Healthcare Data Breaches: Implications for Digital Forensic Readiness

Chernyshev, Maxim; Zeadally, Sherali; Baig, Zubair A.

doi:10.1007/s10916-018-1123-2

Cited by 83 publications

(49 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Health systems are encouraged to implement auditing systems that can capture digital forensic evidence. 22 Management best practice includes planning, training, incentives, and penalties to prevent breaches. 23 Security best practice includes locking up physical devices, data encryption, and stronger passwords.…”

Section: F I G U R E 1 Timeline (A) and Conceptual Model (B)mentioning

confidence: 99%

See 1 more Smart Citation

Data breach remediation efforts and their implications for hospital quality

Choi

Johnson

Lehmann

2019

Health Services Research

View full text Add to dashboard Cite

Objective To estimate the relationship between breach remediation efforts and hospital care quality. Data Sources Department of Health and Human Services’ (HHS) public database on hospital data breaches and Medicare Compare's public data on hospital quality measures for 2012‐2016. Materials and Methods Data breach data were merged with the Medicare Compare data for years 2012‐2016, yielding a panel of 3025 hospitals with 14 297 unique hospital‐year observations. Study Design The relationship between breach remediation and hospital quality was estimated using a difference‐in‐differences regression. Hospital quality was measured by 30‐day acute myocardial infarction mortality rate and time from door to electrocardiogram. Principal Findings Hospital time‐to‐electrocardiogram increased as much as 2.7 minutes and 30‐day acute myocardial infarction mortality increased as much as 0.36 percentage points during the 3‐year window following a breach. Conclusion Breach remediation efforts were associated with deterioration in timeliness of care and patient outcomes. Thus, breached hospitals and HHS oversight should carefully evaluate remedial security initiatives to achieve better data security without negatively affecting patient outcomes.

show abstract

Section: F I G U R E 1 Timeline (A) and Conceptual Model (B)mentioning

confidence: 99%

“…Following a breach, data handling and access privilege policies typically change. Health systems are encouraged to implement auditing systems that can capture digital forensic evidence . Management best practice includes planning, training, incentives, and penalties to prevent breaches .…”

Section: Introductionmentioning

confidence: 99%

Data breach remediation efforts and their implications for hospital quality

Choi

Johnson

Lehmann

2019

Health Services Research

View full text Add to dashboard Cite

show abstract

“…Since, there are various sources of data, the size of data may also increase as the number of information sources increase. Each of these data sources can be subject to breaches; therefore, each source is responsible for the handling and management of the data they produce [91]. Also, the sources need to understand each other's data.…”

Section: A Patient Datamentioning

confidence: 99%

A Survey on Blockchain-Based Self-Sovereign Patient Identity in Healthcare

2020

View full text Add to dashboard Cite

Convergence of physical and digital identity and integration of various individual records, such as patient data, into a united repository remains a serious challenge. On one hand, collecting relevant data can help clinicians, specialists and healthcare service providers to facilitate care for patients. On the other hand, Self-Sovereign identity and the right to control personal data comes into question, because patients do not handle their data explicitly. Distributed Ledger Technology (DLT) is a novel method which would allow to securely record time-stamped data and enable patient-driven health and identity records. In this paper, we review the state-of-the-art in Blockchain (BC)-based self-sovereignty and patient data records in healthcare. Our motivation is to investigate the potential of BC technology for use in the patient data and identity management. As a distributed decentralized technology, BC can be very beneficial, giving patients control over their own data and self-sovereign identity. To the extent of our knowledge, there is no literature covering the same concerns. More specifically, the focus is on solutions that aim the realization of holistic BC-based Electronic Health Records (EHR) and Patient Health Records (PHR). EHR and PHR are used to record patient data, such as the doctor's notes upon a visit and radiology images. Hence, they include critical information regarding patient's privacy and identity. Therefore, development of pure decentralized Healthcare Information Systems (HIS) is a great challenge in terms of architectural and technical structure of the systems. Designing robust and reliable EHR and PHR, which represent the foundation of many other healthcare services, relies on carefully finding the balance in a trade-off between many factors, such as level of decentralization, privacy, scalability and data throughput. In this paper, we review the state-of-the-art and provide an analysis on the design trade-offs.

show abstract

“…The log provides information about who all accessed the data (e.g.,, the doctor, nurse, secretarial staff ), and when. This may be helpful to trace unauthorized access to data, 27 especially in the situations of data hacking. 5.…”

Section: Handling Of Data and Its Importancementioning

confidence: 99%

Data Handling for E-Mental Health Professionals

Grover

Sarkar

Gupta

2020

Indian Journal of Psychological Medicine

View full text Add to dashboard Cite

Digital psychiatry and e-mental health have proliferated and permeated vastly in the current landscape of mental health care provision. The COVID-19 crisis has accelerated this digital transformation, and changes that usually take many years to translate into clinical practice have been implemented in a matter of weeks. These have outpaced the checks and balances that would typically accompany such changes, which has brought into focus a need to have a proper approach for digital data handling. Health care data is sensitive, and is prone to hacking due to the lack of stringent protocols regarding its storage and access. Mental health care data need to be more secure due to the stigma associated with having a mental health condition. Thus, there is a need to emphasize proper data handling by mental health professionals, and policies to ensure safeguarding patient’s privacy are required. The aim of useful, free, and fair use of mental health care data for clinical, business, and research purposes should be balanced with the need to ensure the data is accessible to only those who are authorized. Systems and policies should be in place to ensure that data storage, access, and disposal are systematic and conform to data safety norms.

show abstract

Healthcare Data Breaches: Implications for Digital Forensic Readiness

Cited by 83 publications

References 17 publications

Data breach remediation efforts and their implications for hospital quality

Data breach remediation efforts and their implications for hospital quality

A Survey on Blockchain-Based Self-Sovereign Patient Identity in Healthcare

Data Handling for E-Mental Health Professionals

Contact Info

Product

Resources

About