Security and confidentiality in health care informatics

Al-Salqan, Y.Y.; Jagannathan, V.; Davis, Tad; Zhang, Nich; Reddy, Y. V. Ramana

doi:10.1145/270152.270180

Cited by 3 publications

(1 citation statement)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These investigations stem from organizing the framework of healthcare networks to allow for secure transfer of EMRs [7,[10][11][12] to the specific detail in creating an HL7 web-based application to view the patient's medical and billing information [3].…”

Section: Related Workmentioning

confidence: 99%

Secure authentication and authorization design for rural‐based healthcare institutions

Hembroff

Cai

2008

Security Comm Networks

View full text Add to dashboard Cite

According to National Rural Health Association, the rural-based healthcare institutions serve approximately a quarter of the U.S. population. The Health Insurance Portability and Accountability Act (HIPAA) mandates that patient information can only be accessed by authorized personnel. The complexity of this task increases significantly when associated with a rural healthcare network due to a combination of factors, including economic disadvantages, educational shortcomings, inadequate infrastructure, lack of support by legislators, the sheer isolation of living in remote rural areas, and frequent needs to share patient's information across hospitals.This paper analyzes a rural healthcare network in Michigan's Upper Peninsula and introduces the Security for Clinical Authorization and Authentication on Health Care Networks (SCAAHN) system. A centralized repository is configured to store health level 7 (HL7) data from various healthcare organizations affiliated with the common network. Standard Electronic Medical Records (EMRs) containing patient's information can be securely accessed by authenticated and authorized personnel throughout the healthcare network. The preliminary results indicate that SCAAHN within the rural healthcare architecture has enhanced the authentication and authorization of patient records, and provided secure access to patient's information via a web portal interface.

show abstract