Topic 6 PPT.pptx

Full Transcript

1

Topic 6. EHM 526 : Special
Topic in E Health
Security
framework for Dr. Muneef
cloud based ALMokhlef
Electronic
Health Record
(EHR) system.
Article
Overview
Health records are an integral
aspect of any Hospital
Management System. With newer
innovations in technology, there
has been a shift in the way of
recording health information. The
Electronic Health Records (EHR)
System is becoming a high-tech
medical management technology
developed for the economic or
emerging economic countries like
India. In a national health
system, the EHR integrates the
Electronic Medical Records (EMR)
in all collaborating hospitals
through different networks.

2
Introduction
Healthcare system of India is one of the
largest and most complex in terms of
providing quality services to the population.
Approximately 1.26 billion people across a
wide range of geographic and socioeconomic
settings are getting benefitted with the
services offered from competent healthcare
professionals. The system involves a
complex network of public and private
service providers, ranging from a single
doctor in rural healthcare centers to
specialized tertiary care institutions.

3
Objective
Due to the mass storage of confidential
patient data, healthcare organizations
are considered as one of the most
targeted sectors by intruders.

4
Method
This paper proposes a security
framework for EHR system, which
takes into consideration the
integrity, availability, and
confidentiality of health records.

5
Results

Figure 8. Proposed solution model for electronic 6

healthcare
Conclusions
Healthcare organizations are considered as one of
the most targeted sectors by intruders to gain
sensitive information for malicious uses. To share
the data among multiple healthcare providers in a
secure manner, EHR reference architecture is
developed, and various attacks and vulnerabilities
have been identified. Potential threats are
identified in the EHR system by using STRIDE
Microsoft threat modeling tool and the amount of
risk posed to the system are calculated using
DREAD. Also, a solution is proposed to mitigate
the threats which includes authentication,
authorization, attribute-based encryption and
access control to provide a safe EHR system.

7
When reading, ask yourself:

(1)What do the author(s) want to know (motivation)?
(2) What did they do (approach/methods)?
(3)Why was it done that way (context within the
field)?
(4) What do the results show (figures and data
tables)?
(5)How did the author(s) interpret the results
(interpretation/discussion)?
(6)What should be done next? (Regarding this last
question, the author(s) may provide some
suggestions in the discussion, but the key is to ask
yourself what you think should come next.).

8
Resources

Ganiga, R., Pai, R. M., & Sinha, R. K. (2020). Security framework
for cloud based electronic health record (EHR)
system. International Journal of Electrical and Computer
Engineering, 10(1), 455.

9