Skip to main content
Article thumbnail
Location of Repository

A standard-driven communication protocol for disconnected clinics in rural areas

By Massimiliano Masi, Rosario Pugliese and Francesco Tiezzi


The importance of the Electronic Health Record (EHR), which stores all healthcare-related data belonging to a patient, has been recognized in recent years by governments, institutions, and industry. Initiatives like Integrating the Healthcare Enterprise (IHE) have been developed for the definition of standard methodologies for secure and interoperable EHR exchanges among clinics and hospitals. Using the requisites specified by these initiatives, many large-scale projects have been set up to enable healthcare professionals to handle patients' EHRs. Applications deployed in these settings are often considered safety-critical, thus ensuring such security properties as confidentiality, authentication, and authorization is crucial for their success. In this paper, we propose a communication protocol, based on the IHE specifications, for authenticating healthcare professionals and assuring patients' safety in settings where no network connection is available, such as in rural areas of some developing countries. We define a specific threat model, driven by the experience of use cases covered by international projects, and prove that an intruder cannot cause damages to the safety of patients and their data by performing any of the attacks falling within this threat model. To demonstrate the feasibility and effectiveness of our protocol, we have fully implemented it

Topics: QA75 Electronic computers. Computer science
Publisher: IEEE
Year: 2011
DOI identifier: 10.1109/HEALTH.2011.6026770
OAI identifier:

Suggested articles


  1. (2007). A Calculus for Orchestration of Web Services.” doi
  2. (1997). A Hierarchy of Authentication Specifications,” in CSFW. doi
  3. (2008). A model checking approach for verifying COWS specifi-cations,” doi
  4. (2001). A Survey of Verification Techniques for Security
  5. (1998). Casper: A Compiler for the Analysis of Security Protocols,” doi
  6. (2007). CryptoVerif: Computationally Sound Mechanized Prover for Cryptographic Protocols,” Dagstuhl seminar “Formal Protocol Verification Applied”,
  7. (2009). Dossier M´ edical Personnel,”
  8. (2008). Eds., 25 Years of Model Checking - doi
  9. EN: Standardisation mandate addressed to CEN,
  10. (2008). Formal Analysis of SAML 2.0 Web Browser Single Sign-On: Breaking the SAML-based Single Sign-On for Google Apps,” in FMSE. doi
  11. (2007). Formal specifi-cation of a web services protocol,” doi
  12. (1996). Health Insurance Portability and Accountability Act,” Department of Health, doi
  13. (1994). Kerberos: An authentication service for computer networks,” doi
  14. (2001). Mobile values, new names, and secure communication,” in POPL. doi
  15. (2001). Modal logics and mu-calculi: an introduction,” doi
  16. (1999). Model Checking. doi
  17. (2003). On Distributed Security Transactions that Use Secure Transport Protocols,” in CSFW. doi
  18. (1983). On the security of public key protocols,” doi
  19. (2008). osterreich elektronische gesundheitsakte,” doi
  20. (2004). Secure sessions for web services,” in SWS. doi
  21. (2010). Security analysis of standardsdriven communication protocols for healthcare scenarios,” Universit` a degli Studi di Firenze,
  22. (2003). Security analysis of the saml single sign-on browser/artifact profile,” in ACSAC. doi
  23. (2007). Services Security TC,
  24. (2005). Services TC, “Assertions and protocols for the OASIS security assertion markup language (SAML) v2.02,”
  25. (2005). Services TC, “Profiles for the OASIS Security Assertion Markup Language (SAML) V2.0,”
  26. Seven organization,
  27. (2009). Specification and Analysis of Service-Oriented Applications,” PhD Thesis in Computer Science, Dipartimento di Sistemi e Informatica, Universit` a degli Studi di Firenze,
  28. (2008). Specifying and Analysing doi
  29. (2002). Specifying Systems, The TLA+ Language and Tools for Hardware and Software Engineers. doi
  30. (2005). The AVISPA Tool for the Automated Validation of Internet Security Protocols and Applications,” doi
  31. (2010). The epSOS project,
  32. (2009). The Nationwide Health Information Network (NHIN), “An American eHealth Project,”
  33. (2009). The Nationwide Health Information Network (NHIN), “Threat models,”
  34. (2009). The South African Department of Health, “EHR project in South Africa,”
  35. (2004). TulaFale: A Security Tool for Web Services,” doi
  36. (2005). Using static analysis to validate the SAML single sign-on protocol,” doi

To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.