Affiliation:
1. University of Connecticut, USA
2. University of Connecticut Health Center, USA
Abstract
In health care, patient information of interest to health providers, researchers, public health researchers, insurers, patients, etc., is stored in different locations via electronic media and/or hard-copy formats. All potential users need electronic access to health information technology systems such as: electronic health records, personal health records, patient portals, and ancillary systems such as imaging, laboratory, pharmacy, etc. Controlling access to information from multiple systems requires granularity levels of privileges ranging from one patient to a cohort to an entire population. In this paper, we present a viewpoint of the state of secure digital health care in the United States, focusing on the resources that need to be protected as dictated by legal entities and regulations, the available approaches in the present state-of-the art, and, the potential needs for the future of security for digital health care. By utilizing a real world scenario, the authors explore the limitations of health information exchange in the United States, and present one possible architecture for secure digital health care that builds on existing technology alternatives.
Reference34 articles.
1. Alabdulatif, A., Khalil, I., & Mai, V. (2013). Protection of electronic health records (EHRs) in cloud. Engineering in Medicine and Biology Society (EMBC), 2013 35th Annual International Conference of the IEEE (pp. 4191-4194)
2. Privacy, Confidentiality, and Electronic Medical Records
3. Secure, Obligated and Coordinated Collaboration in Health Care for the Patient-Centered Medical Home.;S.Berhe;AMIA Annual Symposium Proceedings,2010
4. X-GTRBAC: an XML-based policy specification framework and architecture for enterprise-wide access control