example X.509. There are, however, serious PKI implementation issues as different countries and different organizations may adopt different security policies and implementations. This raises the question of interoperability between these various implementations, especially in such a way as to create a global trust domain. In this paper, the authors propose a new construct, a ring configuration of specialized Certification Authorities (CAs) called "Gateway Certification Authorities (GWCAs)," as a solution to the general PKI interoperability problem.Autonomic and Autonomous Systems and International Conference on Networking and Services, 2005. ICAS-ICNS 2005. Joint International Conference on; 11/2005
