Privacy-Aware Routing for Sharing Sensitive Information across Wide-Area Networks

Nowadays, we are witnessing the increasing demand of exchanging sensitive data across national boundaries. Healthcare is representative of this tendency, with healthcare-related data being transferred among countries so as to support international patient mobility. Despite in the recent years a lot of efforts have been devoted to deal with such an issue, healthcare-related data exchange across different countries is still an open issue. Technological problems have been partially resolved thanks to the recent research and standardized profiles for Health Information Systems, but privacy implications and issues have considerably limited the possibility of healthcare-related data exchange. The main reason is that such data should not travel across countries with a lower data privacy guarantees than the one where the data have been originated. To treat such a problem, this paper describes a solution for privacy-aware routing, where the selection of the optimal path towards a destination does not only depends on the minimization of the latency and other quality-of-service properties, but also on the offered data privacy assurances due to the applied legal frameworks in the traversed countries. To this aim we make use of linguistic fuzzy sets for modeling the data privacy needs and offers, and game theory for resolving the routing problem in a distributed manner. A preliminary set of simulations have been described, which prove the quality of the proposed solution.

[1]  Reinhold Haux,et al.  Health information systems - past, present, future , 2006, Int. J. Medical Informatics.

[2]  Ning Wang,et al.  An overview of routing optimization for internet traffic engineering , 2008, IEEE Communications Surveys & Tutorials.

[3]  Kim M. Unertl,et al.  The financial impact of health information exchange on emergency department care , 2011, J. Am. Medical Informatics Assoc..

[4]  Melissa Steward Electronic Medical Records , 2005, The Journal of legal medicine.

[5]  Giuseppe De Pietro,et al.  A federated interoperability architecture for health information systems , 2013, Int. J. Internet Protoc. Technol..

[6]  Robin C. Meili,et al.  Can electronic medical record systems transform health care? Potential health benefits, savings, and costs. , 2005, Health affairs.

[7]  Vlaicu Aurel,et al.  Integrated Medical System Using DICOM and HL7 Standards , 2010 .

[8]  Mohsen Guizani,et al.  A survey of secure mobile Ad Hoc routing protocols , 2008, IEEE Communications Surveys & Tutorials.

[9]  Davide Bacciu,et al.  Adaptive fuzzy-valued service selection , 2010, SAC '10.

[10]  Timothy J. Ross,et al.  Fuzzy Logic with Engineering Applications: Ross/Fuzzy Logic with Engineering Applications , 2010 .

[11]  John Mantas Electronic health record. , 2002, Studies in health technology and informatics.

[12]  J. Vest Health information exchange: national and international approaches. , 2012, Advances in health care management.

[13]  Miriam J Laugesen,et al.  A patient mobility framework that travels: European and United States-Mexican comparisons. , 2010, Health policy.

[14]  Henry Farrell,et al.  Negotiating privacy across arenas: The EU-U.S. "Safe-Harbor" discussions , 2002 .

[15]  Katsunori Yamaoka,et al.  A packet routing method based on game theory , 1998 .

[16]  Don E. Detmer,et al.  Building the national health information infrastructure for personal health, health care services, public health, and research , 2003, BMC Medical Informatics Decis. Mak..