A Framework For Authentication Of Medical Reports Based On Keystroke Dynamics

Ozdemir, Musa Kazim

01 June 2010

Privacy of personal health records is of ultimate importance. Unfortunately, it is easy to obtain illegal access to electronic health records under insufficient security precautions. Access control based on token or username/password is not adequate for applications in health domain which require heightened security. Currently, electronic signature mechanisms are being employed as a strong alternative to classic methods. In addition, biometrics provide more precise results in comparison to electronic signature methods. However, applicability of biometrics in this field has been prohibited by factors such as the need for special hardware, increased implementation costs, and invasiveness of the biometry sensors (eg. iris topology, fingerprint). Behavioral biometrics such as speech, and keystroke dynamics are easier to implement, and do not suffer from the disadvantages mentioned for the static biometrics. Especially, using keystroke dynamics for user authentication is more advantageous than other advanced biometrics because the implementation is inexpensive and continuous identity control is plausible. The aim of this study is to show the feasibility of merging a biometry-based advanced identity verification method together with an initial access control procedure such as password check. In this study, we provide an authentication framework based on measuring similarity of the typing characteristics of medical reporters, while they are typing medical reports. We have made a prototype of the system and provided classification of keystroke timings for each operator. We have generated a testbed and measured similarity of typing patterns of 5 medical reporters upon typing 4 different kinds of medical reports. Our system performs with hundred percent accuracy in identifying the authorized operators from the reports they type. In current practice, electronic signatures are indispensable for health information systems, but our study shows that keystroke dynamics can easily be included in this chain for increased security.

QA Mathematical Analysis 276-280

Medical Report

Keystroke Dynamics

Electronic Signature

Biometrics

Authentication

L'encadrement juridique de "Documents Transférables Électroniques" / The Legal Frame of the "Electronic Transferable Records"

Gamal Eldine, Nabil

19 January 2017

L’intérêt de la présente recherche est d'étudier d’une manière générale les communications électroniques dans le commerce international, et puis à titre particulier d’interpeler les nouveaux défis qui relèveraient de l’utilisation des "documents transférables électroniques", en réfléchissant sur les différentes approches et les méthodes à adopter afin de remédier aux éventuelles déficiences technologiques, identifier puis combler les lacunes juridiques qui se révéler lors de ces échanges. Il s’agirait donc d’une enquête sur les questions juridiques liées à la création, à l’utilisation et à l’exécution du "document transférable électronique" ; il s’agit d’un terme crée par la CNUDCI, ce qui renvoie d’une manière générale à l’équivalent électronique d’un instrument transférable négociable ou d’un document titre. Nous identifions principalement les trois grands axes. Premièrement, la protection des données personnelles. Elle fait l’objet de plusieurs réformes législatives. La plus récente est le Règlement européen 2016/679 du 27 avril 2016 qui vise à promouvoir l’utilisation de l’outil informatique, tout en accordant la protection appropriée aux données à caractère personnel. Deuxièmement, l'exigence d’unicité d’un document transférable (« Garantie de singularité »). La garantie de l’unicité d’un document exige qu’il soit le seul qui existe ou bien, que toute copie soit clairement identifiable comme telle. Les conséquences éventuelles de la reproduction non autorisée de tout document transférable électronique donnant au porteur ou au bénéficiaire le droit de demander la remise de marchandises ou le paiement d’une somme d’argent rendent nécessaire l’élaboration de mécanismes pour garantir l’unicité de ces instruments. Troisièmement, la possession du ‘document transférable électronique’ et la notion de contrôle pour l’identification du porteur. Outre le traitement de la question de l’exigence de la singularité, la recherche d’un mécanisme fonctionnellement applicable et équivalent pour satisfaire à l’exigence de la possession matérielle du document papier constitue un défi majeur. Dans la plupart des modèles juridiques régissant les documents transférables électroniquement, la notion de “contrôle” d’un document électronique est utilisée en tant qu’équivalent fonctionnel de la possession ; cela signifie que la personne qui exerce le contrôle du document transférable électronique est considérée comme le porteur habilité à s’en prévaloir. Ces documents électroniques sont gérés par des prestataires de confiance qualifiés pour garantir leur sécurité. / The interest of this research is to study in general, the electronic communications in an international context, and then to focus on the ongoing challenges that occur on the field of "electronic transferable documents"; for this we shall perceive the methods that have been adopted for the purpose of using such documents, in order to prevent eventual technological deficiencies, identifying and filling the legal gaps revealed throughout our study of these new challenges.Therefore we shall comprehend and defy the legal boundaries, in order to create, use and transfer "electronic transferable documents". It is a pre-requisite to clearly identify the subject of this study, which is the term 'electronic transferable record, a concept created by UNCITRAL, which refers generally to ' Electronic equivalent of a transferable record (negotiable or non-negotiable) or a document of a legal right.We shall identify the three following main topics:I. The protection of personal data and privacy has been subject to several legislative reforms. The most recent one is the European Regulation 2016/679 dated April 27th, 2016. This reform aims to promote the use of the IT (Information Technology) tools, while granting the appropriate protection to the personal data. These electronic records are managed by qualified services providers.II. Requirement for uniqueness of the record ("Guarantee of uniqueness")The guarantee of the uniqueness of the document is to ensure that there is only one possible holder and owner of that document, as in the case of paper document, and that any copy is clearly identifiable as such. As a result of an unauthorized reproduction of any electronic transferable record, any such holder or beneficiary shall have the right to request delivery of goods or the payment of a certain sum of money; thus the need to insure the uniqueness of these electronic records.III. The possession of an electronic transferable record.In addition to the above, the need to identify a functional equivalent approach to satisfy the requirement of possession in the case of electronic transferable document, which is a major challenge.IV. Concept of control and identification of the holderIn most legal models governing electronic transferable records, the definition of "control" of an electronic document is used as a functional equivalent to possession. That is, the person who controls the electronic transferable record is deemed to be the holder and the one entitled to use it.

Documents transférables électroniques

Billet à ordre

Transferable records

E-Commerce

Bill of Exchange

Promissory note

Electronic signature

E-government ve veřejné správě ČR / E-Government within Public Administration in the Czech Republic

Lechner, Tomáš

January 2013

The objective of the thesis is to analyze the current implementation of information and communication technologies in public administration in the Czech Republic and its development. The presented results come from my partial researches of this area, which I was doing in the whole course of my doctoral study. The thesis is divided into several parts. The first part deals with review of various e-Government definitions and its objectives identification as e-Government has already become an integral part of public administration transformation process. There are also discussed individual e-Government development stages within the broader context of information society development as well as in the context of connections created within the European Union. The second part of the thesis deals with two different points of view of e-Government. The first one includes separate components and institutes of e-Government such as an electronic signature, data mailboxes and contact points of public administration. The second point of view is based on projects. There are mentioned both state level projects such as the Portal of public administration, information system of data mailboxes, Czech POINT, basic registries of public administration and resort level projects as well as projects of particular authorities. Typical examples of regional and local level e-Government projects, which are provided by municipalities, are also included in this part. The third part of the thesis deals with legal, economic, social and regional aspects of e-Government. Indivisible part of this chapter is precise identification and description of constraints that limit implementation possibilities of information and communication technologies within the public administration. These constraints must not be understood as barriers that have to be overcome at any costs or as barriers restraining development of e-Government, but as borders of properly defined space, where the electronization of public administration should operate. Correct understanding of these constraints can help to decrease failure risk of e-Government projects. One of these constraints is legal framework, which I suppose to be crucial and that is why I pay to it the most attention. Besides proving the stated working hypothesis there are given three recommendations for next development of e-Government in the Czech Republic. I suppose that e-Government is a meaningful part of transformation process of public administration and that while keeping some rules it can bring significantly positive results.

Bezpečnost elektronického obchodu / Safety of E-commerce

Jonáš, Martin

January 2010

Diplom´s thesis is supposed to formulation safety of information system functions, description of elktronic signature and certificion authority. Next is oriented at conversion, launching and application of elektronic signature.

Vicefaktorová autentizace elektronických dokumentů / Multifactoral Authentication of Electronic Documents

Gancarčík, Lukáš

January 2013

The aim of the thesis is to provide complete information regarding electronic documents and possibilities of their usage. The focus is concentrated on the area of authentication, which specifies the possibility of obtaining authentication information and describes the authentication processes itself. The diploma thesis also deals with the suggestion of multifactor authentication of electronic documents for the selected company.

Elektronický podpis a jeho využití v účetnictví / Electronic signature and its use in accounting

Guzý, Ladislav

January 2013

Diploma thesis is focused on matters of electronic signatures and their possible usage in accounting and business process. The paper is divided into two parts. Subject of the first part is general analysis of terminology and characteristics of electronic signature, certificates and certification authorities and time stamps, including analysis of strengths and weaknesses of these services. At the end of this theory part are outlined some of the most common choices of using electronic signature in accounting system. In second part are analysed results of research, which was performed by sending questionnaire to a number of randomly chosen companies.

Les contrats conclus par voie électronique : étude comparée / Contracts concluded electronically : a comparative study

Jaber, Abbas Youssef

30 June 2012

L'économie numérique se fonde sur la confiance. Les législations nationales, le droit européen, mais également l'avant projet de loi libanais Ecomleb, ont pris en compte l'importance de la confiance dans l'économie numérique. En effet, les législateurs sont intervenus afin de surmonter les obstacles qui empêchent la conclusion du contrat conclu par voie électronique. Dans cette étude, nous avons analysé les règles juridiques relatives au contrat électronique afin de trouver un certain nombre de cohérences entre les règles de droit commun et celles relatives au contrat électronique, en particulier dans la phase de formation du contrat, avec le contenu de l'offre et de l'acceptation en ligne. Le contrat conclu par voie électronique peut faire l'objet d'un litige international, concernant les règles de compétences de juridiction et les lois applicables, question également envisagée. Enfin, nous avons constaté que la valeur juridique du contrat conclu par voie électronique dépend en principe de la valeur juridique de l'écriture et de la signature électronique, alors que tel n'est pas le cas en droit libanais, malgré l'existence de plusieurs projets de lois en la matière. / Numeric economics is based on confidence. National legislations, European law, as well as the project of Lebanese law Ecomleb, take into account the importance of confidence in numeric economics. Consequently, legislators have thrived to overcome the obstacles that may prohibit the conclusion of electronic legal contracts.In this study we have analyzed the legal regulations that govern electronic contracts in order to establish correlations with common law regulations. The contract formation phase, including the electronic offer content and acceptation, was particularly analyzed.In general, electronic contracts constitute an issue of great international controversy. Rules of competences of jurisdiction and the applicable laws are especially disputed.In conclusion, we have established that the legal value of electronic contracts depends to a great extent on the legal value of the electronic script and signature. Despite the presence of numerous projects concerning this subject in Lebanon, the established correlation does not apply.

Acceptation

Commerce électronique

Contrat électronique

Offre

Preuve électronique

Signature électronique

Acceptance

E-commerce

Electronic contract

Offer

Electronic Evidence

Electronic signature

Porovnanie vybraných certifikačných autorít v Českej republike / Comparison of selected certificate authorities in the Czech Republic

Tencer, Peter

January 2010

This thesis deals with basic principles of electronic signature and functions of certificate authorities, which is complemented with description of legislation environment in Czech Republic. The second part of the thesis includes methodology for comparison of certificate authority's functions in the field of qualified personal certificates. This methodology is afterwards applied for comparison of functions of accredited certificate authorities operating in Czech Republic and for determination of the best authority according to defined criteria and their significance weights.

Elektroninio parašo naudojimo valstybės ir vietos savivaldos institucijų veikloje administracinis teisinis reguliavimas / The administrative judicial regulation of electronic signature usage in state and local municipal institutions

Knyzelienė, Sandra

26 June 2013

Magistriniame darbe, kurį sudaro įvadas, trys skyriai ir išvados bei pasiūlymai, nagrinėjami pagrindiniai elektroninio parašo reglamentavimo valstybės ir savivaldos institucijų veikloje bruožai, aptariamos priežastys, kodėl elektroninis parašas Lietuvoje nėra masiškai naudojamas. Pirmame darbo skyriuje pateikiama elektroninio parašo samprata, teisinis jo reglamentavimas Lietuvos Respublikos ir Europos Sąjungos teisės aktuose, aptariamos elektroninių sertifikatų rūšys. Antrame skyriuje apžvelgiama elektroninio parašo juridinė galia, atitikimas teisės aktų reikalavimams. Nagrinėjami būtini elementai, kad elektroninis parašas turėtų juridinę galią. Trečioje darbo dalyje nagrinėjami valstybės ir vietos savivaldos institucijų veiklos bruožai Lietuvoje, didžiausią dėmesį kreipiant į elektroninių paslaugų teikimą bei tarpžinybinį bendradarbiavimą, pateikiama teisės aktų, reglamentuojančių elektroninių dokumentų rengimą ir saugojimą, analizė, nagrinėjamas elektroninio parašo naudojimas vietos ir savivaldos institucijų veikloje, aptariamos galimybės, išryškinamos priežastys, kodėl elektroninis parašas vis dar nėra kasdieninis reiškinys ir su kokiomis elektroninio parašo taikymo problemomis susiduriama Lietuvoje. Darbas baigiamas išvadomis ir siūlymais dėl teisės aktų tobulinimo. / In this master's paper which consists of introduction, three parts of body and conclusions as well as suggestions the basic features of electronic signature regulation in state and municipal institutions' activities and the reasons why e-signature is not widely used in Lithuania are discussed. In the first part of this paper's body the concept of e-signature is presented as well as its judicial regulation in the legal acts of Republic of Lithuania and European Union, the sorts of electronic certifications are discussed. In the second part of this paper the judicial power of electronic signature is overviewed together with its compliance to the requirements of legal acts. The essential elements of an electronic signature to be validated are analysed. In the third part of this paper's body the state and municipal institutions' activity characteristics in Lithuania are analysed, focusing mostly on electronic service supply as well as inter-institutional communication; analysis of legal acts, which regulate preparation and storage of electronic documents; the usage of electronic signature in local and municipal institutions' activities are analysed; opportunities are discussed and the causes, why electronic signature is not yet a common phenomena are emphasised together with the problems faced when trying to apply electronic signature in Lithuania. This paper is ended with conclusions and suggestions of how the legal acts could be improved.

Law

Elektroninis parašas

Kvalifikuotas sertifikatas

Elektroninis dokumentas

Elektroniniai valdžios vartai

Electronic signature

Certificate

Electronic document

Electronic government gateway

A importância do processo eletrônico, enquanto mecanismo célere de acesso à justiça, e diagnóstico de sua viabilidade em El Salvador

Merino Recinos, Orlando Ernesto

January 2012

Com base no estudo da Lei 11, 419 de 19 de dezembro de 2006, conhecida como “Lei do processo eletrônico”, decretada pelo Congresso Nacional, pretende-se contextualizar o desenvolvimento da informatização do judiciário no Brasil, levando em conta as experiências que já vêm ocorrendo não apenas no Supremo Tribunal Federal, mas em diferentes instâncias judiciais do país, por exemplo, nos tribunais localizados na cidade de Porto Alegre, Estado do Rio Grande do Sul: o Tribunal Regional Federal da 4ª Região, Tribunal Regional do Trabalho da 4ª Região e o Tribunal de Justiça do Estado do Rio Grande do Sul que, em uso de sistemas informáticos, operacionalizam a prestação jurisdicional mediante a transmissão eletrônica de dados com base na Lei 11.419/06. Destaca-se também que a informatização do judiciário comporta celeridade na tramitação de peças processuais, sem desconhecer a adoção de cautelas que garantam suficientemente a segurança das informações relativas ao processo e às partes, o que se constata através da aplicação de assinaturas eletrônicas respaldadas por certificado digital que atende aos requisitos de autenticidade, validade jurídica e interoperabilidade da Medida Provisória 2.200-2/2001 relativa à criação da Infraestrutura de Chaves Pública Brasileira. Como resultado destas considerações, formula-se um diagnóstico situacional para a implantação de um processo eletrônico em El Salvador. / Based on the study of Law 11, 419 of 19 December 2006, known as the "Law of the electronic process," enacted by Congress, seeks to contextualize the development of computerization of the judiciary in Brazil, taking into account not also the experiences into the Supreme Federal Court, but in differents courts around the country, such as the courts located in Porto Alegre, Rio Grande do Sul: The Federal Court of the 4th Region, the Regional Labor Court of the 4th Region and the Court of the State of Rio Grande do Sul, in use of computer systems, effectuate the adjudication by the electronic transmission of data based on the Law 11.419/06. Also noteworthy is that the computerization of the judiciary behaves quickly, without ignoring the adoption of safeguards to ensure sufficient security of information relating to the proceedings and the parties, which is verified through the application of electronic signatures supported by digital certificate that meets requirements of authenticity, the legal validity and interoperability of Provisional 2.200-2/2001 on the creation of the Brazilian Public Key Infrastructure. As a result of these considerations, it makes up a situation analysis for the deployment of an electronic process in El Salvador.

Assinatura eletrônica

Processo eletrônico : Internet

Certificado digital

Acesso à justiça

Computerization

Judiciary

Speed

Electronic signature

Digital certificate

Information security

Diagnostic