Newsletter Issue 03, October 2018 - MedCom
Transcript of Newsletter Issue 03, October 2018 - MedCom
Secure and Trusted Paradigm
for Interoperable eHealth
This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Newsletter Issue 03, October 2018
You can subscribe to the KONFIDO
Newsletter on our website, where it is
also available for download.
Connect with us on social media
Welcome to the third issue of the KONFIDO Newsletter, which
presents the current news, results and the next steps of the project.
In this issue
✓ Key KONFIDO Technologies
✓ WP4 - System Requirements & Overall Design:
Key Outcomes
✓ Progress Updates:
✓ WP5 - Security mechanisms detailed design
for trusted data exchange and storage
✓ WP6 - Development of KONFIDO SW & HW
components
✓ WP7 - KONFIDO Integrated System & Tech-
nology Validation Points
✓ Interview with WP5 Partners, Aymen Boudguiga &
Sergiu Carpov
✓ Interview with WP6 Leader, Luigi Coppolino
✓ Project Meetings
✓ News & Events
✓ Collaboration with other projects
✓ Awards on KONFIDO-related work
✓ Publications & Demonstrators
Hvis du har brug for at læse dette dokument i et keyboard eller skærmlæservenligt format, så klik venligst på denne knap.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 2 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
KONFIDO is organized in 4 phases, namely, ‘User requirements analysis‘; ‘Design’; ‘Technology development’; and
‘Integration, testing and validation’ (Figure 1, currently in the latest 2 phases). A description of the KONFIDO technologies
is listed below. SIEM Solution
A Security Information and Event Management System
(SIEM) is a solution able to analyze information and
events collected at different levels of the monitored sys-
tem to discover possible ongoing attacks or anomalous
situations. The KONFIDO SIEM system will support a dis-
tributed analysis of large volumes of data in order to
deal with the federated deployment characteristic of
OpenNCP compliant scenarios. Techniques developed
in the framework of previous European projects, tackling
high heterogeneity of data, anomaly detection and visual
analytics will be will be utilized, extended and adapted to
the needs of the healthcare domain.
Homomorphic Encryption
Homomorphic encryption (HE) is a recent cryptographic
method that allows direct computation on encrypted da-
ta, eliminating the need to decrypt it. KONFIDO will de-
ploy a dual-purpose homomorphic encryption mecha-
nism (HEM) which, combined with more lightweight sym-
metric encryption schemes, will reinforce security levels at
both runtime (data transmission/exchange and pro-
cessing) and rest mode (data storage) throughout the
lifecycle of citizens’ healthcare data. Research work will be
focused on lowering the required computational power
so that processing of sensitive data can be outsourced in
a trusted and secure manner. Finally, KONFIDO’s photon-
ic key-generator device will be applied to establish the HE
keys.
Blockchain
Blockchain is a cloud-based transaction ledger, with dis-
tributed records across the networks of all participants.
In KONFIDO, each log entry will be stored in at least
two different log systems: one in the country of oper-
ation and one in the country of origin. Critical opera-
tions for the entire KONFIDO system could be recorded
by many of the National Contact Point (NCP) log sys-
tems. This allows each NCP to keep a complete and co-
herent view of what is happening. If one or more blocks
are deleted, the confrontation between the hashes of the
newly formed blocks and those recorded by the other log
systems will result in a mismatch. As new blocks are peri-
odically produced by the log systems, the window of op-
portunity for an attacker to tamper with the data is dras-
tically reduced.
Physical Unclonable Functions (PUFs)
In KONFIDO, low cost photonic physical unclonable
functions (PUFs) will be developed from off-the-shelf
optical components like low-cost laser sources, LCD
arrays etc., aiming at the generation of robust and small
footprint photonic hardware key generators with supe-
rior unclonability and unpredictability performance rel-
ative to conventional hardware/software key genera-
tors. The TRL level of such schemes is pushed towards
industrial maturity by addressing robust operation un-
der various handling conditions. The integration of
photonic PUF generators with conventional authentica-
tion mechanisms (RF-IDs) and homomorphic encryption
is anticipated to strengthen the overall security and
data integrity.
COTS CPU technology
Within KONFIDO, secure CPU hardware will be used to
create security enclaves where decrypted data are still
secured despite any possible intrusion at the processing
node. Solutions such as the SGX Intel extensions, enable
the creation of a secure tunnel between the federated
domains, thus providing additional security during data
transfers. The OpenNCP reference implementation can
be enhanced by exploiting the SGX Intel extensions to
support both remote attestation of the destination end-
point and secure data transfer that remains encrypted.
Secure identification
KONFIDO addresses the issue of unauthorized access to
healthcare data in a holistic manner and will ensure se-
cure identification of patients and healthcare pro-
fessionals. As far as cross-border identification is con-
cerned, KONFIDO will take into account the guidelines
currently developed in the context of the eHealth Net-
work in order to ensure the project’s readiness to max-
imize return.
Key Technologies
Figure 1: KONFIDO’s four phases
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 3 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Key Outcomes
WP4 - System Requirements and Overall Design
Since its inception, KONFIDO adopted an evolutionary development model aimed at continuously releasing
and improving artifacts, be them components’ designs or their prototypes. As part of this process, WP4 has
reached the release of the second version of a key artifact of the KONFIDO project: its overall system architec-
ture.
In its first design, KONFIDO was conceived
as a toolbox including services and tools
that, individually or combined, can be used
to address a wide range of possible eHealth
scenarios and to solve many vulnerabilities
in the exchange and processing of health
data. The choice of preserving the flexibility
of KONFIDO without tying it to a specific
scenario or eHealth infrastructure, was nec-
essary given the high heterogeneity in the
existing national infrastructures. On the
other hand, according to the constructive
suggestions provided by project reviewers,
two main decisions were also taken during
the successful first project review: i) once
agreed on the development of individual
tools and services, KONFIDO shall focus on
their application to cross-border data ex-
change, and specifically to an eHDSI compliant scenario based on OpenNCP; ii) since cross-border data ex-
change involves a high number of stakeholders, the clearer definition of the KONFIDO end-users is of para-
mount importance.
Finally, the second version of the KONFIDO architecture was recently release based on these two observations,
and on a revised system requirements and specification.
Figure 2 presents the revised vision of KONFIDO deployment in cross-border data exchange focusing the
viewer attention on involved stakeholders.
Three categories of users that somehow are related to KONFIDO were mainly identified as follows:
1st Level Users – First level users are KONFIDO direct users. In principle, they can be humans (e.g. Certified
Health Professionals (CHPs) of the National Contact Points) or software.
2nd Level Users – Second level users are users that do not access KONFIDO directly, rather they delegate First
Level Users. These include virtually all legitimate users of the IT systems of the national eHealth infrastruc-
tures of individual Member States that are authorized to access Patient Summaries and ePrescriptions (e.g.
a doctor in the hospital).
Beneficiaries – Beneficiaries are not KONFIDO users, in the sense that they do not access KONFIDO services
directly/indirectly. Nevertheless, they benefit from the availability of OpenNCP services (as improved – with
respect to security – by KONFIDO).
Finally, part of WP4 activities included the planning of integration and validation actions. The Consortium has
identified the testcases suite to be used to validate correct interactions among components, and agreed
on the usage of Dockers to simplify the deployment stage.
Figure 2: Revised vision of KONFIDO deployment in cross-border data exchange
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 4 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Progress Update
WP5 - Security mechanisms detailed design for
trusted data exchange and storage
By the end of the second year the KONFIDO project, almost all WP5 activities ended. Different research top-
ics were investigated:
Trusted Execution Environments (TEE): the choice of using Safety Guard Extensions (SGX), i.e. the security
extension to Intel’s CPU, was made. SGX has the very interesting property of ensuring the security of the da-
ta treated within its enclave, even if an attacker has gained root access to the machine. For KONFIDO, SGX
has been integrated within OpenNCP for secure transformation (e.g. translation) of eHealth data with no
disclosure of personal and private information about patients. In addition, SGX was used to secure the com-
munication between two NCPs by mutually authenticating their enclaves before establishing a secure TLS
session.
Homomorphic Encryption (HE) compilers: Cingulata has been implemented and provided as open-source
on GitHub. It specifies a generic interface for different homomorphic crypto-systems and allows users to
code high-level applications intended for computation with homomorphically encrypted inputs. For KON-
FIDO, an example of eHealth data translation have been implemented using Cingulata.
Physically Unclonable Function (PUF): a deep and comprehensive study of the literature concerning PUF-
based security solutions was made. Then, an innovative photonic-PUF solution based on waveguides was
specified. In addition, two software solutions have been developed to characterize the performance of dif-
ferent PUF configuration. The new photonic-PUF will serve, for example, the generation of true random
numbers, enhancing the security of cryptographic protocols and thwart replay attacks when they are used
as timestamps. For KONFIDO, the photonic-PUF will generate random numbers for homomorphic key gen-
eration.
Security Incident and Event Management (SIEM): a new SIEM that detects malicious code injection in
patient data was designed. It provides a GUI interface for incident alerting using visual analytics. In addition,
this SIEM creates a secure session with an SGX enclave to recover securely the private data to be analysed.
An additional solution for encrypted data analysis was specified using homomorphic encryption.
Blockchain-based auditing: a permissioned blockchain is used for logging information shared between
different NCPs. This blockchain tracks eHealth data exchanged between countries. In addition, it allows to
handle, automatically, patient consent for accessing and manipulating her own health data through smart
contracts.
Authentication assurance for eID: an analysis of the authentication framework currently used by OpenNCP
was done. This analysis focused on the general flow of messages between the portal and the core OpenNCP
system, to identify the relevant components that must be modified to accommodate for an eIDAS-based
authentication.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 5 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Progress Update
WP6 - Development of KONFIDO SW
and HW components
A great amount of work was performed during the last months to guarantee that all of the KONFIDO com-
ponents and services were delivered in their first version according to the defined project schedule, leading
to the first six KONFIDO prototypes released before summer!
Namely, the following artifacts were released:
• A first version of Intel® SGX based components needed to increase the resiliency of OpenNCP against
malicious high privileged users, and especially malwares;
• A KONFIDO appliance ensuring highly secure cryptographic keys based on advanced p-PUF tech-
niques;
• A great compiler simplifying the exploitation of Homomorphic Encryption technology to protect data
during their processing in untrusted environments;
• A customized privacy aware SIEM solution enabling big data analysis and exploiting both SGX and
Homomorphic Encryption;
• A blockchain based solution providing enhanced auditing mechanisms to guarantee forensic evidence
of proper management of sensitive information;
• An eIDAS compliant identity management solution to be integrated within OpenNCP.
The release of the first version of individual components and services was a critical milestone for the project
since both WP5 and WP7 were strictly influenced by it. Indeed, WP5 revision of components’ design has
benefited from the release of their first prototype, whereas in WP7 components were expected to launch
their integration activities.
Progress Update
WP7 - KONFIDO Integrated System and
Technology Validation Points
WP7 focuses on two pilots in which an infrastructure capable of health data exchange enhanced by the KON-
FIDO toolset will be provided and tested. An iterative approach will be followed to ensure that feedback from
each piloting stage is incorporated into the next one.
The pilots will concentrate on two types of users: the first-
level users (main regional healthcare infrastructure stakehold-
ers) and second-level users (clinicians interacting with foreign
patient or inter-regional patient data).
The pilot plan, the scope of the pilots as well as their require-
ments and validation criteria (both technical and functional)
are currently being defined in detail.
The kick-off meeting of WP7 took place on March 22, 2018, in Barcelona, Spain. The meeting was organized
by partner EURECAT and concluded with the definition of the pilot preparations plan.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 6 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Aymen Boudguiga is a researcher at CEA, he got a PhD in 2012, from University Paris6 and
Institut Mines-Télécom. His main research areas are authentication and key management, risk
analysis and applied cryptography.
Sergiu Carpov is a researcher at CEA, he got a PhD from Université de Technologie de Com-
piègne in 2011. His main research interests include cryptography (in particular homomorphic
encryption) and combinatorial optimization.
What was the overall approach of WP5?
WP5 concerns the design and specification of security solutions that respect the CIA triad for eHealth data
storage and exchange. First, we (i.e. KONFIDO partners) investigated the state of the art regarding different
research topics: Trusted Execution Environments (TEE), Physically Unclonable Function (PUF), Homomorphic
Encryption (HE) compilers, Security Incident and Event Management (SIEM), Blockchain-based auditing and
authentication assurance for eID. Then, for each research topic, we selected the appropriate candidate that fits
the KONFIDO requirement of integration with OpenNCP. Finally, we worked on integrating our selected securi-
ty components within OpenNCP and demonstrated how they can serve to secure health data. In addition, we
studied the possible synergies between these different components as they combine to form a complete secu-
rity toolkit, namely the KONFIDO security toolset .
What are the key outcomes of WP5?
The major WP5 outcome is the KONFIDO security toolset that gathers many trendy security tools such as Intel
SGX or Blockchain. These components have been improved to provide the confidentiality, integrity and availa-
bility of the very critical and personal health data.
What are the biggest challenges that you faced in the scope of WP5?
The main challenge of WP5 was to define a security toolkit adapted to the constraints of eHealth data.
The main challenge for CEA as WP5 leader was to investigate the different security components of WP5 to un-
derstand what are their function, advantages and disadvantages and how they can interact together.
What is the foreseen impact of WP5 outcomes?
To the best of our knowledge, KONFIDO security toolkit, specified in WP5, is the first complete toolkit that tar-
gets the eHealth data security. By complete, we mean that it targets data security at rest and in transit. It is
GDPR compliant as it provides data privacy thanks to the use of Intel SGX enclaves or Homomorphic encryp-
tion with PUF generated random numbers. In addition, it specifies different means for intrusions or malicious
behaviour detection thanks to SIEM usage and Blockchain-based event logging. Finally, it ensures accurate en-
tity authentication with eIDAS.
CEA conducts cutting-edge research on secure computation over genomic data and this work has
been recently awarded. Can you tell us more about this distinction?
The IDASH Privacy & Security Workshop is a meeting organized each year starting from 2014. The goal of this
Workshop is to test state-of-the-art secure computation methods on real-life genomic computation problems.
CEA participates to this competition from last year (2017). In 2017 we have submitted solutions for 2 tracks,;
the first one refers to homomorphic encryption and the second to hardware-assisted secure computation (i.e.
Intel SGX enclave).
We have obtained the first prize on Intel SGX track and the second place for the HE track. The first prize solu-
tion have been accepted for publication in the BMC Medical Genomics journal.
Interview with WP5 Partners, Aymen Boudguiga & Sergiu Carpov (CEA)
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 7 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Associate Professor Luigi Coppolino with the Department of Engineering, University of
Naples “Parthenope”, Italy and KONFIDO WP6 Leader provides an overview of WP6, which
is devoted to the “Development of KONFIDO SW and HW components” aspects of the pro-
ject.
What are the primary goals of WP6?
WP6 is devoted to implementing components and services of the KONFIDO
toolset. KONFIDO has a modular architecture (as opposed to a monolithic
framework), consisting of a set of tools that can be combined and customized to
solve a variety of security issues, typical of eHealth data exchange scenarios.
WP6 is where such tools are being built.
What is the overall approach followed by WP6?
KONFIDO adopts an evolutionary development model for its components. This means that tools are de-
fined, designed, and implemented in an iterative process, enabling continuous improvement of the features
and the quality of the developed tools. The approach relies on tight interaction of WP6 with the design
(WP5) and specification (WP4) work packages. Equally important, WP6 drives some of the activities that are
performed in WP7, specifically the integration of the tools. This leads to the KONFIDO offering, i.e. a flexible
solution for increasing the security of cross-border eHealth data exchange.
What are the current outcomes of WP6?
Before summer, in perfect compliance with the scheduled deadlines, all of the KONFIDO components were
released in their interim version. The availability of a first prototype provided valuable information for steer-
ing the design activities of the second version of these tools. Building on the experience gained through the
first implementation round and on the new outputs of the design activities in WP5, components now evolve
towards their final release.
Do you see any risks in fulfilling the WP6 goals?
KONFIDO relies on a flexible - yet well-structured - organization, which has enabled the project to meet all
the implementation deadlines so far. While formally WP6 has only two milestones, i.e. the release of the in-
terim and final version of prototypes, the development activity is actually continuous, and a high number of
micro-releases guarantees the proper advancement of the work. Biweekly synchronizations among WP con-
tributors allow a continuous check of activity progress and the early detection of difficulties or conditions
that could slow down the development process. Any potential obstacle would be timely detected and re-
moved, thanks to this iterative development process that would react to the circumstances by revising de-
signs and/or specifications. Currently, the development is progressing according to the schedule and we
also received the first feedback from the integration activities. I would thus say that everything progresses
smoothly, and so will be in the future.
Interview with WP6 Leader, Luigi Coppolino (CINI)
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 8 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
The 4th Plenary Meeting of the project was
held in June 28-29, 2018, in Barcelona, Spain.
The meeting was hosted by partner EURECAT.
The partners discussed the feedback obtained
from the intermediate project review, the cur-
rent progress in all WPs, and future plans.
Major emphasis was given on the final release
of the KONFIDO architecture and the release of the 2nd prototype (all expected by the end of October).
Project Meetings
KONFIDO 4th
Plenary Meeting
KONFIDO 2nd
Advisory Board and Ethics Review Committee and 5th
Plenary Meeting
KONFIDO’s 5th plenary meeting was held on
October 4-5, 2018 and was hosted by partner
CERTH in Thessaloniki, Greece. In conjunction
with this meeting, the 2nd Advisory Board and
Ethics Review Committee meeting took place
on October 3. The external experts discussed
the project’s progress with the Consortium
and offered valuable insights regarding the
challenges faced in KONFIDO.
During the plenary, updates on the overall design of
KONFIDO were presented along with the progress on
the ethical and legal assessment. Partners discussed
key issues concerning all components of the KONFIDO
solution and planned the next steps towards imple-
menting the holistic paradigm proposed by the pro-
ject. The implementation of the recommendations coming from the interim review was also extensively dis-
cussed, as well as the Advisory Board’s feedback.
KONFIDO Interim Review
KONFIDO celebrated a successful interim review in Brussels, on June 13, 2018.
The overall progress of the project was presented by the KONFIDO Coordina-
tor, while the progress of each Workpackage was presented by the KONFIDO
Workpackage leaders. Demonstrators were also presented regarding the
components of the KONFIDO toolset (i.e. photonic-based unclonable key
generation, enhancing OpenNCP with Intel SGX technology, homomorphic
encryption, eIDAS-based authentication, as well as blockchain-based logging
and informed consent), which were developed in the scope of the 1st version of the project's prototype.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 9 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
KONFIDO Presentations at ISCIS
KONFIDO was presented by four partners at the
ISCIS Security Workshop, which was organized by
Imperial College and held in London, UK, February
26-27, 2018.
KONFIDO Presentation at the SAINT Se-
curity Workshop
KONFIDO was presented at the SAINT Workshop
organised by the SAINT H2020 project, held on
March 20, 2018, in
Athens, Greece. The
main objective of the
Workshop was to
bring together several
EU cybersecurity and
privacy-related pro-
jects, to assist in the
e x c h a n g e o f
knowledge and ideas
and promote collabo-
ration.
1 / 2
News & Events
KONFIDO presentation at the eHealth
Workshop of Middlesex University
KONFIDO was
presented at the
eHealth Work-
shop entitled
"Developments
in ICT and
Healthcare - Le-
gal, Ethical & So-
cial Aspects",
held on March 8-9, 2018 at Middlesex University,
London.
KONFIDO partners attended the first Cyberwatch-
ing.eu Concentration Meeting that took place in
Brussels, April 26, 2018.
The objective of this meeting was to investigate
the current R&I landscape in the field of cyberse-
curity and privacy and to identify common themes
and challenges for clustering activities.
More than 40 projects participated through inter-
active discussions, break-out sessions, position pa-
pers and presentations.
KONFIDO participation at the first
Cyberwatching.eu Concentration Meet-
ing
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 10 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
2 / 2
News & Events
Dr. Vassilis Koutkias (WP3 Leader, CERTH) present-
ed KONFIDO at the HIMSS Europe & Health 2.0
Conference that took place in Sitges, Spain on May
27-29.
The presentation was given during the session enti-
tled "Securing Data, Protecting Privacy | Chapter 1:
Focus on Cybersecurity".
KONFIDO presentation at the HIMSS
Europe & Health 2.0 Conference
Workshop on Hyperledger Frameworks
Dr. Konstantinos Votis (CERTH) ran a Workshop on
Hyperledger Frameworks on June 10.
The Workshop was supported by the KONFIDO pro-
ject and took place during the DEVit Conference that
was held in Thessaloniki, Greece on June 10-11,
2018.
Presentation on blockchain at the IEEE In-
ter. Conf. on Trust, Security and Privacy in
Computing and Communications
Anastasia Theodouli (CERTH) presented a paper on
the potential of
Blockchain and
Smart Contracts to
facilitate healthcare
data sharing and
permission handling
in the 17th IEEE Inter-
national Conference
on Trust, Security and Privacy in Computing and
Communications that was held in New York, USA
from July 31 - August 3, 2018.
KONFIDO dissemination at the Thessa-
loniki International Fair
KONFIDO project brochures
were distributed at the
Thessaloniki International
Fair, taking place on Sep-
tember 8-16, 2018, in Thes-
saloniki, Greece.
Dr. Konstantinos Votis
(CERTH) gave a presentation
on blockchain technologies
and bitcoin, focusing on the
future of fintech. KONFIDO was briefly mentioned
as an example of the transformative and disruptive
influence of blockchain in various sectors.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 11 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Collaboration with other projects
A KONFIDO-SHiELD joint meeting was
hosted by Imperial College London
and KONFIDO
project in Febru-
ary 28, 2018 in
London. Partners
from KONFIDO
and SHiELD pre-
sented the pro-
jects' progress
and had fruitful
discussions on
cybersecurity and
privacy for eHealth.
Collaboration with the SHiELD project
Collaboration with the CANVAS project
KONFIDO is currently working to-
gether with the CANVAS project on a
case study around cross-border
eHealth data exchange, namely in establishing how
cybersecurity can be aligned with European values
and legislation.
KONFIDO actively participates in
OpenNCP events: Dr. Giovanni
Mazzeo (CINI) represented KONFIDO
at the eHDSI
Boot Camp that
took place in
April 25-26, in
Brussels, Bel-
gium. The event
focused on the
o v e r a l l
OpenNCP archi-
tecture and its components and the participants -
originated from 17 European countries - had the
opportunity to participate in several hands-on ses-
sions.
Dr Mazzeo had the opportunity to discuss the
KONFIDO solution with the OpenNCP develop-
ment team, gather useful information and explore
the possible threats and vulnerabilities concerning
KONFIDO’s adoption of OpenNCP in its proposed
holistic solution.
Collaboration with the OpenNCP project
Awards on KONFIDO-related work
Dr. Sergiu Carpov
(CEA) participated in
the IDASH competi-
tion concerning ge-
nomic data privacy
and security protec-
tion that took place in
October 14, 2017 in
Orlando, Florida, USA.
Dr. Carpov participated in two tracks, with technol-
ogy solutions that are also used in the KONFIDO
project (homomorphic encryption and Cingulata):
✓ “Multi-party computation using Intel SGX”,
where he won the 1st place
✓ “Logistic regression learning using HE» where
he won the 2nd place
Sergiu Carpov wins awards at IDASH Giovanni Mazzeo wins award at EDCC2018
Dr. Giovanni Mazzeo
(CINI) presented a pa-
per entitled “Exploiting
New CPU Extensions for
Secure Exchange of
eHealth Data at the EU
Level” at 14th European
Dependable Computing
Conference (EDCC2018)
that took place Septem-
ber 10-14, 2018 in Iasi,
Romania.
The paper, that described the activities related to
the security enhancement of OpenNCP with SGX,
won the Best Distinguished Paper award.
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 12 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Newsletter 03, October 2018
Publications 1. P. Natsiavas, J. Rasmussen, M. Voss-Knude, K. Votis, L. Coppolino, P. Campegiani, I. Cano, D. Mari, G. Faiella, F.
Clemente, M. Nalin, E. Grivas, O. Stan, E. Gelenbe, J. Dumortier, J. Petersen, D. Tzovaras, L. Romano, I. Komnios and
V. Koutkias, “Comprehensive user requirements engineering methodology for secure and interoperable health data
exchange”, BMC Medical Informatics and Decision Making, 2018, https://doi.org/10.1186/s12911-018-0664-0
2. S. Carpov and T. Tortech, "Secure top most significant genome variants search: iDASH 2017 competition", BMC
Medical Genomics, vol. 11, no. 4, 2018, https://doi.org/10.1186/s12920-018-0399-x
3. M. Staffa, L. Sgaglione, G. Mazzeo, L. Coppolino, S. D'Antonio, L. Romano, E. Gelenbe, O. Stan, S. Carpov, E. Grivas, P.
Campegiani, L. Castaldo, K. Votis, V. Koutkias, and I. Komnios, “An OpenNCP-based Solution for Secure eHealth Da-
ta Exchange”, Journal of Network and Computer Applications, vol. 116, no. 15, 2018, pp. 65–85, https://
doi.org/10.1016/j.jnca.2018.05.012
4. C. Mesaritakis, M. Akriotou, A. Kapsalis, E. Grivas, C. Chaintoutis, T. Nikas and D. Syvridis (2018), “Physical Unclonable
Function based on a Multi-Mode Optical Waveguide”, Scientific Reports, 8(1), 9653. https://doi.org/10.1038/s41598
-018-28008-6
5. A. Theodouli, S. Arakliotis, K. Moschou, K. Votis and D. Tzovaras, “On the design of a Blockchain-based system to
facilitate Healthcare Data Sharing”, 17th
IEEE International Conference On Trust, Security And Privacy In Computing
And Communications/12th
IEEE International Conference On Big Data Science And Engineering (TrustCom/
BigDataSE) (pp. 1374-1379), 2018, IEEE. https://doi.org/10.1109/TrustCom/BigDataSE.2018.00190
6. L. Coppolino, S. DΥAntonio, G. Mazzeo, L. Romano, L. Sgaglione, "Exploiting New CPU Extensions for Secure Ex-
change of eHealth Data at the EU Level”, 14th
European Dependable Computing Conference (EDCC2018). https://
doi.org/10.1109/EDCC.2018.00015
Demonstrators of the 1st KONFIDO Prototype
Demonstration videos of the first prototypes of the KONFIDO project, that were presented during the interim
review, have been uploaded on the KONFIDO YouTube Channel. Namely, these demos are:
Secure Clinical Data Transformation Using Intel SGX (CINI)
p-PUF-based security module (EULAMBIA) Blockchain-based Informed Consent
Demonstration (CERTH)
Patient Summary Translation Using Homomorphic Encryption (CEA)
eIDAS Authentication for OpenNCP Demonstration (bit4id)
Auditing Blockchain-based Mechanism (EXUS)
Secure and Trusted Paradigm for
Interoperable eHealth Services
Page 13 This project has received funding from the European Union’s
Horizon 2020 Framework Programme for Research and
Innovation under grant agreement no 727528.
Want to find out more about KONFIDO?
Visit our website at konfido-project.eu
Sign up for the KONFIDO newsletter
Connect with us on social media:
Contact Info
Ioannis Komnios
KONFIDO Project Coordinator
15 partners from 7 countries
KONFIDO Consortium