The increased use of electronic medical records and online sharing of such records is motivated by improved quality of healthcare delivery. However, this use has raised security and privacy concerns because sensitive medical data could be exposed to a variety of threats that exist in the online world, leading to problems such as medical identity theft and billing fraud. If not addressed, such concerns could become a barrier to the large-scale adoption and sharing of electronic medical records. To ease such concerns, we argue that the eHealth Exchange, which is a federal initiative for online exchange of healthcare information, needs to be augmented to provide greater patient awareness and control. We take an approach that informs the patient when her health data is accessed by a healthcare enterprise that is not already trusted by the patient. Such awareness is ensured even when some systems in the health information sharing environment become compromised. We enhance accountability support within eHealth Exchange by using digitally signed logs of sharing records that cannot be modified or refuted. We implement and evaluate these mechanisms in the open-source CONNECT system that follows the eHealth Exchange specifications.

• 出版日期2014-2