|
Title:
|
SOPHISTICATED METHODS TO PREVENT INSIDER ATTACKS AGAINST PHR SYSTEMS |
|
Author(s):
|
Daniel Slamanig , Christian Stingl |
|
ISBN:
|
978-972-8924-81-2 |
|
Editors:
|
Mário Macedo |
|
Year:
|
2009 |
|
Edition:
|
Single |
|
Keywords:
|
Personal health record, information security, privacy, security analysis, enhanced security properties |
|
Type:
|
Full Paper |
|
First Page:
|
139 |
|
Last Page:
|
146 |
|
Language:
|
English |
|
Cover:
|
|
|
Full Contents:
|
click to dowload 
|
|
Paper Abstract:
|
The high availability of medical data provided by personal health records (PHRs) can enormously improve the quality
and efficiency of medical treatment processes and consequently positively affect patients state of health. However, due
to the sensitive nature of these data, their protection is a critical success factor of PHR systems. It is not debatable that the
misuse of medical data could have massive negative consequences for the involved parties and especially for the patient.
Public knowledge of compromising medical data of a specific person may cause discrimination, stigmatization and could
negatively influence the patients working environment, social environment and even the patients state of health. In this
context it needs to be considered that the occurrence of a single case of misused patients medical data may compromise
the entire PHR system, counteracts its benefits and may even cause that it will not be used at all anymore.
In this paper we will discuss security aspects that need to be taken into consideration in the context of PHR systems and
provide a rigorous security analysis. Moreover, we briefly discuss new methods that can be applied to PHR systems to
counteract the identified threats and thus to establish a very high level of security. These methods solely rely on technical
measures and are not based on any organizational ones. |
|
|
|
|
|
|
