Developers of healthcare apps using Apple's CareKit platform just got an easy option for encrypting users' private data. Security firm Tresorit partnered with the tech giant to integrate their security technology ZeroKit into CareKit-built apps, helping developers easily make their products HIPAA compliant, while also protecting users from data theft.
The service offers user authentication and end-to-end encryption services, promising “zero knowledge” sharing of health data. In practice, this would ensure that any information shared through ZeroKit-enabled apps can only be seen by the patient and the doctor, with interception by third parties rendered impossible. An easy to use service is a welcome addition in a field where, traditionally, utility is of much more concern than security.
CareKit is an open-source framework by Apple which launched last year
with the aim of making healthcare app development easier. It offers a number of benefits, such as sharing data with medical professionals and symptom tracking, with the intention of making them easily accessible to both users and devs alike. The same idea also applies to ZeroKit, with Tresorit claiming that no cryptography knowledge is needed to implement the service.
ZeroKit is currently in beta testing and is free of charge for apps with less than 1000 active users.
source: CareKit blog