Handling Security in a Privacy-preserving Health Research Ecosystem

Detalhes bibliográficos
Autor(a) principal: Rostyslav Khoptiy
Data de Publicação: 2020
Tipo de documento: Dissertação
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: https://hdl.handle.net/10216/129140
Resumo: Healthcare data is more available than ever through the power of the internet: a researchercan access the healthcare record of a person, information that could even include his DNAsequence, from his computer. Each country and even each organization might have theirown repository with this information, with varying levels of access control, if they haveany, and without a unified interface to access this information. Accessing healthcare dataacross various repositories, even if given access for each system, is complicated and timeintensive because of all the different repository access control systems, the authenticationschemes they use and the different legislation regulating data access for each country.This thesis is developed as part of the iReceptor+ project which aims to improve se-curity in DNA healthcare repositories. The aim of this thesis is to implement an accesscontrol system with federated authentication on top of an unified HTTP+JSON API in-terface: AIRR ADC API defined by the AIRR community (miairr-api, n.d.), for the mainrepository types in use for DNA based medical data, such as iReceptor Turnkey (ireceptor-repositories, n.d.), sciReptor (scireptor-docs, n.d.) and immuneDB (Lab, 2018), allowinga researcher, authenticated through an Identity Provider in a Federated Login system, toaccess different levels of information, such as public data, statistics about DNA informa-tion and DNA sequences. Each level of information can have different access control,generally the more aggregated the information the easier the access, to each level, accessis granted to the researcher by the owner of that information.Each organization may have their own repository with DNA data exposing an ADCinterface so a search engine exists to be able to search these repositories and so this inter-face and others need to be able to search repositories protected as part of this project.
id RCAP_e4e2223aa9bd182a0898a186082e3e89
oai_identifier_str oai:repositorio-aberto.up.pt:10216/129140
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Handling Security in a Privacy-preserving Health Research EcosystemEngenharia electrotécnica, electrónica e informáticaElectrical engineering, Electronic engineering, Information engineeringHealthcare data is more available than ever through the power of the internet: a researchercan access the healthcare record of a person, information that could even include his DNAsequence, from his computer. Each country and even each organization might have theirown repository with this information, with varying levels of access control, if they haveany, and without a unified interface to access this information. Accessing healthcare dataacross various repositories, even if given access for each system, is complicated and timeintensive because of all the different repository access control systems, the authenticationschemes they use and the different legislation regulating data access for each country.This thesis is developed as part of the iReceptor+ project which aims to improve se-curity in DNA healthcare repositories. The aim of this thesis is to implement an accesscontrol system with federated authentication on top of an unified HTTP+JSON API in-terface: AIRR ADC API defined by the AIRR community (miairr-api, n.d.), for the mainrepository types in use for DNA based medical data, such as iReceptor Turnkey (ireceptor-repositories, n.d.), sciReptor (scireptor-docs, n.d.) and immuneDB (Lab, 2018), allowinga researcher, authenticated through an Identity Provider in a Federated Login system, toaccess different levels of information, such as public data, statistics about DNA informa-tion and DNA sequences. Each level of information can have different access control,generally the more aggregated the information the easier the access, to each level, accessis granted to the researcher by the owner of that information.Each organization may have their own repository with DNA data exposing an ADCinterface so a search engine exists to be able to search these repositories and so this inter-face and others need to be able to search repositories protected as part of this project.2020-07-232020-07-23T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesisapplication/pdfhttps://hdl.handle.net/10216/129140TID:202594807engRostyslav Khoptiyinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-29T14:15:24Zoai:repositorio-aberto.up.pt:10216/129140Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T23:57:47.507152Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Handling Security in a Privacy-preserving Health Research Ecosystem
title Handling Security in a Privacy-preserving Health Research Ecosystem
spellingShingle Handling Security in a Privacy-preserving Health Research Ecosystem
Rostyslav Khoptiy
Engenharia electrotécnica, electrónica e informática
Electrical engineering, Electronic engineering, Information engineering
title_short Handling Security in a Privacy-preserving Health Research Ecosystem
title_full Handling Security in a Privacy-preserving Health Research Ecosystem
title_fullStr Handling Security in a Privacy-preserving Health Research Ecosystem
title_full_unstemmed Handling Security in a Privacy-preserving Health Research Ecosystem
title_sort Handling Security in a Privacy-preserving Health Research Ecosystem
author Rostyslav Khoptiy
author_facet Rostyslav Khoptiy
author_role author
dc.contributor.author.fl_str_mv Rostyslav Khoptiy
dc.subject.por.fl_str_mv Engenharia electrotécnica, electrónica e informática
Electrical engineering, Electronic engineering, Information engineering
topic Engenharia electrotécnica, electrónica e informática
Electrical engineering, Electronic engineering, Information engineering
description Healthcare data is more available than ever through the power of the internet: a researchercan access the healthcare record of a person, information that could even include his DNAsequence, from his computer. Each country and even each organization might have theirown repository with this information, with varying levels of access control, if they haveany, and without a unified interface to access this information. Accessing healthcare dataacross various repositories, even if given access for each system, is complicated and timeintensive because of all the different repository access control systems, the authenticationschemes they use and the different legislation regulating data access for each country.This thesis is developed as part of the iReceptor+ project which aims to improve se-curity in DNA healthcare repositories. The aim of this thesis is to implement an accesscontrol system with federated authentication on top of an unified HTTP+JSON API in-terface: AIRR ADC API defined by the AIRR community (miairr-api, n.d.), for the mainrepository types in use for DNA based medical data, such as iReceptor Turnkey (ireceptor-repositories, n.d.), sciReptor (scireptor-docs, n.d.) and immuneDB (Lab, 2018), allowinga researcher, authenticated through an Identity Provider in a Federated Login system, toaccess different levels of information, such as public data, statistics about DNA informa-tion and DNA sequences. Each level of information can have different access control,generally the more aggregated the information the easier the access, to each level, accessis granted to the researcher by the owner of that information.Each organization may have their own repository with DNA data exposing an ADCinterface so a search engine exists to be able to search these repositories and so this inter-face and others need to be able to search repositories protected as part of this project.
publishDate 2020
dc.date.none.fl_str_mv 2020-07-23
2020-07-23T00:00:00Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.uri.fl_str_mv https://hdl.handle.net/10216/129140
TID:202594807
url https://hdl.handle.net/10216/129140
identifier_str_mv TID:202594807
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1799135899945009152

Registros relacionados