applications of secure location sensing in healthcare
play

Applications of Secure Location Sensing in Healthcare Michael - PowerPoint PPT Presentation

Dec 01, 2022 •377 likes •774 views

Applications of Secure Location Sensing in Healthcare Michael Rushanan, David Russell, Aviel D. Rubin Johns Hopkins University Introduction Healthcare Application Benefit patient care, delivery, and safety Protect sensitive patient

  1. Applications of Secure Location Sensing in Healthcare Michael Rushanan, David Russell, Aviel D. Rubin Johns Hopkins University

  2. Introduction • Healthcare Application • Benefit patient care, delivery, and safety • Protect sensitive patient data • Tracking and managing assets in real-time • Access Control • Barcode medication administration system

  3. Real-time Tracking • Tracking and managing assets in real-time • Hospitals • 1/3 Nurses spend at least 1hr/shift • 35,000 Units; 32-48% Being used • $4,000 equipment per bed

  4. Problem • Tracking needs to be secure • Resilient to passive and active attacks Passive Adversary Backend Server Tracker Asset Position

  5. Problem • Tracking needs to be secure • Resilient to passive and active attacks Active Adversary Backend Server Tracker Asset Position

  6. BCMA • Scan barcodes on patients and medications • Improve patient safety by reducing human error • Electronic information integration • Interface with electronic medical records

  7. Problem • Scanning considered impractical • Koppel et al. identify 31 unique causes that influence workarounds • Malfunctioning scanner • Unreadable wristbands • Wrong administration of medication

  8. Access Control • Electronic medical records • Require access all the time Mike’s Personal • Mobile device Medical Record Height: x • BYOD or Hospital asset Weight: x Sex: Male Diseases: x, y, z • Single-factor History: 1. Something happened. 2. Something else. • Password or pin Doctor Notes: He’s cool.

  9. Problem • Attacker can bypass this access control • All the data stored no the device is compromised Mike’s Personal Medical Record Active Adversary

  10. Solution • Implement secure real-time tracking system • Secure against active and passive attacks • Implement other applications: • Location-based restrictions • BCMA with physical proximity

  11. Outline • We will discuss: • Common architecture • Secure real-time tracking system • Location-based access restrictions

  12. Common Architecture • We need a physical device that is: • Simple (computation, space) • Wireless • Efficient (i.e., run on battery) • Low-cost • Trusted central server

  13. BLE Beacons 13

  14. Apple iBeacon • Low-cost device • Bluetooth Low Energy (BLE) • Unidirectional • Computes distance via RSSI • Intended for advertising • “Spoofing” as a feature 14

  15. iBeacon Gamestop Target Kroger Beacon Beacon Beacon Advertisement Not in range. Not in range. Welcome to Target Coupon

  16. Other Technologies • RFID is expensive • Infrastructure (i.e., ingress and egress antennas) • Hospital RF policies • GPS doesn't work well indoors

  17. Other Technologies • Wi-Fi is bi-directional Access Access Access Point Point Point • Introduces complexity • Consumes more power • Larger attack surface 17

  18. iBeacon Problem • iBeacon specification is not secure Gamestop Kroger Beacon Beacon Beacon Advertisement Not in range. Not in range. Welcome to Target Coupon 18

  19. Introducing Beacon+ • Modify iBeacon specification • Add an AES CBC-MAC (i.e., authentication) • Secret key assigned a priori to deployment • Monotonically increasing sequence number • To handle clock skew 19

  20. Crypto Primer • Message Authentication Code • Short piece of information • Authenticates a message • Message came from state sender • Has not changed • Secret key needed to compute MAC

  21. Beacon+ 21

  22. Initialization • Beacon+ on initialization: • ID • Sequence Number • Secret • Location 22

  23. Design • Every second, Beacon+: • Increments sequence number • Computes new MAC • MAC sent to BLE BoosterPack via UART at a regular interval (i.e., 8x per second) • Replace previous advertisement 23

  24. Advertisements BLE(Adver-sement(Payload( 31(bytes( Reserved((4(bytes)( UserQDefined(Data((27(bytes)(( Ad(Structure(1( Ad(Structure(2( Size( BLE(Flags( Size( UUID( Major( Minor( TX(Power( Unused( (1(byte)( (2(bytes)( (1(byte)( (16(bytes)( (2(bytes)( (2(bytes)( (1(byte)( (1(byte)( iBeacon(Adver-sement( Reserved((4(bytes)( UserQDefined(Data((27(bytes)(( Ad(Structure(1( Ad(Structure(2( Size( BLE(Flags( Size( TX(Power( ID( Sequence(Number( MAC( (1(byte)( (2(bytes)( (1(byte)( (1(byte)( (2(bytes)( (8(bytes)( (16(bytes)( Beacon+(Adver-sement( 24

  25. Communication 2 I am 2 BLE Trusted Server WIFI Tracking 1 3 I am 1 I am 3

  26. Communication b2 r2 b1 r X 1 r3 X r1 b3 r2 b1 b2

  27. Real-time Tracking • Beacon+’s are fixed at physical locations • Tracked BLE-speaking devices collect • Authenticated advertisements • RSSI • Beacon+’s data is shared with the trusted server 27

  28. Real-time Tracking Backend Server Beacon+ Beacon+ Smartphone Beacon+ Medical Device Beacon+ Data Collector Beacon+ Beacon+ Unidirectional Multidirectional wireless broadcast communication 28

  29. Access Control • Bypass or breaks traditional access control • Password • Location-based access restrictions • Restrict access to data based on location • Another factor of authentication 29

  30. Beacon+ Nearby Patient Records Smith, John Doe, Jane Claus, Nicholas Roberts, Alice ID: 0004 Name: Roberts, Alice Address: 1056 Mountain Dr. Sex: Female DOB: 11/5/1967 History: N/A Therapy: Electroshock Medication: N/A Doctor: Dr. Evil Notes: None 30

  31. Criticisms of Beacon+ • Access control • Need access to data immediately • Location verification issues • Inside attacker can modify RSSI to fake location • Proxy received signals • Trusted server 31

  32. No Central Trusted Authority Beacon+ Beacon+ Certificate Authority Smartphone Beacon+ Map Authority signed(ids, locations) Medical Device Beacon+ Tracking & Location-based Access Queries Beacon+ Beacon+ 32

  33. Summary • Described common architecture • Beacon+ • Discussed location sensing applications • Benefit patient safety • Addressed some criticisms 33

  34. Questions Thank you for attending my talk! 34

  35. Backup Slides

  36. Trilateration

  37. No Central Trusted Authority Setup A hash chain is the S={0,1} 256 successive application of a hash function to a piece of data. ID={0,1} 128 Its used to produce many one-time keys H N =H N (s) from a single key or password. sig{ } ID H N C={ } ID H N sig 37

  38. No Central Trusted Authority [Sender] Beacon+ S { i ID C M k i = H N-i ( ) S tag i =MAC(M, H N-(i+1) ( )) S 38

  39. No Central Trusted Authority [Sender] Beacon+ [Verifier] Phone Check time At time ,send M and i tag i Verify At time ,send M and j tag j C H j ( ) =? k j H N 39

Recommend

A Two-Layer Approach for Energy Efficiency in Mobile Location Sensing Applications Ling-Jyh Chen

A Two-Layer Approach for Energy Efficiency in Mobile Location Sensing Applications Ling-Jyh Chen

A Two-Layer Approach for Energy Efficiency in Mobile Location Sensing Applications Ling-Jyh Chen (Academia Sinica, Taiwan) Introduction Mobile location sensing applications (MLSAs) Exploit Global Positioning System (GPS) technology to

426 views • 30 slides
Secure Communications Center (SCC) Secure Messaging and Location Tracking Smartphones

Secure Communications Center (SCC) Secure Messaging and Location Tracking Smartphones

Secure Communications Center (SCC) Secure Messaging and Location Tracking Smartphones Information Technology Security Location User Messaging Tracking Network * CEO A. Baar Akbay CFO PDM M. Melih H. Hakan Deirmenci Kahraman

372 views • 36 slides
and Web Applications 06 Secure Coding Alexandros Labrinidis University of Pittsburgh Secure

and Web Applications 06 Secure Coding Alexandros Labrinidis University of Pittsburgh Secure

CS 1655 / Spring 2010 Secure Data Management and Web Applications 06 Secure Coding Alexandros Labrinidis University of Pittsburgh Secure Coding From: Secure Coding: Principles and Practices by Mark G. Graff & Kenneth R. Van Wyk

753 views • 17 slides
Secure Geographical Routing Vivek Pathak and Liviu Iftode Location Authenticating

Secure Geographical Routing Vivek Pathak and Liviu Iftode Location Authenticating

Secure Geographical Routing Vivek Pathak and Liviu Iftode Location Authenticating geographical location False Location Attacks Motivations Economic Benefit of misreporting location Strategic Battlefield Privacy

481 views • 37 slides
Remote Sensing and Optical Imaging/Sensing -- Applications on Sericulture and Shrimp Farm --

Remote Sensing and Optical Imaging/Sensing -- Applications on Sericulture and Shrimp Farm --

Remote Sensing and Optical Imaging/Sensing -- Applications on Sericulture and Shrimp Farm -- Sarun Sumriddetchkajorn NSTDA Research Fellow National Electronics and Computer Technology Center (NECTEC) National Science and Technology Development

1.14k views • 57 slides
Wide Area IoT Applications Applications q Urban sensing, environmental/habitat monitoring q

Wide Area IoT Applications Applications q Urban sensing, environmental/habitat monitoring q

SNOW Sensor Network over White Spaces Chenyang Lu CSE 521S Slides courtesy of Abusayeed Saifullah @ Wayne State University Wide Area IoT Applications Applications q Urban sensing, environmental/habitat monitoring q Precision agriculture,

611 views • 25 slides
Remote Sensing and Optical Imaging/Sensing -- Applications on Rice -- Sarun Sumriddetchkajorn

Remote Sensing and Optical Imaging/Sensing -- Applications on Rice -- Sarun Sumriddetchkajorn

Remote Sensing and Optical Imaging/Sensing -- Applications on Rice -- Sarun Sumriddetchkajorn NSTDA Research Fellow National Electronics and Computer Technology Center (NECTEC) National Science and Technology Development Agency (NSTDA)

841 views • 45 slides
Localization: Algorithms and System Applications of Location Information Location aware

Localization: Algorithms and System Applications of Location Information Location aware

Localization: Algorithms and System Applications of Location Information Location aware information services e.g., E911, location-based search, target advertisement, tour guide, inventory management, traffic monitoring, disaster

912 views • 44 slides
Secure Client Applications HTTPS Secure Email Networking Sirindhorn International Institute of

Secure Client Applications HTTPS Secure Email Networking Sirindhorn International Institute of

Networking Secure apps Aims Crypto Basics Secure Client Applications HTTPS Secure Email Networking Sirindhorn International Institute of Technology Thammasat University Prepared by Steven Gordon on 26 June 2014

389 views • 26 slides
Location Location & Size Private-sector Opportunities Public-Private-Partnerships

Location Location & Size Private-sector Opportunities Public-Private-Partnerships

Location Location & Size Private-sector Opportunities Public-Private-Partnerships Government Projects Location Politically stable and secure national context. Strategic location on international maritime routes

323 views • 7 slides
Sensing in Space and Time Michael F. Goodchild University of California Santa Barbara GPS/GNSS

Sensing in Space and Time Michael F. Goodchild University of California Santa Barbara GPS/GNSS

Sensing in Space and Time Michael F. Goodchild University of California Santa Barbara GPS/GNSS Trivial to add location and time to a point record not so trivial at all to add location to a place What is sensing for ? The exposome

131 views • 10 slides
Online Analysis of Remote Sensing Data for Agricultural Applications Athanasios Karmas *

Online Analysis of Remote Sensing Data for Agricultural Applications Athanasios Karmas *

Online Analysis of Remote Sensing Data for Agricultural Applications Athanasios Karmas * Konstantinos Karantzalos Spiros Athanasiou Institute for the Remote Sensing Laboratory Institute for the Management of National Technical University

649 views • 34 slides
Digitization of Healthcare Secure Texting - Facilitating Care Coordination MDHIMSS Karan

Digitization of Healthcare Secure Texting - Facilitating Care Coordination MDHIMSS Karan

Digitization of Healthcare Secure Texting - Facilitating Care Coordination MDHIMSS Karan Mansukhani May 4, 2017 Agenda Background: Why Secure Texting? How does it fit into CRISPs infrastructure? Progress to date Use

170 views • 15 slides
Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location

Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location

Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location Information for Epidemiologic Research Daniel C. Barth-Jones, M.P.H., Ph.D. Center for Healthcare Effectiveness Research Wayne State University (

653 views • 61 slides
with HD Fiber Optic Sensing How Fiber Optic Sensing Enables the Acquisition of Critical Data

with HD Fiber Optic Sensing How Fiber Optic Sensing Enables the Acquisition of Critical Data

See What Youve Been Missing with HD Fiber Optic Sensing How Fiber Optic Sensing Enables the Acquisition of Critical Data Presenter Nick Scott B.S. Mechanical Engineering from Virginia Tech Luna Applications Engineer Supports: Project

603 views • 27 slides
Location, Location, Location, Location, Location: Location: GPS and Google Earth GPS and

Location, Location, Location, Location, Location: Location: GPS and Google Earth GPS and

Location, Location, Location, Location, Location: Location: GPS and Google Earth GPS and Google Earth South Carolina Conference for the Social Studies October 5, 2007 Myrtle Beach, SC Julia Davis judavis@richlandone.org MaryAnn Sansonetti

395 views • 12 slides
SensePresence: Infrastructure-less Occupancy Detection for Opportunistic Sensing Applications

SensePresence: Infrastructure-less Occupancy Detection for Opportunistic Sensing Applications

SensePresence: Infrastructure-less Occupancy Detection for Opportunistic Sensing Applications 16th IEEE International Conference on Mobile Data Management Md Abdullah Al Hafiz Khan H M Sajjad Hossain Nirmalya Roy University of Maryland

289 views • 27 slides
Fast Reconstruction Algorithms for Deterministic Sensing Matrices and Applications Robert

Fast Reconstruction Algorithms for Deterministic Sensing Matrices and Applications Robert

Fast Reconstruction Algorithms for Deterministic Sensing Matrices and Applications Robert Calderbank et al. Program in Applied and Computational Mathematics Princeton University NJ 08544, USA. Robert Calderbank et al. Fast Sensing Matrices and

346 views • 18 slides
INDOOR LOCATION SENSING USING GEO-MAGNETISM Jaewoo Chung 1 , Matt Donahoe 1 , Chris Schmandt 1 ,

INDOOR LOCATION SENSING USING GEO-MAGNETISM Jaewoo Chung 1 , Matt Donahoe 1 , Chris Schmandt 1 ,

INDOOR LOCATION SENSING USING GEO-MAGNETISM Jaewoo Chung 1 , Matt Donahoe 1 , Chris Schmandt 1 , Ig-Jae Kim 1 , Pedram Razavai 2 , Micaela Wiseman 2 MIT Media Laboratory 20 Ames St. Cambridge, MA 02139 1 {jaewoo, donahoe, geek,

875 views • 41 slides
Hypertemporal and Hyperspectral Remote Sensing Applications for Regional Water Quality

Hypertemporal and Hyperspectral Remote Sensing Applications for Regional Water Quality

Hypertemporal and Hyperspectral Remote Sensing Applications for Regional Water Quality Assessments Aditya Singh Department of Agricultural and Biological Engineering University of Florida, Gainesville Background Pressing issues: Biodiversity

533 views • 37 slides
The SpaceFusion* project: applications to remote sensing and 3D topographic reconstruction

The SpaceFusion* project: applications to remote sensing and 3D topographic reconstruction

PASEO The SpaceFusion* project: applications to remote sensing and 3D topographic reconstruction Andr Jalobeanu PASEO Research Group MIV team @ LSIIT, Illkirch, France *Projet ANR Jeunes Chercheurs 2006-2008 Outline Introduction

609 views • 41 slides
Location-Aware Computing Definition: Location-aware applications generate outputs/behaviors

Location-Aware Computing Definition: Location-aware applications generate outputs/behaviors

CS 528 Mobile and Ubiquitous Computing Lecture 5b : Mobile and Location-Aware Computing Emmanuel Agu Location-Aware Computing Definition: Location-aware applications generate outputs/behaviors that depend on a users location Examples:

879 views • 53 slides
Practical Secure Two-Party Computation and Applications Lecture 3: Tools and Applications

Practical Secure Two-Party Computation and Applications Lecture 3: Tools and Applications

Practical Secure Two-Party Computation and Applications Lecture 3: Tools and Applications Estonian Winter School in Computer Science 2016 Overview of this lecture Part 2: ABY Part 3: GSHADE Special Purpose Protocols Generic Protocols

819 views • 52 slides
Analysis of Compressive Sensing in Radar Holger Rauhut Lehrstuhl C f ur Mathematik (Analysis)

Analysis of Compressive Sensing in Radar Holger Rauhut Lehrstuhl C f ur Mathematik (Analysis)

Analysis of Compressive Sensing in Radar Holger Rauhut Lehrstuhl C f ur Mathematik (Analysis) RWTH Aachen Compressed Sensing and Its Applications TU Berlin December 8, 2015 1 / 44 Overview Several radar setups with compressive sensing

912 views • 66 slides

More recommend