Multiparty transactional frameworks--i.e. Electronic Data Interchange (EDI) or Health Level (HL) 7--often result in composite documents which can be accurately modelled using hyperlinked document-objects. The structural complexity arising from multiauthor involvement and transaction-specific sequencing would be poorly handled by conventional digital signature schemes based on a single evaluation of a one-way hash function and asymmetric cryptography. In this paper we outline the generation of structure-specific authentication hash-trees for the the authentication of transactional document-objects, followed by asymmetric signature generation on the hash-tree value. Server-side multi-client signature verification would probably constitute the single most compute-intensive task, hence the motivation for our usage of the Rabin signature protocol which results in significantly reduced verification workloads compared to the more commonly applied Rivest-Shamir-Adleman (RSA) protocol. Data privacy is handled via symmetric encryption of message traffic using session-specific keys obtained through key-negotiation mechanisms based on discrete-logarithm cryptography. Individual client-to-server channels can be secured using a double key-pair variation of Diffie-Hellman (DH) key negotiation, usage of which also enables bidirectional node authentication. The reciprocal server-to-client multicast channel is secured through Burmester-Desmedt (BD) key-negotiation which enjoys significant advantages over the usual multiparty extensions to the DH protocol. The implementation of hash-tree signatures and bi/multidirectional key negotiation results in a comprehensive cryptographic framework for multiparty document-objects satisfying both authentication and data privacy requirements.
Matched MeSH terms: Integrated Advanced Information Management Systems
Health-Level (HL) 7 message semantics allows effective functional implementation of Electronic Medical Record (EMR)--encompassing both clinical and administrative (i.e. demographic and financial) information--interchange systems, at the expense of complexity with respect the Protocol Data Unit (PDU) structure and the client-side application architecture. In this paper we feature the usage of the Extensible Markup Language (XML) document-object modelling and Java client-server connectivity towards the implementation of a Web-based system for EMR transaction processing. Our solution features an XML-based description of EMR templates, which are subsequently transcribed into a Hypertext Markup Language (HTML)-Javascript form. This allows client-side user interfaceability and server-side functionality--i.e. message validation, authentication and database connectivity--to be handled through standard Web client-server mechanisms, the primary assumption being availability of a browser capable of XML documents and the associated stylesheets. We assume usage of the Internet as the interchange medium, hence the necessity for authentication and data privacy mechanisms, both of which can be constructed using standard Java-based building blocks.
Matched MeSH terms: Integrated Advanced Information Management Systems
The 21st century promises to usher in an era of Internet based healthcare services--Tele-Healthcare. Such services augur well with the on-going paradigm shift in healthcare delivery patterns, i.e. patient centred services as opposed to provider centred services and wellness maintenance as opposed to illness management. This paper presents a Tele-Healthcare info-structure TIDE--an 'intelligent' wellness-oriented healthcare delivery environment. TIDE incorporates two WWW-based healthcare systems: (1) AIMS (Automated Health Monitoring System) for wellness maintenance and (2) IDEAS (Illness Diagnostic & Advisory System) for illness management. Our proposal comes from an attempt to rethink the sources of possible leverage in improving healthcare; vis-à-vis the provision of a continuum of personalised home-based healthcare services that emphasise the role of the individual in self health maintenance.
Matched MeSH terms: Integrated Advanced Information Management Systems