Displaying publications 21 - 40 of 64 in total

Abstract:
Sort:
  1. Fulltext L-CPPA: Lattice-based conditional privacy-preserving authentication scheme for fog computing with 5G-enabled vehicular system
    Almazroi AA, Alqarni MA, Al-Shareeda MA, Manickam S
    PLoS One, 2023;18(10):e0292690.
    PMID: 37889892 DOI: 10.1371/journal.pone.0292690
    The role that vehicular fog computing based on the Fifth Generation (5G) can play in improving traffic management and motorist safety is growing quickly. The use of wireless technology within a vehicle raises issues of confidentiality and safety. Such concerns are optimal targets for conditional privacy-preserving authentication (CPPA) methods. However, current CPPA-based systems face a challenge when subjected to attacks from quantum computers. Because of the need for security and anti-piracy features in fog computing when using a 5G-enabled vehicle system, the L-CPPA scheme is proposed in this article. Using a fog server, secret keys are generated and transmitted to each registered car via a 5G-Base Station (5G-BS) in the proposed L-CPPA system. In the proposed L-CPPA method, the trusted authority, rather than the vehicle's Onboard Unit (OBU), stores the vehicle's master secret data to each fog server. Finally, the computation cost of the suggested L-CPPA system regards message signing, single verification and batch verification is 694.161 ms, 60.118 ms, and 1348.218 ms, respectively. Meanwhile, the communication cost is 7757 bytes.
    Matched MeSH terms: Confidentiality
  2. Fulltext ECA-VFog: An efficient certificateless authentication scheme for 5G-assisted vehicular fog computing
    Almazroi AA, Aldhahri EA, Al-Shareeda MA, Manickam S
    PLoS One, 2023;18(6):e0287291.
    PMID: 37352258 DOI: 10.1371/journal.pone.0287291
    Fifth-generation (5G)-enabled vehicular fog computing technologies have always been at the forefront of innovation because they support smart transport like the sharing of traffic data and cooperative processing in the urban fabric. Nevertheless, the most important factors limiting progress are concerns over message protection and safety. To cope with these challenges, several scholars have proposed certificateless authentication schemes with pseudonyms and traceability. These schemes avoid complicated management of certificate and escrow of key in the public key infrastructure-based approaches in the identity-based approaches, respectively. Nevertheless, problems such as high communication costs, security holes, and computational complexity still exist. Therefore, this paper proposes an efficient certificateless authentication called the ECA-VFog scheme for fog computing with 5G-assisted vehicular systems. The proposed ECA-VFog scheme applied efficient operations based on elliptic curve cryptography that is supported by a fog server through a 5G-base station. This work conducts a safety analysis of the security designs to analysis the viability and value of the proposed ECA-VFog scheme. In the performance ovulation section, the computation costs for signing and verification process are 2.3539 ms and 1.5752 ms, respectively. While, the communication costs and energy consumption overhead of the ECA-VFog are 124 bytes and 25.610432 mJ, respectively. Moreover, comparing the ECA-VFog scheme to other existing schemes, the performance estimation reveals that it is more cost-effective with regard to computation cost, communication cost, and energy consumption.
    Matched MeSH terms: Confidentiality*
  3. Fulltext A lightweight and robust authentication scheme for the healthcare system using public cloud server
    Abbasi IA, Jan SU, Alqahtani AS, Khan AS, Algarni F
    PLoS One, 2024;19(1):e0294429.
    PMID: 38289970 DOI: 10.1371/journal.pone.0294429
    Cloud computing is vital in various applications, such as healthcare, transportation, governance, and mobile computing. When using a public cloud server, it is mandatory to be secured from all known threats because a minor attacker's disturbance severely threatens the whole system. A public cloud server is posed with numerous threats; an adversary can easily enter the server to access sensitive information, especially for the healthcare industry, which offers services to patients, researchers, labs, and hospitals in a flexible way with minimal operational costs. It is challenging to make it a reliable system and ensure the privacy and security of a cloud-enabled healthcare system. In this regard, numerous security mechanisms have been proposed in past decades. These protocols either suffer from replay attacks, are completed in three to four round trips or have maximum computation, which means the security doesn't balance with performance. Thus, this work uses a fuzzy extractor method to propose a robust security method for a cloud-enabled healthcare system based on Elliptic Curve Cryptography (ECC). The proposed scheme's security analysis has been examined formally with BAN logic, ROM and ProVerif and informally using pragmatic illustration and different attacks' discussions. The proposed security mechanism is analyzed in terms of communication and computation costs. Upon comparing the proposed protocol with prior work, it has been demonstrated that our scheme is 33.91% better in communication costs and 35.39% superior to its competitors in computation costs.
    Matched MeSH terms: Confidentiality*
  4. Fulltext Physical factors that influence patients' privacy perception toward a psychiatric behavioral monitoring system: a qualitative study
    Zakaria N, Ramli R
    Neuropsychiatr Dis Treat, 2018;14:117-128.
    PMID: 29343963 DOI: 10.2147/NDT.S115261
    Background: Psychiatric patients have privacy concerns when it comes to technology intervention in the hospital setting. In this paper, we present scenarios for psychiatric behavioral monitoring systems to be placed in psychiatric wards to understand patients' perception regarding privacy. Psychiatric behavioral monitoring refers to systems that are deemed useful in measuring clinical outcomes, but little research has been done on how these systems will impact patients' privacy.

    Methods: We conducted a case study in one teaching hospital in Malaysia. We investigated the physical factors that influence patients' perceived privacy with respect to a psychiatric monitoring system. The eight physical factors identified from the information system development privacy model, a comprehensive model for designing a privacy-sensitive information system, were adapted in this research. Scenario-based interviews were conducted with 25 patients in a psychiatric ward for 3 months.

    Results: Psychiatric patients were able to share how physical factors influence their perception of privacy. Results show how patients responded to each of these dimensions in the context of a psychiatric behavioral monitoring system.

    Conclusion: Some subfactors under physical privacy are modified to reflect the data obtained in the interviews. We were able to capture the different physical factors that influence patient privacy.

    Matched MeSH terms: Confidentiality
  5. Malaysia puts biovalley under wraps
    Cyranoski D
    Nature, 2003 Jul 10;424(6945):118.
    PMID: 12853917
    Matched MeSH terms: Confidentiality
  6. Licence to commence clinical day: the L-Plate test
    Sim JH, Vadivelu J, Lee SS
    Med Educ, 2016 Nov;50(11):1145.
    PMID: 27762037 DOI: 10.1111/medu.13188
    Matched MeSH terms: Confidentiality/legislation & jurisprudence
  7. Fulltext Cross-sectional survey of multi-centre patient registries in malaysia
    Sharmini S, Jamaiyah H, Jaya Purany SP
    Malays Fam Physician, 2010;5(1):13-8.
    PMID: 25606180 MyJurnal
    This survey set out to describe patient registries available in the country, to determine their security features, data confidentiality, extent of outputs produced and data quality of the registries.
    Matched MeSH terms: Confidentiality
  8. Fulltext Adolescent health problems and adolescent friendly health clinic from adolescents’ perspective (Besut and Kuala Terengganu): a qualitative research
    Hassan N, A. Rahman K, Aris Kasah M, Jusoh M
    Malaysian Journal of Public Health Medicine, 2002;2(2):9-14.
    MyJurnal
    A qualitative research was carried out in Besut and Kuala Terengganu to identyy adolescents’ health problems and needs jiom adolescent perspective, and to establish a priority area in the development of Adolescent Health Clinic in the district. A total of 61 adolescents were selected and divided into four groups and stratified according to age, 13-15 years old and 16 - 17 years old. Generally all participants wished to live in an environment free hom negative health risk factors. The obstacles they perceived were mainly related to lack of care or too much control by their parents. Some of them perceived that their parents in general had inadequate knowledge and skills on parenting. Among local behavioural problems mentioned were loafing, running away from home, vandalism, school absenteeism, aggressive behaviour, substance abuse, pre-marital sexual activities, "bohsia", “bohjan" and even involvement in crimes. More than hah' agreed that counselling service is important for adolescents, and it should be made available in the community preferably outside the schools. They perceived an adolescent friendly health clinic concept as an important concept that should be introduced. To them adolescent friendly health clinic is a clinic run by professionals who are knowledgeable, caring, good listeners, non—judgemental, and who exercise confidentiality. The clinic preferably should be situated in a location which is away from the present health facilities to avoid the image of a place for sick people. Clinic hours preferably during weekends, should provide appropriate technologies and situated in a comfortable ambience. Adolescent participation in the clinic was also mentioned as an important entity for adolescent friendly health services.
    Matched MeSH terms: Confidentiality
  9. Fulltext A staff-initiated quality improvement project: from paper to web report
    Daphne Clemente, Nurul Amiella Abdullah, ZurianahJusmin Jasmin, Muhammad Syafiq Abdullah, Helen Benedict Lasimbang, Wendy Diana Shoesmith, et al.
    Malaysian Journal of Medicine and Health Sciences, 2020;16(105):14-0.
    MyJurnal
    Introduction: Continuous quality improvement of system is essential to improve efficiency of working environ- ment. Limited financial allocation in low resource setting results in the vicious circle of having inadequate money to purchase a new system and print paper documents that are required for the operation of clinic. A staff-initiated system improvement with the name of “PRW UMS Staff Portal” was attempted to break-free from the vicious cycle. Methods: An online system covering different aspects of routine clinical work of healthcare workers was created in Dec 2019 and implemented in Feb 2020 using Google SiteTM by the nurses of a local university community clinic, which included: submission of daily reports of nurses and assistant medical officers, submission of reports of all programmes conducted by the clinic, surveillance of health status of working staffs, announcement and request of working roster, archiving of documents, and medication inventory. The system could only be accessed using official working email for general documents while accesses to sensitive documents were restricted to relevant staffs to pro- tect privacy and confidentiality of information. Qualitative interviews were performed with all nursing staff involved. Results: Qualitative feeling of improvement in coordination of workflow was reported by all 23 staffs working in the clinic in view of the easy access of system using smartphone and computer at workstation. It also reduced the need to move away from the working station in order to access, replenish, or submit the printed documents and reports. Significant amount of paper and printing were saved monthly. Conclusions: Despite positive feedback from the staffs, the system requires further improvement in terms of function and security. Further evaluation on cost-efficiency of the system can be done to promote the system to other universities.

    Matched MeSH terms: Confidentiality
  10. Fulltext Patient’s confidentiality policy breach among nursing students
    Patricia Sator
    Malaysian Journal of Medicine and Health Sciences, 2020;16(105):58-0.
    MyJurnal
    Introduction: Nursing is a regulated profession. Hence, the global commitment for nurses to maintain standards of practice is vital to deliver safe and competent care. Written policies will eliminate uncertainty, ambiguity, and legal issues. For this study, it focused on the importance of the nursing students to understand and practice the regulation on patient’s confidentiality in healthcare setting with the usage of technology such as social media. There is a case like nursing student infringe the privacy of patients with the information they posted on social media, such as posting a patient’s photos or videos without valid consent. Methods: This study is a quantitative, cross-sectional survey de- sign. The respondents were selected as convenience sampling of 120 nursing students from the Faculty of Medicine and Health Sciences, Universiti Malaysia Sabah (FMHS, UMS). Results: There are 7.4% nursing students intention- ally posted in social media, 18.0% maybe and 73.8% unintentionally. And for their guilty feeling after committing confidentially policy breach on patient, there are 8.2% said NO, 32.8% said MAYBE and 59% said YES. Overall, the nursing students are aware of the patient’s confidentiality but there is still a leakage in practicing full nursing standards and regulation. Further study recommended to explore more on this issue. Conclusion: As a conclusion, this study is relevant to conduct among the nursing students to gain their understanding regarding the responsibilities as a future nurse in maintaining the patient’s confidentiality as one of the most important nursing practices to ensure quality of care and continuation of professional service of nursing profession.
    Matched MeSH terms: Confidentiality
  11. Fulltext Nurses’ perceptions and attitudes towards family presence during resuscitation in adult critical care units
    Chung Su Chin, Pauline Stitt
    Malaysian Journal of Medicine and Health Sciences, 2020;16(105):61-0.
    MyJurnal
    Introduction: During resuscitation efforts, patients’ families are routinely barred from the resuscitation area. Even there is an increased in demand from the family members requesting to be present during resuscitation of their loved one, health care providers not always offer the option for family presence. The major concerns of health care providers who are opposed to family presence during resuscitation (FPDR) were fear of psychological trauma to family members who witnessed the resuscitation. This study aimed to examine the critical care nurses’ perception and attitudes towards the presence of patients’ family members during resuscitation in adult critical care units. Methods: Study papers included were narrowed to primary study, published within 2003-2014, describing nurses’ perceptions and attitudes on an adult inpatient family witnessed resuscitation in critical care units. Results: Seven studies included, and four main themes emerged mainly samples population, nurses’ experiences of FPDR, nurses’ responses toward FPDR and factor predicting nurses’ attitudes toward FPDR. 20% - 42.2% of nurses had experienced FPDR. Only 4% - 6% of study participants working in hospital with established policy and 95% - 100% had not invited family members to witnessed resuscitation. Nurses would consider the option if family members are accompanied by trained staff. Nurses concern included difficult to concentrate, negatively affecting their per- formance, increased rate of legal action, inadequate staff and limited space. Concerns on family members included too distressing event, negative psychological impact argue and interfere with staff. Concerns on patient would be breach of confidentiality. Conclusion: Adult critical care nurses demonstrated negative perceptions and attitudes towards FPDR. Study participants in this review are not familiar with the concept of FPDR. There is a need for policy development and education on FPDR.
    Matched MeSH terms: Confidentiality
  12. Fulltext A survey on computer password practices among medical undergraduate students at Faculty of Medicine, National University of Malaysia
    Azmi, M.T., Emran, M.T.
    Malaysian Journal of Community Health, 2006;12(1):0-0.
    MyJurnal
    Background: Without any doubt, the combo of user ID and password are the most used authentication method in the computing and internet environment. However, due to the enormous number of accounts that require password authentication, users tend to develop bad habits in their password practices which in turn will put their account security at risk. With the increasing use of computing in health-care settings and the use of EMR in hospitals, such practices are a cause for concern.
    Methods: This is a cross-sectional study using self-administered questionnaires, investigating the practice of the respondents in keeping their passwords secure. Respondents in this survey are the undergraduate students of Faculty of Medicine, Universiti Kebangsaan Malaysia.
    Results: Among the findings are that 87.4% of the respondents used the same password for more than one account. If a user used the same password for several accounts, it might trigger a domino effect if any of the account passwords were compromised. A total of 98.9% of the respondents memorised their password only in their mind, without writing down the password anywhere. This may lead to using easily guessable passwords which may introduce additional security risk to their accounts. The majority of the respondents (96.6%) never or rarely change their passwords. The study also showed that 82.7% of the respondents used passwords which are 6-8 characters in length. Longer passwords are usually safer but harder to remember. The questionnaire also explored the users’ password combination style, whether they used numbers only or combination of numbers and alphabets or some other pattern. A total of 39.1% used letters only but 27.6% used combination of numbers only which is less secure. About 77% of the respondents used personal information such as their birthday date or a person’s name as part of their password.
    Conclusions: This habit may make their password guessable to people who are close to them. In conclusion, most medical students are not practising safe password conduct and they should be educated on this. If not, patients’ data confidentiality may be compromised in the future due to such practices.
    Matched MeSH terms: Confidentiality
  13. Confidentiality in research
    Wolffers I
    Lancet, 1996 Mar 02;347(9001):620.
    PMID: 8596348
    Matched MeSH terms: Confidentiality*
  14. Determinants of RFID adoption in Malaysia's healthcare industry: occupational level as a moderator
    Zailani S, Iranmanesh M, Nikbin D, Beng JK
    J Med Syst, 2015 Jan;39(1):172.
    PMID: 25503418 DOI: 10.1007/s10916-014-0172-4
    With today's highly competitive market in the healthcare industry, Radio Frequency Identification (RFID) is a technology that can be applied by hospitals to improve operational efficiency and to gain a competitive advantage over their competitors. The purpose of this study is to investigate the factors that may effect RFID adoption in Malaysia's healthcare industry. In addition, the moderating role of occupational level was tested. Data was collected from 223 managers as well as healthcare and supporting staffs. This data was analyzed using the partial least squares technique. The results show that perceived ease of use and usefulness, government policy, top management support, and security and privacy concerns have an effect on the intent to adopt RFID in hospitals. There is a wide gap between managers and healthcare staff in terms of the factors that influence RFID adoption. The results of this study will help decision makers as well as managers in the healthcare industry to better understand the determinants of RFID adoption. Additionally, it will assist in the process of RFID adoption, and therefore, spread the usage of RFID technology in more hospitals.
    Matched MeSH terms: Confidentiality
  15. A security framework for nationwide health information exchange based on telehealth strategy
    Zaidan BB, Haiqi A, Zaidan AA, Abdulnabi M, Kiah ML, Muzamel H
    J Med Syst, 2015 May;39(5):51.
    PMID: 25732083 DOI: 10.1007/s10916-015-0235-1
    This study focuses on the situation of health information exchange (HIE) in the context of a nationwide network. It aims to create a security framework that can be implemented to ensure the safe transmission of health information across the boundaries of care providers in Malaysia and other countries. First, a critique of the major elements of nationwide health information networks is presented from the perspective of security, along with such topics as the importance of HIE, issues, and main approaches. Second, a systematic evaluation is conducted on the security solutions that can be utilized in the proposed nationwide network. Finally, a secure framework for health information transmission is proposed within a central cloud-based model, which is compatible with the Malaysian telehealth strategy. The outcome of this analysis indicates that a complete security framework for a global structure of HIE is yet to be defined and implemented. Our proposed framework represents such an endeavor and suggests specific techniques to achieve this goal.
    Matched MeSH terms: Confidentiality
  16. Challenges, alternatives, and paths to sustainability: better public health promotion using social networking pages as key tools
    Zaidan AA, Zaidan BB, Kadhem Z, Larbani M, Lakulu MB, Hashim M
    J Med Syst, 2015 Feb;39(2):7.
    PMID: 25631841 DOI: 10.1007/s10916-015-0201-y
    This paper discusses the possibility of promoting public health and implementing educational health services using Facebook. We discuss the challenges and strengths of using such a platform as a tool for public health care systems from two different perspectives, namely, the view of IT developers and that of physicians. We present a new way of evaluating user interactivity in health care systems from tools provided by Facebook that measure statistical traffic in the Internet. Findings show that Facebook is a very promising tool in promoting e-health services in Web 2.0. Results from statistical traffic show that a Facebook page is more efficient than other pages in promoting public health.
    Matched MeSH terms: Confidentiality
  17. Meeting the security requirements of electronic medical records in the ERA of high-speed computing
    Alanazi HO, Zaidan AA, Zaidan BB, Kiah ML, Al-Bakri SH
    J Med Syst, 2015 Jan;39(1):165.
    PMID: 25481568 DOI: 10.1007/s10916-014-0165-3
    This study has two objectives. First, it aims to develop a system with a highly secured approach to transmitting electronic medical records (EMRs), and second, it aims to identify entities that transmit private patient information without permission. The NTRU and the Advanced Encryption Standard (AES) cryptosystems are secured encryption methods. The AES is a tested technology that has already been utilized in several systems to secure sensitive data. The United States government has been using AES since June 2003 to protect sensitive and essential information. Meanwhile, NTRU protects sensitive data against attacks through the use of quantum computers, which can break the RSA cryptosystem and elliptic curve cryptography algorithms. A hybrid of AES and NTRU is developed in this work to improve EMR security. The proposed hybrid cryptography technique is implemented to secure the data transmission process of EMRs. The proposed security solution can provide protection for over 40 years and is resistant to quantum computers. Moreover, the technique provides the necessary evidence required by law to identify disclosure or misuse of patient records. The proposed solution can effectively secure EMR transmission and protect patient rights. It also identifies the source responsible for disclosing confidential patient records. The proposed hybrid technique for securing data managed by institutional websites must be improved in the future.
    Matched MeSH terms: Confidentiality*
  18. Design and develop a video conferencing framework for real-time telemedicine applications using secure group-based communication architecture
    Mat Kiah ML, Al-Bakri SH, Zaidan AA, Zaidan BB, Hussain M
    J Med Syst, 2014 Oct;38(10):133.
    PMID: 25199651 DOI: 10.1007/s10916-014-0133-y
    One of the applications of modern technology in telemedicine is video conferencing. An alternative to traveling to attend a conference or meeting, video conferencing is becoming increasingly popular among hospitals. By using this technology, doctors can help patients who are unable to physically visit hospitals. Video conferencing particularly benefits patients from rural areas, where good doctors are not always available. Telemedicine has proven to be a blessing to patients who have no access to the best treatment. A telemedicine system consists of customized hardware and software at two locations, namely, at the patient's and the doctor's end. In such cases, the video streams of the conferencing parties may contain highly sensitive information. Thus, real-time data security is one of the most important requirements when designing video conferencing systems. This study proposes a secure framework for video conferencing systems and a complete management solution for secure video conferencing groups. Java Media Framework Application Programming Interface classes are used to design and test the proposed secure framework. Real-time Transport Protocol over User Datagram Protocol is used to transmit the encrypted audio and video streams, and RSA and AES algorithms are used to provide the required security services. Results show that the encryption algorithm insignificantly increases the video conferencing computation time.
    Matched MeSH terms: Confidentiality
  19. Security analysis of a chaotic map-based authentication scheme for telecare medicine information systems
    Yau WC, Phan RC
    J Med Syst, 2013 Dec;37(6):9993.
    PMID: 24194093 DOI: 10.1007/s10916-013-9993-9
    Many authentication schemes have been proposed for telecare medicine information systems (TMIS) to ensure the privacy, integrity, and availability of patient records. These schemes are crucial for TMIS systems because otherwise patients' medical records become susceptible to tampering thus hampering diagnosis or private medical conditions of patients could be disclosed to parties who do not have a right to access such information. Very recently, Hao et al. proposed a chaotic map-based authentication scheme for telecare medicine information systems in a recent issue of Journal of Medical Systems. They claimed that the authentication scheme can withstand various attacks and it is secure to be used in TMIS. In this paper, we show that this authentication scheme is vulnerable to key-compromise impersonation attacks, off-line password guessing attacks upon compromising of a smart card, and parallel session attacks. We also exploit weaknesses in the password change phase of the scheme to mount a denial-of-service attack. Our results show that this scheme cannot be used to provide security in a telecare medicine information system.
    Matched MeSH terms: Confidentiality/standards*
  20. An enhanced security solution for electronic medical records based on AES hybrid technique with SOAP/XML and SHA-1
    Kiah ML, Nabi MS, Zaidan BB, Zaidan AA
    J Med Syst, 2013 Oct;37(5):9971.
    PMID: 24037086 DOI: 10.1007/s10916-013-9971-2
    This study aims to provide security solutions for implementing electronic medical records (EMRs). E-Health organizations could utilize the proposed method and implement recommended solutions in medical/health systems. Majority of the required security features of EMRs were noted. The methods used were tested against each of these security features. In implementing the system, the combination that satisfied all of the security features of EMRs was selected. Secure implementation and management of EMRs facilitate the safeguarding of the confidentiality, integrity, and availability of e-health organization systems. Health practitioners, patients, and visitors can use the information system facilities safely and with confidence anytime and anywhere. After critically reviewing security and data transmission methods, a new hybrid method was proposed to be implemented on EMR systems. This method will enhance the robustness, security, and integration of EMR systems. The hybrid of simple object access protocol/extensible markup language (XML) with advanced encryption standard and secure hash algorithm version 1 has achieved the security requirements of an EMR system with the capability of integrating with other systems through the design of XML messages.
    Matched MeSH terms: Confidentiality
Related Terms
Filters
Contact Us

Please provide feedback to Administrator (afdal@afpm.org.my)

External Links