1 / 13

Hospital Automation using RFID Technology

Hospital Automation using RFID Technology. Gustavo Florentino. University of Colorado at Colorado Springs College of Engineering & Applied Science. Objectives. Speed up processes in the laboratory. Use smart cards to store patient’s information and to perform authentication.

mahlah
Download Presentation

Hospital Automation using RFID Technology

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Hospital Automation using RFID Technology Gustavo Florentino University of Colorado at Colorado Springs College of Engineering & Applied Science

  2. Objectives • Speed up processes in the laboratory. • Use smart cards to store patient’s information and to perform authentication. • Use RFID tags to identify sample recipients. • Reduce faults on exams regarding to data flow in the laboratory. • Create a system which is simple for hospital employees to operate.

  3. System features • Authentication on the system is done through smart cards. • Information can be stored on patient’s card. Like: blood type, allergies, hypertension, diabetics, and so on. • The identification of chemistry tubes is performed through RFID tags (not covered).

  4. Problems Many smartcards → low cost. The smart card used does not have processor to process user programs. Then, many authentication algorithms proposed in literature cannot be used. Ex: challenge-response.

  5. Security requirements • We have to: • Avoid non-authorized people from reading the information stored on the card. • Use the card as an authentication device. • Ensure that the data on the card has not been tampered.

  6. Architecture Server Physician Administrator Database Biochemist Analysis Laboratory Laboratory Reception

  7. Smart card memory structure • 2 Kbits cards; • 32 blocks of 8 bytes.

  8. Memory mapping • 6: memory manager version. • 7: user id. • Data on shadowed blocks are ciphered Block Version id User id User data User data User data User data User data User data

  9. Data formatting • Markup language • Back-slash followed by 3 ASCII characters. • Markup language: \beg, \rnd, \crc, \usr, \bty, \dia, \hpt, \ale, \end. • Example: \beg\rnd37026\crcb80e\usrJoseph Jr\btyAB+\diaT\hptF\aleAcetylsalicylic acid\end

  10. Security • Symmetric key cryptography: AES • Faster than an asymmetric algorithm. • At first, only the system is capable of reading and writing on the card. • One key is used for each card. • System security doesn’t rely on manufacturer’s specific mechanisms. So we can easily change the reader and card model or manufacturer if necessary.

  11. Authentication protocol The class MemoryManagerFactory checks the version id on block 6 and instantiates the proper MemoryManager. Block 7 is read to get the user id. The secret key is retrieved from the database and the user data area is deciphered. Finally, \rnd value is compared to the one existing on the database. If they match, the user is successfully authenticated to the system. Version id User id User data User data User data User data User data User data \beg\rnd37026\crcb80e\usrJosé Teodoro da Fonseca\tsgAB+\diaT\hptF\aleácido acetil salicílico, dipirona\end

  12. Data integrity • A cyclic redundancy check code is used to verify integrity of the data contained on the card. • Stronger message digests weren’t employed due to memory constraints. • While data is read from the card, it’s checked if the CRC calculated matches the one read from the card. • This procedure avoids changes of the data on the card by malicious users.

  13. Conclusions Due to severe memory and processing constraints, many techniques found on the literature cannot be applied to this system. The solution was to make use of digital signature concepts.

More Related