About The Forum
Calendar John Mitchell : 2009 Security Meeting
Thursday, April 16, 2009
Location: Fisher Conference Center, Arrillaga Alumni Center
"Medical patient privacy and the HIPPA law"
Abstract:
Hospitals, clinics, and other organizations maintain and share confidential patient information that must be protected to preserve patient privacy and comply with applicable laws. In modern patient portals, for example, a patient may access his or her medical information, make appointments, view test results, renew prescriptions, or give family members or trusted friends partial access to medical records. We have formalized the US HIPAA law governing transfer of medical information in an executable form, so that such systems may automatically determine which actions are allowed. This formalization of the law is used in a proof-of-concept patient portal system that may be demonstrated on the web.
John Mitchell is the Mary and Gordon Crary Family Professor in the Stanford Computer Science Department. His research in computer security focuses on trust management, privacy, security analysis of network protocols, and web security. He has also worked on programming language analysis and design, formal methods, and other applications of mathematical logic to computer science. Prof. Mitchell is currently involved in the multi-university PORTIA research project to study privacy concerns in databases and information processing systems, and the NSF TRUST Center.
