Assessing HIPAA Compliance of Open Source Electronic Health Record Applications-Reference-Cited by-同舟云学术

Assessing HIPAA Compliance of Open Source Electronic Health Record Applications

Published:2022-06-03 Issue: Volume: Page:995-1011
ISSN:
Container-title:Research Anthology on Securing Medical Systems and Records
language:
Short-container-title:

Author:

Shahriar Hossain¹,Haddad Hisham M.¹,Farhadi Maryam¹

Affiliation:

1. Kennesaw State University, USA

Abstract

Electronic health record (EHR) applications are digital versions of paper-based patient health information. EHR applications are increasingly being adopted in many countries. They have resulted in improved quality in healthcare, convenient access to histories of patient medication and clinic visits, easier follow up of patient treatment plans, and precise medical decision-making process. The goal of this paper is to identify HIPAA technical requirements, evaluate two open source EHR applications (OpenEMR and OpenClinic) for security vulnerabilities using two open-source scanner tools (RIPS and PHP VulnHunter), and map the identified vulnerabilities to HIPAA technical requirements.

Publisher

IGI Global

Reference45 articles.

1. Allan, D. (2008). Web application security: automated scanning versus manual penetration testing. IBM Rational Software, Somers, White Paper.

2. Anti-Subversion Software. (2019). https://en.wikipedia.org/wiki/Anti-Subversion_Software

3. Arthur, W. (2016). Control-Flow Security. https://web.eecs.umich.edu/~taustin/papers/Arthur_dissertation.pdf

4. One Technique is Not Enough: A Comparison of Vulnerability Discovery Techniques

5. Bowers, D. (2011). The Health Insurance Portability and Accountability Act: is it really all that bad? Accessed from https://www.ncbi.nlm.nih.gov/pmc/articles/PMC1305898/