Top

BMC Medical Informatics and Decision Making

Published in:

Open Access 01-12-2015 | Research Article

A RESTful interface to pseudonymization services in modern web applications

Authors: Martin Lablans, Andreas Borg, Frank Ückert

Published in: BMC Medical Informatics and Decision Making | Issue 1/2015

Abstract

Background

Medical research networks rely on record linkage and pseudonymization to determine which records from different sources relate to the same patient. To establish informational separation of powers, the required identifying data are redirected to a trusted third party that has, in turn, no access to medical data. This pseudonymization service receives identifying data, compares them with a list of already reported patient records and replies with a (new or existing) pseudonym. We found existing solutions to be technically outdated, complex to implement or not suitable for internet-based research infrastructures. In this article, we propose a new RESTful pseudonymization interface tailored for use in web applications accessed by modern web browsers.

Methods

The interface is modelled as a resource-oriented architecture, which is based on the representational state transfer (REST) architectural style. We translated typical use-cases into resources to be manipulated with well-known HTTP verbs. Patients can be re-identified in real-time by authorized users’ web browsers using temporary identifiers. We encourage the use of PID strings for pseudonyms and the EpiLink algorithm for record linkage. As a proof of concept, we developed a Java Servlet as reference implementation.

Results

The following resources have been identified: Sessions allow data associated with a client to be stored beyond a single request while still maintaining statelessness. Tokens authorize for a specified action and thus allow the delegation of authentication. Patients are identified by one or more pseudonyms and carry identifying fields. Relying on HTTP calls alone, the interface is firewall-friendly. The reference implementation has proven to be production stable.

Conclusion

The RESTful pseudonymization interface fits the requirements of web-based scenarios and allows building applications that make pseudonymization transparent to the user using ordinary web technology. The open-source reference implementation implements the web interface as well as a scientifically grounded algorithm to generate non-speaking pseudonyms.

Fielding RT. Architectural styles and the design of network-based software architectures. PhD thesis, University of California; 2000.

Richardson L, Ruby S. Restful Web Services, 1st edn. Sebastopol, CA: O’Reilly; 2007.

Fielding RT. REST APIs Must Be Hypertext-driven. http://roy.gbiv.com/untangled/2008/rest-apis-must-be-hypertext-driven. Accessed 17 Apr 2014.

Reng C-M, Pommerening K, Specker C, Debold P. Generische Lösungen zum Datenschutz Für die Forschungsnetze in der Medizin: Datenschutz und Medizinische Forschung Sind Vereinbar. Berlin: Medizinisch Wissenschaftliche Verlagsgesellschaft; 2006.

Spitzer M, Ullrich T, Ückert F. Securing a web-based teleradiology platform according to german law and “best practices”. Stud Health Technol Inform 2009; 150:730–4.PubMed

Lablans M, Brüntrup R, Drepper J, Ückert F. Eine generische Softwarebibliothek zur Umsetzung des TMF-Datenschutzkonzepts A im Webeinsatz In: Schmücker P, Elsässer K, Hayna S, editors. GMDS 2010. Mannheim: 2010.

Barth A. RFC 6454: The Web Origin Concept. http://tools.ietf.org/search/rfc6454.

Faldum A, Pommerening K. An optimal code for patient identifiers. Comput Methods Prog Biomed 2005; 79(1):81–8. doi:10.1016/j.cmpb.2005.03.004.CrossRef

Elmagarmid AK, Ipeirotis PG, Verykios VS. Duplicate record detection: a survey. IEEE Trans Knowl Data Eng 2007; 19(1):1–16.CrossRef

10.

Christen P. Data matching: concepts and techniques for record linkage, entity resolution, and duplicate detection. Berlin, Heidelberg: Springer; 2012.CrossRef

11.

Oracle Corporation. Jersey. RESTful Web Services in Java. http://jersey.java.net/. Accessed 7 Jun 2014.

12.

Leach PJ, Mealling M, Salz R. RFC 4122: A Universally Unique IDentifier (UUID) URN Namespace. http://tools.ietf.org/html/rfc4122. Accessed 6 Jan 2014.

13.

Contiero P, Tittarelli A, Tagliabue G, Maghini A, Fabiano S, Crosignani P, et al.The EpiLink record linkage software: presentation and results of linkage test on cancer registry files. Methods Inf Med 2005; 44(1):66–71.PubMed

14.

Glock J, Herold R, Pommerening K. Personal identifiers in medical research networks. evaluation of the personal identifier generator in the competence network paediatric oncology and haematology. GMS Medizinische Informatik, Biometrie und Epidemiologie 2006; 2(2):06.

15.

Mate S. Evaluation von i2b2 am Universitätsklinikum Erlangen. Seminar paper, University of Erlangen-Nuremberg; 2009.

16.

IHE International, Inc.IHE IT Infrastructure Technical Framework, Volume 2a (ITI TF-2a): Transactions Part A 2013. http://www.ihe.net/uploadedFiles/Documents/ITI/IHE_ITI_TF_Vol2a.pdf Accessed 29 Aug 2014.

17.

OpenEMPI. An Open Source Enterprise Master Patient Index. http://openempi.kenai.com/.

18.

Schack C, Möller A. E-PIX – Master Patient Index (MPI) Software zur eindeutigen Wiedererkennung von Patienten innerhalb heterogener Klinischer-Informations-Systeme unterschiedlicher Standorte. In: Mainz//2011. Mainz, 26.-29.09.2011. Düsseldorf: German Medical Science GMS Publishing House: 2011.

19.

interActive Systems GmbH. secuTrial 4.5.1.15 (Release Notes.) 2013. https://secutrial.hcuge.ch/crc/docs/manuals/sT-releasenote_secuTrial_4.5_20131216_1.8.pdf. Accessed 27 Mar 2014.

20.

Havemann C, Fitzer K, Ostrzinski S, Wolff R, Bialke M, Bahls T, et al.Datenschutz- und IT-Sicherheitskonzept für die unabhängige Treuhandstelle der Nationalen Kohorte 2014. http://www.nationale-kohorte.de/content/treuhandstellenkonzept.pdf. Accessed 16 Sept 2014.

21.

German National Cohort (GNC) Consortium. The german national cohort: aims, study design and organization. European J Epidemiol 2014; 29(5):371–82.CrossRef

22.

Skripcak T. Lessons learned from integrating OpenClinica with other IT systems. https://community.openclinica.com/sites/fileuploads/akaza/cms-community/Tomas%20Skripcak%20-%20Lessons%20learned.pdf. Accessed 16 Sept 2014.

23.

Kadioglu D, Ückert F. Integration von Daten aus der Gesundheitsversorgung und Biomarkeranalysen im patientenzentrierten Biomarkerforschungs- und Entwicklungshub des Clusters für individualisierte Immunintervention (Ci3). In: GMDS 2014. Göttingen, 07.-10.09.2014. Düsseldorf: German Medical Science GMS Publishing House: 2014. http://www.egms.de/static/de/meetings/gmds2014/14gmds106.shtml. Accessed 18 Sept 2014.

24.

Lablans M, Borg A, Eils J, Felder B, Herzog E, Kadioglu D, et al.Konzept der CCP-IT des DKTK. http://www.unimedizin-mainz.de/fileadmin/kliniken/imbei/Dokumente/MI/AGVF/Konzept_CCP-IT.pdf. Accessed 18 Sept 2014.

25.

Lablans M, Muscholl M, Hartz T, Storf H, Ückert F. OSSE – open source registry software solution. In: ECRD 2014: The European Conference on Rare Diseases & Orphan Products, Berlin: 2014.

26.

chiLDEU research consortium. Ethics/Data Safety. http://www.klinikum.uni-muenchen.de/Child-EU/en/research/ethics_data_safety/index.html. Accessed 18 Sept 2014.

Title: A RESTful interface to pseudonymization services in modern web applications
Authors: Martin Lablans
Andreas Borg
Frank Ückert
Publication date: 01-12-2015
Publisher: BioMed Central
Published in: BMC Medical Informatics and Decision Making / Issue 1/2015
Electronic ISSN: 1472-6947
DOI: https://doi.org/10.1186/s12911-014-0123-5

Keynote webinar | Spotlight on medication adherence

Springer Medicine

A RESTful interface to pseudonymization services in modern web applications

Abstract

Background

Methods

Results

Conclusion

Keynote webinar | Spotlight on medication adherence

Springer Medicine

Abstract

Background

Methods

Results

Conclusion

Please log in to get access to this content

Other articles of this Issue 1/2015

Cultural adaptation of a shared decision making tool with Aboriginal women: a qualitative study

A user needs assessment to inform health information exchange design and implementation

A qualitative evaluation of the crucial attributes of contextual Information necessary in EHR design to support patient-centered medical home care

Design and evaluation of a software for the objective and easy-to-read presentation of new drug properties to physicians

Opinion versus practice regarding the use of rehabilitation services in home care: an investigation using machine learning algorithms

Engineering a mobile health tool for resource-poor settings to assess and manage cardiovascular disease risk: SMARThealth study