Towards a practical healthcare information security model for healthcare institutions

Dwivedi, A.; Bali, Rajeev K.; Belsis, Meletis A.; Naguib, R.N.G.; Every, Peter; Nassar, N.S.

doi:10.1109/itab.2003.1222486

Cited by 30 publications

(18 citation statements)

References 1 publication

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The implemented system has to be assessed in order to validate that it complies with the functional and security requirements and that it will operate within an acceptable level of residual security [Kissel et al, 2008]. Prior research on implementation in both the healthcare IT and ubiquitous device security has concentrated on the technical aspects of implementation of technologies [Dwivedi, Bali, Belsis, Naguib, et al, 2003;Epstein, Pasieka, Lord, Wong, et al, 1998;Hu and Weaver, 2004;Kardas and Tunali, 2006;Ng et al, 2006].…”

Section: Methodsmentioning

confidence: 99%

Ubiquitous Healthcare Information System: Toward Crossing the Security Chasm

Zafar¹,

Sneha²

2012

CAIS

View full text Add to dashboard Cite

Ubiquitous healthcare information system is increasingly seen as a viable option for reducing the inherent time lag and inaccuracies in the traditional model of healthcare and promoting the delivery and practice of evidence-based healthcare-as and when needed-without any location and time constraints. Although promising, the realization of ubiquitous healthcare information system brings several threats and risks rooted in real-time collection, analysis, storage, transmission, and access of critical medical data. In this research, we address information security concerns pertaining to the paradigm of ubiquitous healthcare information system. To accomplish this we use National Institute for Standards and Technology's (NIST's) system development lifecycle model (SDLC) as the underlying framework to explore the current state of ubiquitous healthcare from the perspective of security. We then leverage the model to propose future research directions in this area. By implementing the NIST's SDLC model in such a manner, we offer a different dynamic of healthcare security that has not been addressed in literature before.

show abstract

Section: Methodsmentioning

confidence: 99%

Ubiquitous Healthcare Information System: Toward Crossing the Security Chasm

Zafar¹,

Sneha²

2012

CAIS

View full text Add to dashboard Cite

show abstract

“…An important aspect to take into account when building the model for the HIV management system is security. Dwivedi et al [58] argued that electronic medical records will only become a reality if security takes a prominent role in design considerations and during implementation. Two of the most promising techniques for incorporating security into any information system are public key infrastructure and biometrics.…”

Section: Methodsmentioning

confidence: 99%

HIV Drug-Resistant Patient Information Management, Analysis, and Interpretation

Singh¹,

Mars²

2012

JMIR Res Protoc

View full text Add to dashboard Cite

IntroductionThe science of information systems, management, and interpretation plays an important part in the continuity of care of patients. This is becoming more evident in the treatment of human immunodeficiency virus (HIV) and acquired immune deficiency syndrome (AIDS), the leading cause of death in sub-Saharan Africa. The high replication rates, selective pressure, and initial infection by resistant strains of HIV infer that drug resistance will inevitably become an important health care concern. This paper describes proposed research with the aim of developing a physician-administered, artiﬁcial intelligence-based decision support system tool to facilitate the management of patients on antiretroviral therapy.MethodsThis tool will consist of (1) an artificial intelligence computer program that will determine HIV drug resistance information from genomic analysis; (2) a machine-learning algorithm that can predict future CD4 count information given a genomic sequence; and (3) the integration of these tools into an electronic medical record for storage and management.ConclusionThe aim of the project is to create an electronic tool that assists clinicians in managing and interpreting patient information in order to determine the optimal therapy for drug-resistant HIV patients.

show abstract

“…Healthcare IT security research also has focused predominantly on the technical aspects of healthcare IT system implementation [Dwivedi, Bali, Belsis, Naguib, et al, 2003;Epstein, Pasieka, Lord, Wong, et al, 1998;Hu and Weaver, 2004;Kardas and Tunali, 2006;Ng, Sim, and Tan, 2006]. Some work also has been done in the area of maintenance of healthcare IT systems for security reasons.…”

Section: Information Security In Healthcarementioning

confidence: 99%

Security Risk Management in Healthcare: A Case Study

Zafar

Clark

2014

CAIS

View full text Add to dashboard Cite

We investigated the effectiveness of a security risk management (SRM) program at a large healthcare institution. Using a survey, we explored how nine critical success factors (CSFs): executive management support (EMS), organizational maturity (OM), open communication (OC), risk management stakeholders (RMS), team member empowerment (TME), holistic view for an organization (HVO), security maintenance (SM), corporate security strategy (CSS), and human resource development (HRD) impacted SRM effectiveness. Implementing a mixed research method, we found that employees had a positive perception of SRM toward all CSFs but one-team member empowerment (TME). Both medical professionals and staff had a negative perception of how TME was implemented at the institution.

show abstract

Towards a practical healthcare information security model for healthcare institutions

Cited by 30 publications

References 1 publication

Ubiquitous Healthcare Information System: Toward Crossing the Security Chasm

Ubiquitous Healthcare Information System: Toward Crossing the Security Chasm

HIV Drug-Resistant Patient Information Management, Analysis, and Interpretation

Security Risk Management in Healthcare: A Case Study

Contact Info

Product

Resources

About