Skip to main content
Erschienen in: Journal of Medical Systems 4/2010

01.08.2010 | Original Paper

Security Requirements and Solutions in Electronic Health Records: Lessons Learned from a Comparative Study

verfasst von: Mehrdad Farzandipour, Farahnaz Sadoughi, Maryam Ahmadi, Iraj Karimi

Erschienen in: Journal of Medical Systems | Ausgabe 4/2010

Einloggen, um Zugang zu erhalten

Abstract

A growing capacity of information technologies in collection, storage and transmission of information in unprecedented amounts has produced significant problems about the availability of wide limit of the consumers of Electronic Health Records of Patients. With regard to the existence of many approaches to developing Electronic Health Records, the basic question is what kind of Model is suitable for the guarantee of the security of Electronic Health Records? The present study is a descriptive–comparative investigation conducted in Iran in 2007, along with comparisons made Electronic health records information security requirements of Australia, Canada, England and U.S.A with. The research was based on the study of texts such as articles, library’s books and journals and reliable websites from 1992 to 2006. Based on the collected data, a primary Model was designed. The Delphi Technique was offered to evaluate the questionnaire and final Model was designed and proposed. Australia, Canada, England and U.S.A have requirements related to organizing information security, classifying and controlling information asset, security of human resources, environmental and physical security, Operational and communication management security, information access control security and development and Maintenance security of Electronic Health Records information systems. In the U.S.A, the above security requirements are presented in administrative, Physical and Technical safeguards. Based on the research findings, a comprehensive model of electronic health record security requirements in seven pivots is presented for Iran. This model is a collection of EHR security requirements from studied countries. The studied countries are solely subject to part of elements of this model. The suggested model is different from the ones used in other countries in some respects and is recommended for application in Iran.
Literatur
2.
Zurück zum Zitat Lyons, R., Payne, C., McCabe, M., and Fielder, C., Legibility of doctor’s hand writing: quantitative comparative study. BMJ. 317:863–864, 1998. Lyons, R., Payne, C., McCabe, M., and Fielder, C., Legibility of doctor’s hand writing: quantitative comparative study. BMJ. 317:863–864, 1998.
4.
Zurück zum Zitat Aspen Reference Group, Health information management manual, 1st ed. Aspen: Maryland, 1999, p. 5:1. Aspen Reference Group, Health information management manual, 1st ed. Aspen: Maryland, 1999, p. 5:1.
6.
Zurück zum Zitat Zahedifar, R., Study rate of respect for patients Rights in Medical Records Units of Isfahan University of Medical Sciences [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences, 2002. Zahedifar, R., Study rate of respect for patients Rights in Medical Records Units of Isfahan University of Medical Sciences [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences, 2002.
7.
Zurück zum Zitat Salahi, M., An Investigation on Conditions of Storage and Retrieval of Patients’ Medical Records in Teaching Hospitals of Iran University of Medical Sciences and Their Comparison with National Standards and Standards in the US. [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences, 1998. Salahi, M., An Investigation on Conditions of Storage and Retrieval of Patients’ Medical Records in Teaching Hospitals of Iran University of Medical Sciences and Their Comparison with National Standards and Standards in the US. [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences, 1998.
10.
Zurück zum Zitat Bitaraf, E., Riazi, H., and Fathi Roodsari, B., Comparative study of Electronic Health in the word, 2/2 ed. Ministry of Health and Medical Education: Tehran, 2007, p. 398. Bitaraf, E., Riazi, H., and Fathi Roodsari, B., Comparative study of Electronic Health in the word, 2/2 ed. Ministry of Health and Medical Education: Tehran, 2007, p. 398.
11.
Zurück zum Zitat Riazi, H., Fathi Roodsari, B., and Bitaraf, E., Electronic health record, concepts, standards and development approaches, 1st ed. Ministry of Health, and Medical education: Tehran, 2007, p. 125. Riazi, H., Fathi Roodsari, B., and Bitaraf, E., Electronic health record, concepts, standards and development approaches, 1st ed. Ministry of Health, and Medical education: Tehran, 2007, p. 125.
15.
Zurück zum Zitat Commonwealth Department of Health and Aged Care [Internet], The benefits and difficulties of introducing a national approach to electronic health records in Australia; 2002 April-[cited 2006]. Available from: http://www.health.gov.au. Commonwealth Department of Health and Aged Care [Internet], The benefits and difficulties of introducing a national approach to electronic health records in Australia; 2002 April-[cited 2006]. Available from: http://​www.​health.​gov.​au.
18.
Zurück zum Zitat Behnam, S., A Comparative Study of Accessibility levels and confidentiality of Medical Records in Selected Countries [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences; 2005. Behnam, S., A Comparative Study of Accessibility levels and confidentiality of Medical Records in Selected Countries [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences; 2005.
20.
Zurück zum Zitat Department of Health and Human Services [Internet]. 45CFRparts 160,162 and 164 Health Insurance Reform: security standard; Final Rule; 2003 February-[cited 2009]. Available from: http://www.hipaa.org. Department of Health and Human Services [Internet]. 45CFRparts 160,162 and 164 Health Insurance Reform: security standard; Final Rule; 2003 February-[cited 2009]. Available from: http://​www.​hipaa.​org.
24.
Zurück zum Zitat Mohammad pour A. A Comparative Study on the Hospital Standards of Ministry of Health and International Standards of Joint Commission on Accreditation of Hospital [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences; 2006. Mohammad pour A. A Comparative Study on the Hospital Standards of Ministry of Health and International Standards of Joint Commission on Accreditation of Hospital [Thesis]. Medical Information Management Faculty, Tehran: Iran University of Medical Sciences; 2006.
26.
Zurück zum Zitat Schaectel, D., How to build safety management system, 1st ed. Professional Safety: USA, 1997. Schaectel, D., How to build safety management system, 1st ed. Professional Safety: USA, 1997.
Metadaten
Titel
Security Requirements and Solutions in Electronic Health Records: Lessons Learned from a Comparative Study
verfasst von
Mehrdad Farzandipour
Farahnaz Sadoughi
Maryam Ahmadi
Iraj Karimi
Publikationsdatum
01.08.2010
Verlag
Springer US
Erschienen in
Journal of Medical Systems / Ausgabe 4/2010
Print ISSN: 0148-5598
Elektronische ISSN: 1573-689X
DOI
https://doi.org/10.1007/s10916-009-9276-7

Weitere Artikel der Ausgabe 4/2010

Journal of Medical Systems 4/2010 Zur Ausgabe