Medical & Health Security Solutions Details

Tricryption® Medical & Health Solution Areas

Database Encryption:
Integration of Tricryption® into the user created, in-house, or custom developed medical applications allows a user application to selectively apply the encryption policy necessary to safeguard sensitive information (Example: encrypt Social Security Numbers). The capability provides for a very granular level of encryption, down to the individual field level if desired allowing the use of one key per field, or one key per record. This increases the security of the database preventing even trusted employees such as database programmers or administrators from viewing sensitive patient information.

De-identification of Records within a Database:
Medical relational databases contain multiple tables that are joined and linked to each other, allowing a record in the patient table to be linked to one or more records in transaction tables allowing navigation between patient data and all of the diagnoses and treatments performed. With Tricryption® based de-identification, relationships between the patient tables and the transaction tables are encrypted, rendering the link between patient and sensitive medical information accessible only to authorized individuals. For all intents and purposes, this technology renders all treatment data in the database anonymous.

Identity Protection:
Tricryption® allows the separation of Personally Identifiable Information (PII) from all other data in medical databases. One way such an identity protection database may be constructed is by encrypting all PII and storing it in a centralized location and creating a cryptographically-generated alias or pseudonym to represent the patient. By storing the pseudonym with the medical treatment data, the PII remains anonymous at all times. If a person gains direct access to the treatment database, they will not be able to view any patient identity information. If someone gains unauthorized access to the identity database then they will view only encrypted data and cannot relate it to any treatment information or diagnostic codes.

Anonymization of Medical Data for Research:
Tricryption® can be deployed in a manner allowing different health sciences and medical facilities to pool data anonymously for research. Personal Identifiers are replaced by cryptographically-generated aliases enabling the data to be pooled and aggregated anonymously. Since this technology creates a unique alias per patient, this allows tracking of individuals across institutions while maintaining anonymity. In cases of urgent need to contact the patient (for example: a CDC reportable condition), anonymization with Tricryption® allows for the re-identification of the medical record, but only after the appropriate authorization is obtained (subject to stringent security and privacy controls).

Medical File Protection: On Servers, Desktops, Laptops or Tablets
Tricryption® may be deployed to protect any type of file (PDF, Excel, Word, images, photos, lab reports, etc…) stored throughout a medical or healthcare organization. Each file is encrypted with its own unique key. These keys are stored centrally in a key database maintained by the facility. With Tricryption®, all sensitive files may be protected in case of theft or loss, or network breach. In addition, this technology allows for secure sharing of files among authorized users, auditing, and real time access revocation. The file encryption, key controls and access management are transparent to the user, alleviating work disruption and additional user training.