| CPC G06F 21/78 (2013.01) [G06F 21/602 (2013.01); G16H 10/60 (2018.01); G16H 30/20 (2018.01); H04L 9/0825 (2013.01)] | 13 Claims |
|
1. A computer-implemented method for securely storing medical data comprising at least steps of:
obtaining, in a secure environment, medical data which include patient property data as well as patient identifier data wherein the patient identifier data indicate at least one patient to which the patient property data correspond;
generating, in the secure environment de-identified medical data by replacing the patient identifier data in the medical data, with respective non-patient-identifying coded identifiers, wherein each non-patient-identifying coded identifier is a hash key of the patient identifier data PID, of parts of the patient identifier data PID, and/or is based on at least parts of the patient identifier data PID and other data;
generating, in the secure environment, a re-identifying database indicating correspondences between the non-patient-identifying coded identifiers and the patient identifier data;
generating an encrypted re-identifying database by applying, in the secure environment, at least one asymmetric encryption method to the re-identifying database, wherein at least an asymmetric encryption method is applied when generating the encrypted re-identifying database, the asymmetric encryption method being based on a private key and a public key wherein a public key of the asymmetric encryption method is used for the asymmetric encryption and wherein a private key for a corresponding decryption remains in the secure environment;
storing the encrypted re-identifying database and the de-identified medical data on a cloud storage outside of the secure environment.
|