KAKUNIN

Diagnostic Assistants on EHR

Read-only agents cannot mutate patient records

Diagnostic Assistants on EHR

AI Without Write Access

A large European hospital deployed an autonomous diagnostic assistant on its EHR system. The agent can read patient histories and suggest diagnoses, but physically cannot modify records—scope is encoded in the X.509 certificate.

The Challenge

Diagnostic AI needs broad read access:

  • Patient history (medications, allergies, past diagnoses)
  • Lab results (real-time)
  • Imaging reports (radiology notes)
  • Treatment protocols

But write access = liability. A compromised agent could:

  • Alter diagnosis history
  • Delete medication records
  • Change treatment plans
  • Cover its tracks

The Solution

Permission-Based Revocation via Certificate Encoding

Agent Identity: agt_44b1c8 (Diagnostic Assistant v1.8)
  ├─ Permitted Actions: [read:ehr, read:labs, read:imaging]
  ├─ Forbidden Actions: [write:*, delete:*, update:*]
  ├─ Scope Enforcement: Certificate-level (not code-level)
  └─ HIPAA Audit: Automatic

Why certificate-level matters:

Even if the agent's code is compromised, it cannot:

  • Override its own certificate
  • Request write privileges
  • Escalate permissions
  • Bypass scope checks

Every read operation:

  1. Agent authenticates with Kakunin cert
  2. System reads cert scope ([read:ehr])
  3. Operation validated against scope
  4. Write request? → 403 Forbidden (certificate doesn't permit it)
  5. Read request → Allowed, logged to HIPAA audit trail

Real Workflow

Patient: John Smith | MRN: 450921 | Chief Complaint: Chest pain

14:30  Agent reads: medications, allergies, past cardiology
14:31  Agent analyzes vitals, EKG, troponin levels
14:32  Agent suggests: "Rule out acute MI, recommend cardiology consult"
14:33  Physician reviews suggestion, agrees
14:34  Physician (logged as human) updates chart: "Cardiology consult ordered"
14:35  System log shows:
       - Agent: 4 read ops, 0 write ops ✓
       - Physician: 1 write op (authenticated) ✓

Regulatory Outcome

HIPAA + EU Medical Device Regulations

RequirementHow Kakunin Satisfies It
Access controlsCertificate-based read-only scope
Audit trailsEvery read logged with timestamp + agent ID
Data integrityAgent cannot modify (scope enforced at cert level)
AccountabilityFull chain of custody for every read
RevocationInstant if agent behavior drifts

Audit result: 100% compliant. Auditors verified that agent physically cannot write to EHR.

Business Impact

MetricBefore (Manual)After (Autonomous)
Diagnostic time45min average8min average
Diagnostic accuracy87%94%
Physician time per case50min15min (validation only)
Cases handled/day40180
Write-access violationsN/A0 (impossible by design)

For Your Healthcare System

Deploy AI assistants with surgical precision:

  • Read-only agents cannot mutate records (enforcement at certificate level, not code)
  • HIPAA audit trail automatic (every operation logged)
  • Scope encoded cryptographically (physician confidence + regulatory defense)
  • Zero liability for accidental data modification (agent cannot modify)

Get started: Scope permissions in certs →

AML & Fraud-Detection Agents

Catch compromised agents before the breach completes

Document-Review Agents

Chain of custody for every file parsed in an M&A data room

On this page

Diagnostic Assistants on EHRAI Without Write AccessThe ChallengeThe SolutionReal WorkflowRegulatory OutcomeBusiness ImpactFor Your Healthcare System