Abstract
ABSTRACTHealth-related data include not only the patient’s personal information, but also specific information about the patient health problems, supplementary diagnostic examination results, and much more. All this information is extremely sensitive and should only be accessed by the proper entities and actors, for special specific purposes. Described herein is an approach to address security and privacy of health-related data based on rights management technologies, with an architecture to minimize security risks and privacy conerns. This approach consists of the reutilisation of an open-source and open-specifications rights management system, and designing and adapting the necessary components to address the specific security and privacy requirements that must be faced when managing health and patient data.
Highlights
The evolution of Information and Communications Technology (ICT) has created opportunities for the development of new products and services, optimisation of organisational processes, and collection, integration and better interaction with large amounts of data from multiple sources
Information about our interactions with hospitals, clinics, doctors, hospital staff, exams and exam results, are all part of some databases on some remotely located datacentres. This represents an important step in the improvement of the healthcare services, allowing them to provide a better service to patients through the processing and analysis of large amounts of data, on the other side, the digitalisation of all this data represents a threat to confidentiality and privacy
Cybercriminals are increasingly targeting this type of information, causing data breaches that provoke financial losses and affect the reputation of entities, and expose in the wild private information that might lead to serious menaces such as identity theft attacks
Summary
The evolution of Information and Communications Technology (ICT) has created opportunities for the development of new products and services, optimisation of organisational processes, and collection, integration and better interaction with large amounts of data from multiple sources. A trend that is being followed by the health sector is the continuing systems integration and the migration of data and services to the cloud (Haux, 2006) This is an important change because it affects the direct relation with the information, the way and places where it is stored, and the potential threats that it might be subject to (Juliadotter & Choo, 2015). In a digital world where the benefits from a decentralised and interoperable electronic health information system, can be used to create better processes and provide better health services - a vision of an integrated health information system, completely decentralised, located on the cloud (Nepal, Ranjan, & Choo, 2015) The adequacy of these legislative initiatives with the requirements of this system needs to be aligned (Massey, Otto, & Antón, 2008). The proposal for this system in this paper is based on a rights management system
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
