Integrated Framework for Telebiometric data protection in Korea

Anne Shin, Hanyang Cyber University

Dec. 7 2010This work was supported by the ICT

Standardization program of MKE(The Ministry of Knowledge Economy).

2Addressing security challenges on a global scale Geneva, 6-7 December 2010

Case of Telehealth Service Using Biometrics (1 of 3)

3Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Case of Telehealth Service Using Biometrics (2 of 3)

4Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Korea : LG CNS – Touch Doctor TeleHealth Service - User Authentication based Fingerprint(1,000Users) : ’08.08

Case of Telehealth Service Using Biometrics (3 of 3)

5Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Korea : KonKuk Hospital EMR( Electronic Medical Record) - Doctor Authentication based Fingerprint(200Users) : ’06.12

Fingerprint based Access Control

Biometric Center

TCP/IPHTTP/HTTPSUNIXJAVA VMBiometric AgentCrypto Agent

Doctor Desktop

TCP/IPWindows OS

Crypto AgentBiometric Agent

SSO Agent

Biometric Center

TCP/IPHTTP/HTTPSUNIXJAVA VMBiometric AgentCrypto Agent

SSO

TCP/IP

HTTP/HTTPS

UNIX

SSO AgentDB server

TCP/IP

HTTP/HTTPS

UNIX

Fingerprint Info.

User Info.

L4 Switch

Fingerprint Sensor

Fingerprint EnrollmentFingerprint Verification

Telehealth provides medical services related to a user’s health and life. Therefore, if there are any errors in user authentication, fatal medical problems may ensue. As a result, biometrics should be used for enhanced user identification processes.If sufferers of chronic disease access telehealth services, the current password or PKI-based user authentication systems are quite inconvenient, as they require the input of a password. If biometrics is adopted, user convenience will be enhanced with the use of physical feature information, such as the face or a fingerprint.

6Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Integrated in the telemedicine and telehealth environment

Public Health Center

What is it?

7Geneva, 6-7 December 2010 Addressing security challenges on a global scale

A health center is a regional healthcare organizationwhich provides services to protect local residents from disease and keep them healthy.It is installed in each city, county and district pursuant to ordinance by the local government concerned

Public Health Center

What does it do?

8Geneva, 6-7 December 2010 Addressing security challenges on a global scale

As specified in Article 9 of Regional Health Act, a healthcenter performs a variety of work ranging from fostering public health to study of healthcare services in the region, which can be categorized into 16 as follows. 1. Health improvement, health education and nutrition enhancement 2. Control, management and treatment of epidemic 3. Maternity aids and family planning 4. Health services for elders 5. Public sanitization and food safety

Public Health Center

What does it do?

9Geneva, 6-7 December 2010 Addressing security challenges on a global scale

6. Tasks on guiding medical professionals and organizations 7. Tasks on guiding medical engineer, medical recorder and glasses makers 8. Work on emergency treatment 9. Providing guidance for public clinic doctors, treatment personnel and health clinics pursuant    to Special Law on Healthcare for Rural Areas. 10. Work related to pharmacists and control of drugs and psychotropic medicine 11. Management in connection with metal health 12. Healthcare services provided at homes or social welfare institutions 13. Treatment and diagnosis of disease for the local residents and monitoring of people with chronic degenerative diseases 14. Experiments or tests associated with healthcare 15. Rehabilitation efforts for the disabled and other welfare initiatives pursuant to the enforcement decrees by the health ministry. 16. Other work associated with improvement of health for local residents and research projects.

Public Health Care Use case

10Geneva, 6-7 December 2010 Addressing security challenges on a global scale

System Configuration

11Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Authentication Method using PKI

12Geneva, 6-7 December 2010 Addressing security challenges on a global scale

13Geneva, 6-7 December 2010 Addressing security challenges on a global scale

Biometric-based u-Healthcare Integration Model

Sensor

Bio sensorAcquire

Compare

Acquire

Health information

Transmit Receive

Compare

Reference

User identificationinformation

Terminal identificationinformation

User identificationinformation

Terminal identificationinformation

Health information

StorePersonal

identification

information

Terminal

identification

Information

Health

information

Personal information

storage in Terminal

Personal information storage in Center

Medical information storage in Center

U-Health terminal U-Health center