Towards second-generation smart card-based authentication in health information systems: the secure server model.
2001 (English)In: Medinfo, ISSN 1569-6332, Vol. 10, no Pt 2, 1257-1261 p.Article in journal (Refereed) Published
Conventional smart card-based authentication systems used in health care alleviate some of the security issues in user and system authentication. Existing models still do not cover all security aspects. To enable new protective measures to be developed, an extended model of the authentication process is presented. This model includes a new entity referred to as secure server. Assuming a secure server, a method where the smart card is aware of the status of the terminal integrity verification becomes feasible. The card can then act upon this knowledge and restrict the exposure of sensitive information to the terminal as required in order to minimize the risks. The secure server model can be used to illuminate the weaknesses of current approaches and the need for extensions which alleviate the resulting risks.
Place, publisher, year, edition, pages
2001. Vol. 10, no Pt 2, 1257-1261 p.
IdentifiersURN: urn:nbn:se:liu:diva-30685Local ID: 16290OAI: oai:DiVA.org:liu-30685DiVA: diva2:251508