A security scheme for distributing analysis codes supporting CDM-based research in a multi-center environment

Seungho Jeon; Chobyeol Shin; Eunnarae Ko; Jongsub Moon

doi:10.1016/j.cmpb.2022.107159

A security scheme for distributing analysis codes supporting CDM-based research in a multi-center environment

Comput Methods Programs Biomed. 2022 Nov:226:107159. doi: 10.1016/j.cmpb.2022.107159. Epub 2022 Sep 27.

Authors

Seungho Jeon¹, Chobyeol Shin², Eunnarae Ko³, Jongsub Moon⁴

Affiliations

¹ Graduate School of Information Security, Korea University, 145, Anrm-ro, Seongbuk-gu, Seoul, 02841, Republic of Korea. Electronic address: ohgnu90@korea.ac.kr.
² Graduate School of Information Security, Korea University, 145, Anrm-ro, Seongbuk-gu, Seoul, 02841, Republic of Korea. Electronic address: lulustar@korea.ac.kr.
³ Graduate School of Information Security, Korea University, 145, Anrm-ro, Seongbuk-gu, Seoul, 02841, Republic of Korea. Electronic address: eun13@korea.ac.kr.
⁴ Graduate School of Information Security, Korea University, 145, Anrm-ro, Seongbuk-gu, Seoul, 02841, Republic of Korea. Electronic address: jsmoon@korea.ac.kr.

PMID: 36244234
DOI: 10.1016/j.cmpb.2022.107159

Abstract

Background: Although the common data model (CDM) has achieved a standardization of medical data and a de-identification of personal patient information, hospitals still store CDM data in an on-premises environment, making it difficult for researchers to access medical data.

Objective: In this study, for easy access to CDM data in a multi-institutional participatory CDM research environment and to encourage data-driven research, researchers outside hospital networks securely access and analyze CDM data in the target medical center, analyze it, and respond to the results through a public network. We propose an automated security framework that operates on a public network, such as the Internet.

Method: The proposed scheme allows authenticated researchers to securely deliver CDM data analysis codes to a medical institution distributed on the network. The institutional servers automatically execute authenticated codes and return the results to the researcher safely. For this purpose, we designed a scheme based on cryptography. The scheme operates on a group of servers consisting of an authentication process, a signing process, a ticket-granting process, a relaying process, and a data analysis process located at the hospital providing medical CDM data. The scheme consists of four phases for a secure medical data analysis in a distributed environment: authentication, code signing, ticket issuing, and distribution and return.

Results: Although the CDM has de-identified patient privacy, the issue still needs to be carefully addressed. Therefore, we established four security objectives to verify that the proposed scheme can be operated safely and formally proved them using BAN logic.

Conclusion: As a result of the proof using BAN logic, the proposed scheme was verified to achieve the proposed security goal. Although this scheme was designed solely for CDM, it can be applied to systems with similar environments and functional goals.

Keywords: Common data model; Kerberos; Multi-centered medical research; Secure distribution-protocol.

Publication types

Multicenter Study

MeSH terms

Computer Security*
Confidentiality
Humans
Telemedicine*