Privacy Engineering: A Health Privacy Risk Model
نویسندگان
چکیده
Health institutions have realized the importance of privacy engineering that focuses on development of guidelines, practices and models for the protection of patients’ privacy. However, due to the intricate healthcare systems with transitive health workflows, the processing of patient information in one setting may be more problematic than that in another. As a solution to this problem, we deconstruct the complex transitive healthcare system into individual activity sub-systems, and develop an inter-organizational privacy risk model that facilitates assessing privacy risk in individual activity sub-systems within the transitive health information workflows. This research contributes to privacy engineering by demonstrating how the privacy risk model can be utilized to mitigate the risks to patient information.
منابع مشابه
Analyzing Tools and Algorithms for Privacy Protection and Data Security in Social Networks
The purpose of this research, is to study factors influencing privacy concerns about data security and protection on social network sites and its’ influence on self-disclosure. 100 articles about privacy protection, data security, information disclosure and Information leakage on social networks were studied. Models and algorithms types and their repetition in articles have been distinguished a...
متن کاملGame-Based Cryptanalysis of a Lightweight CRC-Based Authentication Protocol for EPC Tags
The term "Internet of Things (IoT)" expresses a huge network of smart and connected objects which can interact with other devices without our interposition. Radio frequency identification (RFID) is a great technology and an interesting candidate to provide communications for IoT networks, but numerous security and privacy issues need to be considered. In this paper, we analyze the security and ...
متن کاملTraceability improvements of a new RFID protocol based on EPC C1 G2
Radio Frequency Identification (RFID) applications have spread all over the world. In order to provide their security and privacy, researchers proposed different kinds of protocols. In this paper, we analyze the privacy of a new protocol, proposed by Yu-Jehn in 2015 which is based on Electronic Product Code Class1 Generation 2 (EPC C1 G2) standard. By applying the Ouafi_Phan privacy model, we s...
متن کاملCombining Privacy and Security Risk Assessment in Security Quality Requirements Engineering
Security risk assessment identifies the threats to systems, while privacy risk assessment identifies data sensitivities in systems. The Security Quality Requirements Engineering (SQUARE) method is used to identify software security issues in the early stages of the development lifecycle. We propose combining the existing security risk assessment techniques in SQAURE with the Privacy Impact Asse...
متن کاملAddressing Early Life Cycle Privacy Risk
This paper adapts System-Theoretic Early Concept Analysis (STECA), an instrumental safety risk management technique, for privacy to better identify and address privacy risks early in the engineering process. The technique, STECAPriv, aims to infer a nominal functional privacy control structure based on a conceptual system description and privacy-related system behavioral constraints. Model-base...
متن کامل