Hello,

We noticed you're browsing in private or incognito mode.

To continue reading this article, please exit incognito mode or log in.

Not an Insider? Subscribe now for unlimited access to online articles.

Smart Pages

Xerox technology protects sensitive digital information.

Your doctor needs access to all the medical data in your file, but you don’t want the insurance clerks seeing your blood results; besides, that could violate federal privacy laws. Billions of documents–from banking records to personnel files–present similar concerns, which makes for “a pretty gnarly security problem,” says ­Jessica ­Staddon, manager of security research at the Palo Alto Research Center (PARC), the Xerox subsidiary in California.

Illustration by David Plunkert

But scientists at PARC and Xerox’s research laboratory in Webster, NY, are making progress with a technology that automatically protects and selectively reveals information contained in documents, without creating multiple versions of them or hogging as much memory as today’s encryption programs do. In essence, the Xerox software analyzes language to determine whether words and phrases (like “alcohol abuse” or “HIV”), taken in context, are private and should be reserved for doctors, or whether, say, a string of nine digits–potentially a Social Security number–should be seen only by a personnel officer. A single stored form or document reveals its parts according to users’ authorization levels: someone in the hospital scheduling office might see only a patient’s address and phone number.

This story is part of our September/October 2006 Issue
See the rest of the issue
Subscribe

The researchers are working to make the core technology compatible with existing formats, including PDFs and customized hospital forms. “We’ve scoured the landscape, and there is no technology out there that marries content analysis with encryption so that the whole process becomes automated,” says Shriram Revankar, who heads Xerox’s smart-document lab in Webster.

Such technology is badly needed, says Kenneth H. Buetow, director of the National Cancer Institute’s Center for Bioinformatics in Bethesda, MD. Current privacy laws make it difficult for researchers to share patient data from medical trials. “It represents a potential solution to the sharing of information in compliance with human subjects’ privacy protections,” says Buetow, who is assembling a cancer research database. He cautions that the technology is still unproven; but Xerox hopes it will be ready to commercialize in two to five years.

Become an MIT Technology Review Insider for in-depth analysis and unparalleled perspective.

Subscribe today
Want more award-winning journalism? Subscribe to Insider Plus.
  • Insider Plus {! insider.prices.plus !}*

    {! insider.display.menuOptionsLabel !}

    Everything included in Insider Basic, plus the digital magazine, extensive archive, ad-free web experience, and discounts to partner offerings and MIT Technology Review events.

    See details+

    Print + Digital Magazine (6 bi-monthly issues)

    Unlimited online access including all articles, multimedia, and more

    The Download newsletter with top tech stories delivered daily to your inbox

    Technology Review PDF magazine archive, including articles, images, and covers dating back to 1899

    10% Discount to MIT Technology Review events and MIT Press

    Ad-free website experience

/3
You've read of three free articles this month. for unlimited online access. You've read of three free articles this month. for unlimited online access. This is your last free article this month. for unlimited online access. You've read all your free articles this month. for unlimited online access. You've read of three free articles this month. for more, or for unlimited online access. for two more free articles, or for unlimited online access.