Conceptual design and implementation of FIDO2 compatible smart medical card for healthcare information system (Abstract Only)

Abstract

This paper addresses the escalating risk of electronic health records (EHRs) breaches and unauthorised profiling, emphasising the need for standardised solutions to safeguard patient information. Focusing on privacy and security, the proposed conceptual design introduces Fast IDentity Online Specifications (FIDO2) compatible smart medical cards for healthcare information systems. By leveraging FIDO2, the solution ensures password-less authentication through device attestation, enhancing security in accessing patient information. The cloud computing model adds multiple layers of security, maintaining data confidentiality. Experimental results demonstrate performance comparable to traditional healthcare information systems, with a notable advantage in resource-limited settings. The implementation extends the reach of EHR systems, particularly beneficial in low- and middle-income countries with developing health data exchange infrastructure. The use of FIDO2-based smart cards presents a secure and scalable alternative, addressing critical challenges in EHR privacy and security effectively. Copyright © 2024 Inderscience Enterprises Ltd.

Description

Keywords

EHR, electronic health record, fast identity online, FIDO, FIDO2, healthcare, smart medical card

Citation

Sethuraman, S. C., Mitra, A., Ghosh, A., Shaw, R., Cherukuri, A. K., & Kamalov, F. (2024). Conceptual design and implementation of FIDO2 compatible smart medical card for healthcare information system. International Journal of Critical Computer-Based Systems, 11(1-2), 68-90. https://dx.doi.org/10.1504/IJCCBS.2024.139105

DOI