Skip to main content



Find us on

facebook youtube flickr twitter itunes u logo

Upcoming Events

 ISTS logo

Securing the e-Campus 2017 - Exact time and dates TBD

Recent Talks

Dan Wallach

STAR-Vote: A Secure, Transparent, Auditable and Reliable Voting System

Professor Dan Wallach
Rice University
Thursday April 27, 2017
Carson L01, 5:00 PM

Ben Miller Dragos

Pandora's Power Grid - What Can State Attacks Do and What Would be the Impact?

Ben Miller
Chief Threat Officer, Dragos, Inc.
Tuesday May 2, 2017
Kemeny 007, 4:30 PM
Brendan Nyhan




Factual Echo Chambers? Fact-checking and Fake News in Election 2016.

Professor Brendan Nyhan
Dartmouth College
Thursday May 4, 2017
Rocky 001, 5:00 PM

Dickie George


Espionage and Intelligence

Professor Dickie George
Johns Hopkins University
Thursday May 11, 2017
Rocky 001, 5:00 PM

Dan Wallach

A Nation Under Attack: Advanced Cyber-Attacks in Ukraine

Ukrainian Cybersecurity Researchers
Thursday April 6, 2017
Oopik Auditorium 5:30 PM

RIOTS logo 

Professor Sean Smith, Director of the ISTS and Bill Nisen, Associate Director, spoke at the

School House residential cluster on the Internet of Risky Things  - February 21, 2017, 5:30 PM

Craig Smith




You Don't Own Your Car
Craig Smith
Tuesday May 10, 2016 
Carson L02 @4:15

David Safford


Hardware Based Security for GE's Industrial Control Systems
David Safford
GE Global Research
Tuesday May 17, 2016
Carson L02 @4:15



"It's Fine," They Said. "Just Ship It," They Said.
Dan Tentler
The Phobos Group
Tuesday April 12, 2016 
Carson L02 @4:15

Harold Thimbleby




The Best Way to Improve Healthcare is to Improve Computers
Harold Thimbleby
Swansea University
April 23, 2015

Craig Shue




Managing User-Level Compromises in Enterprise Network
Craig Shue
Worcester Polytechnic Institute
March 31, 2015



Oct news 2015


ISTS Information Pamphlet



Institute for Security, Technology, and Society
Dartmouth College
6211 Sudikoff Laboratory
Hanover, NH 03755 USA
HomeEvents >

"Security and Data Integrity in Google Health"

        Umesh Shankar

Umesh Shankar, Google
Wednesday, May 5, 2010

Sponsored by ISTS and Computer Science Department


Google Health is a Personal Health Record (PHR) application, allowing users to aggregate their medical data in one place, view it and make sense of it, combine it with relevant reference and scholarly information, and have control over who can access it. The sensitivity of the data requires great care to secure it and ensure users' privacy, and the diversity of data sources---users, medical providers, home medical devices, and mobile applications---requires flexibility in input methods. We will discuss the challenges that arise in authentication, authorization, and data provenance, as well as how we address these in practice. Both external protocols and a flexible, scalable model for crypto key management used internally will be covered.

Last year's HITECH act renewed the push to make patient data available ubiquitously and electronically, but the problem of how to make a single coherent representation of it is unsolved. We will touch on a novel proposal for a very different method of representing medical records that addresses this issue.


Dr. Umesh Shankar is a security engineer at Google, focusing on user data protection and application security. He has published work in areas such as static analysis, network intrusion detection, ad-hoc networks, trusted computing, and usable security and privacy. He has also served on the program committees for numerous conferences. Dr. Shankar is currently a member of the SHARPS healthcare IT project's advisory board. He received a Ph. D. in computer science from the University of California, Berkeley, and an A.B. in computer science from Harvard University.

Last Updated: 5/13/10