Lockstep

[Skip Navigation]
  • Home
  • About Us
  • News
  • Services
  • Partners
  • Library
  • Contact Us
  • Stepwise makes the Anthill SMART 100 (again)
  • Keynote speech on Human Services delivery
  • "Public yet still private" and other new privacy articles
  • Asian SESAMES award finals
  • Daring to question Open Identity
  • Privacy opinion piece
  • IHI senate submission
  • PCI conference presentation
  • 5th Annual Smartcards Summit
  • Cybercrime hearings appearance
  • Lockstep at Tech23 Innovation Island
  • eResearch Australasia 2009
  • "In defence of silos"
  • Cybercrime inquiry
  • One of Australia's most innovative products
  • "Give PCI the bullet"
  • New blogs calling for clarity
  • OBR "Security 140" Breakfast
  • On the Digital Economy
  • Lockstep a "certified innovator"
  • New Inventors pod cast
  • New Lockstep publications
  • Lockstep judged a Top Five Security Firm in Asia
  • ID Summit
  • Tech reflections on privacy
  • Stepwise on ABC TV The New Inventors - 19 Nov
  • e-Voting presentation at AusCERT 2008
  • Privacy & Security presentation
  • Plurality of Identities
  • "Public Key Superstructure"
  • Stepwise pitch: Safety in Numbers
  • New e-voting paper
  • Lockstep a Cool Company!
  • Interview: Privacy & Technology
  • Smartcards Summit keynote presentation
  • Australian Smartcard Summit
  • New and revised Babysteps
  • National innovation award
  • Senate Committee appearance
  • "Safety in Numbers"
  • New senior consultant - health sector
  • Lockstep presenting at AusCERT 2007
  • IT competition shortlist
  • Radio National Interview
  • "Public Key Superstructure"
  • Access Card Submission
  • Lockstep speaking at Safeguarding Australia
  • Embedded PKI in China
  • Authentication shakeout
  • Lockstep at Security Summit
  • Smartcards and Medicare
  • Interoperability & PKI myths
  • Asia Pac Risk Mgt, Singapore
  • OASIS PKI Survey
  • New "Babysteps" paper
  • New series: "Babysteps"
  • Smartcard Id Mgt Seminar
  • New paper published in China
  • Interview: "The eyes have it"
  • Relationship Certs in China
  • The 3rd OASIS International PKI Survey
  • World's smallest reader
  • Two new PKI whitepapers
  • IIA Two Factor Authentication Pilot
  • New ROI paper
  • Authentication workshop
  • Lockstep developed new PKI Resources Page
  • Other news

IHI senate submission

9 Mar 10: Lockstep's submission on the Health IDs bill is published.

Lockstep made a brief submission to the Senate Community Affairs committee which is currently reviewing the draft Health Identifiers Act. The submission has been published at the committee inquiry website and is attached below.

To summarise Lockstep's position, it appears that the bill has been drafted around one particular centralised architecture, and contemplates only one use case, in which an authorised person retrieves the IHI for a given patient by sending identifying information about that patient to the identifier service.

Extracts

"There are alternative, more patient-centric architectures that could augment the IHI service and mitigate ... privacy risks. Decentralised means for carrying IHIs in cards, smart phones and like devices can improve privacy (as well as performance) and therefore improve consumer acceptance. As previous health & welfare IT programs have shown, serious attention to privacy is key to public acceptance.

"We submit that the healthcare identifier system and legislation should anticipate the advent of personal security technologies for protecting IHIs. In legislating, government should seek to avoid enshrining a single centralised architecture for managing identifiers."
...

"The IHI service as contemplated in the Act would intrinsically lead to information about patients’ consultations with healthcare professionals being disclosed to the government. It would create an audit trail outside the clinical environment of every point where a provider accesses the IHI service, such as initial consultations, hospital admissions and emergency department admissions. As a consequence, participation in treatment by certain types of patients (e.g. those with mental health conditions, drug & alcohol dependency, or sexually transmitted diseases) could be jeopardised if their personal details are to be routinely disclosed to the HI service. Some patients in these categories will simply forego treatment rather than have their personal information escape the trusted local clinical environment.

"We submit that options must be provided where a patient is able to disclose a reliable copy of their IHI directly to the healthcare professional, so as to minimise the extraneous disclosure of information about the clinical encounter."

Lockstep Senate Community Affairs Committee Submission Healthcare Identifiers Bill 2010 100301[download, 87Kb]
© 2010 Lockstep Consulting ABN 59 593 754 482
11 Minnesota Avenue Five Dock NSW 2046
Mobile: +61 (0) 414 488 851 Email Us
Terms and Conditions