Identity management in e-Health: A case study of web of things application using OpenID connect
A new framework of privacy-preserving identity management for distributed e-Health systems is proposed. Utilizing a consumer-centric approach, the healthcare consumer maintains a pool of pseudonymous identiers for use in different healthcare services. Without revealing the identity of consumers, health record data from different medical databases distributed in various clinic/hospitals can be collected and linked together on demand. While pseudo-anonymity preserves user privacy, the architectural design allows the anonymity to be revoked by a trusted authority under well-dened policies with legal-compliance. This framework inherits the advantages in centralized management for distributed medical databases. Security of the interactions among different entities in the architecture is guaranteed by certication and cryptographic technologies.