Advances and current state of the security and privacy in electronic health records: Survey from a social perspective

Journal of Medical Systems

Volumn 36, Issue 5, 2012, Pages 3019-3027

  Tejero, Antonio ^a   De La Torre, Isabel ^a  

^a UNIVERSITY OF VALLADOLID   (Spain)

Author keywords

E health; EHR; Privacy; Security

Indexed keywords

ACCESS TO INFORMATION; ARTICLE; COMPUTER SECURITY; CONFIDENTIALITY; ELECTRONIC MEDICAL RECORD; HEALTH SURVEY; HUMAN; PUBLICATION; INTERNET; LEGAL ASPECT; ORGANIZATION AND MANAGEMENT; PATIENT RIGHT; STANDARD;

COMPUTER SECURITY; CONFIDENTIALITY; ELECTRONIC HEALTH RECORDS; HUMANS; INTERNET; PATIENT ACCESS TO RECORDS;

EID: 84867308923     PISSN: 01485598     EISSN: 1573689X     Source Type: Journal    
DOI: 10.1007/s10916-011-9779-x     Document Type: Article

References (26)

1. Häyrinen, K.; Saranto, K.; Nykänen, P.; Definition, structure, content, use and impacts of electronic health records: A review of the research literature. Int. J. Med. Inform. 77:291-304, 2008.
2. Slamanig, D.; Stingl, C.; Electronic health records: An enhanced security paradigm to preserve patient's privacy. Communications in Computer and Information Science 52:369-380, 2010.
3. Sadan, B.; Patient data confidentiality and patient rights. Int. J. Med. Inform. 62:41-49, 2001.
4. Huang, L.; Chu, H.; Lien, C.; Hsiao, C.; Kao, T.; Privacy preservation and information security protection for patients' portable electronic health records. Comput. Biol. Med. 39(9):743-750, 2009.
5. Sucurovic, S.; Simic, D.; An approach to access control in electronic health record. J. Med. Syst. 34:659-666, 2010.
6. Jin, J.; Ahn, G.; Hu, H.; Covington, M. J.; Zhang, X.; Patient-centric authorization framework for electronic healthcare services. Comput. Secur. 30:116-127, 2011.
7. Steele, R.; Min, K. Role-based access to portable personal health records. Management and Service Science, pp. 1-4, 2009.
8. Guo, X.; Zhuang, T.; A region-based lossless watermarking scheme for enhancing security of medical data. J. Digit. Imaging 22(1):53-64, 2009.
9. Alanazi, H. O.; Jalab, H. A.; Alam, G. M.; Zaidan, B. B.; Zaidan, A. A.; Securing electronic medical records transmissions over unsecured communications: An overview for better medical governance. J. Med. Plants Res. 4(19):2059-2074, 2010.
10. Van der Lindena, H.; Kalrab, D.; Hasmanc, A.; Talmon, J.; Inter-organizational future proof EHR systems: A review of the security and privacy related issues. Int. J. Med. Inform. 78:141-160, 2009.
11. Dorr, D.; Bonner, L. M.; Cohen, A. N.; Shoai, R. S.; Perrin, R.; Chaney, E.; Young, A. S.; Informatics systems to promote improved care for chronic illness: A literature review. J. Am. Med. Inform. Assoc. 14:156-163, 2007.
12. Law 41/2002 of November 14, basic regulator of the patient's autonomy and rights and obligations of clinical information and documentation matters. BOE 274, sec. 1, pp. 40126-40132.
13. Law 15/1999 of December 13, of the Protection of Personal Data. BOE 298, sec. 1, pp. 43088-43099.
14. U.S. Department of Health & Human Services, HIPAA Administrative Simplification Statute and Rules, www.hhs.gov, last visit March 6 2011.
15. Nahra, K. J.; HIPAA security enforcement is here. IEEE Secur. Priv. 6:70-72, 2008.
16. McGuire, A. L.; Fisher, R.; Cusenza, P.; Hudson, K.; Rothstein, M. A.; McGraw, D.; Matteson, S.; Glaser, J.; Henley, D. E.; Confidentiality, privacy, and security of genetic and genomic test information in electronic health records: Points to consider. Genet. Med. 10(7):495-499, 2008.
17. Massey, A. K.; Otto, P. N.; Hayward, L. J.; Antón, A. I.; Evaluating existing security and privacy requirements for legal compliance. Secur. Requir. Eng. 15:119-137, 2010.
18. Riedl, B.; Grascher, V. Assuring integrity and confidentiality for pseudonymized health data. Proceedings of ECTI-CON 2010, pp. 502-506, 2010.
19. Riedl, B.; Grascher, V.; Fenz, S.; Neubauer, T. Pseudonymization for improving the Privacy in e-Health Applications. Hawaii International Conference on System Sciences, pp. 255-255, 2008.
20. Neubauer, T.; Heurix, J.; A methodology for the pseudonymization of medical data. Int. J. Med. Inform. 80(3):190-204, 2011.
21. Daglish, D.; Archer, N. Electronic personal health record systems: A brief review of privacy, security, and architectural issues. Privacy, Security and Trust and the Management of e-Business, pp. 110-120, 2009.
22. Hiller, J.; McMullen, M. S, Chumney, W. M.; Baumer, D. L. Privacy and security in the implementation of health information technology (Electronic Health Records): U.S. and EU Compared. J. Sci. Technol. 1: 2011.
23. Jha, A. K.; Bates, D. W.; Jenter, C.; Orav, E. J.; Zheng, J.; Cleary, P.; Simon, S. R.; Electronic health records: Use, barriers and satisfaction among physicians who care for black and Hispanic patients. J. Eval. Clin. Pract. 15:158-163, 2009.
24. Srinivasan, U.; Datta, G.; Hons, M. S.; Hons, B. E. Personal Health Record (PHR) in a Talisman. International Conference on e-Health Networking, Application and Services, pp. 277-279, 2007.
25. Cheong, H. J.; Shin, N. Y.; Joeng, Y. B. Improving Korean service delivery system in health care: Focusing on national E-health system. International Conference on eHealth, Telemedicine, and Social Medicine, pp. 263-268, 2009.
26. Farzandipour, M.; Sadoughi, F.; Ahmadi, M.; Karimi, I.; Security requirements and solutions in electronic health records: Lessons learned from a comparative study. J. Med. Syst. 34:629-642, 2010.