Luiz Kobayashi, Abstract Co-Author: Nothing to Disclose

Sergio Shiguemi Furuie PhD, Presenter: Nothing to Disclose

Marco Antonio Gutierrez PHD, Abstract Co-Author: Nothing to Disclose

This article presents an implementation of end-to-end integrity and authenticity for radiological images in a RIS, based on the architectural model introduced in last year’s RSNA event.

The SIMed implementation is based on a flexible and modular architecture in order to provide end-to-end security for radiological images. Two security services, integrity and authenticity, were chosen to be first implemented, given their relevance for assurance of trustworthiness of the images, without disregarding the importance of other services like confidentiality, access control and accountability. As the architecture is technology independent, proven algorithms and methods for integrity and authenticity were preferred over new, but still imature technologies. The approach taken was the use of digital signatures using the RSA algorithm. If the modality itself can provide digital signature, then the implementation just acknowledges the signature at the server side and stores the appropriate information in a database. If not, then a SIMed modulus is responsible for signing the image before sending it to server. On the client side, when a user retrieves a radiological image, a check is made to ensure the validity of the stored data. The result of the verification is sent to the client and shown to the user, so that he can take the appropriate measures. This provides integrity and authenticity in each step of the image information flow, from the acquisition to the retrieval. This approach is compliant with Part 15 of the DICOM standard.

Based on a flexible security architecture, an implementation of integrity and authenticity of medical images was done, proving the feasibility of the approach proposed by the architecture. The information flow oriented vision used in SIMed allowed to offer the above mentioned security services in reasonable levels along all the flow in which radiological images are inserted.

Two security services, integrity and authenticity, were successfully deployed in a radiological image context, offering not a punctual solution, but rather a wider assurance of those services in the radiological image information flow.

M.A.G.: Author is employed by Heart Institute of University of São Paulo.S.S.F.: Author is employed by Heart Institute of University of São Paulo.

Kobayashi, L, Furuie, S, Gutierrez, M, Implementation of Integrity and Authenticity Oriented to Information Flow for Radiological Images.  Radiological Society of North America 2005 Scientific Assembly and Annual Meeting, November 27 - December 2, 2005 ,Chicago IL. http://archive.rsna.org/2005/4410267.html