> So we would make a medical record “bank”, which is federated sensibly, and require everyone to use it. And eventually we end up with a similar system that we have now.
Except accessing your encrypted records require the presentation a doctor's key and your key, which might be a standardized health card with a chip. So not entirely similar to what we have now, it could be considerably safer.
If my card is lost or broken? The system you describe seems clearly at less risk of inappropriate disclosure. Whether it's safer is perhaps another question.
Those are just more reasons why it's harder to inappropriately access the data. My point was that you may need access to the key fast for health-related reasons, and so from that perspective it may reasonably be deemed "less safe" even if it's more secure.
cf. the difference between "fail safe" and "fail secure", in a slightly different context
I get your point, but I don't see how it would be less safe. Right now they look up your records by name or health card number, and this would be a direct link to your health records that you could just tap. It's arguably safer even in the sense you're using it.
