About the journal

• Home page
• Contact information
• Aims and scope
• Indexing information
• Editorial policies
• ComSIS consortium
• Journal boards
• Managing board

For authors

• Information for contributors
• Paper submission
• Article submission through OJS
• Copyright transfer form
• Download section

For readers

• Forthcoming articles
• Current issue
• Archive

For reviewers

• View and review submissions

News

• Journal's Facebook page
• Calls for special issues
• New issue notification

On the Security Enhancement of Integrated Electronic Patient Records Information Systems

Muhammad Khurram Khan¹, Ankita Chaturvedi², Dheerendra Mishra³ and Saru Kumari⁴

1. Center of Excellence in Information Assurance, King Saud University
   Riyadh, Kingdom of Saudi Arabia
   mkhurram@ksu.edu.sa
2. Department of Mathematics, Indian Institute of Technology
   Kharagpur, India
   ankita@maths.iitkgp.ernet.in
3. Department of Mathematics, LNM Institute of Information Technology.
   Jaipur, India
   dheerendra.mishra@lnmiit.ac.in
4. Department of Mathematics, Ch. Charan Singh University
   Meerut, India
   saryusiirohi@gmail.com

Abstract

Electronic patient records (EPR) information systems maintain the patients’ medical information on the web servers, and remain available to the medical institutions, practitioners, and the academia. The transmission of data is being done over the public network, which increases the privacy and security risk. However, authentication mechanism tries to ensure secure and authorized communication over insecure public network. In recent years, several authentication protocols have been proposed, but most of them fail to satisfy desirable security attributes. In this paper, we discuss the failure of two authentication protocols for EPR information systems. To overcome the flows, we present improved scheme for the integrated EPR information systems. The correctness of proposed protocol is proved using BAN logic. Moreover, the protocol performs is comparable and security is efficient than the existing schemes.

Key words

remote user authentication, smart card, password, electronic patient records information systems

Digital Object Identifier (DOI)

https://doi.org/10.2298/CSIS141029030K

Publication information

Volume 12, Issue 2 (June 2015)
Year of Publication: 2015
ISSN: 2406-1018 (Online)
Publisher: ComSIS Consortium

Full text

Available in PDF
Portable Document Format

How to cite

Khan, M. K., Chaturvedi, A., Mishra, D., Kumari, S.: On the Security Enhancement of Integrated Electronic Patient Records Information Systems. Computer Science and Information Systems, Vol. 12, No. 2, 857–872. (2015), https://doi.org/10.2298/CSIS141029030K