A Survey-Based Analysis of HIPAA Security Requirements
نویسندگان
چکیده
This paper reports on the results of a survey-based investigation into the perceived security requirements held by the U.S. dental schools for their enterprise dental information systems. The U.S. dental schools are faced with the legal requirement to comply with HIPAA which contains provisions that are intended to protect electronic patient information. However it is proving to be a challenge to comply with HIPPA because of the lack of detail in its provisions. Consequently the perceived security requirements held by the dental schools vary. We used a survey-based misuse case analysis to engineer a more detailed set of security requirements. Due to low response rate of the survey the results of this study are not conclusive yet. However we have successfully obtained some promising security requirements that warrant further work in similar direction.
منابع مشابه
New HIPAA rules: a guide for radiology providers.
The Office for Civil Rights issued its long awaited final regulations modifying the HIPAA privacy, security, enforcement, and breach notification rules--the HIPAA Megarule. The new HIPAA rules will require revisions to Notice of Privacy Practices, changes to business associate agreements, revisions to HIPAA privacy and security policies and procedures, and an overall assessment of HIPAA complia...
متن کاملInformation Security Management and Regulatory Compliance in the South African Health Sector
Information security is becoming a part of core business processes in every organization. Companies are faced with contradictory requirements to ensure open systems and accessible information while maintaining high protection standards. In addition, contemporary management of organizations’ information security requires various approaches in different areas, ranging from technology to organizat...
متن کاملA HIPAA strategy for dental schools.
Certain health care organizations, including dental schools, should be readying themselves to comply with the numerous requirements described within the administrative simplification section of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). The intent of administrative simplification is to streamline the management of health care transactions while protecting the priva...
متن کاملHIPAA Privacy/Security Rules: where we've been and where we are going. Updates from the HITECH Act to dramatically impact HIPAA privacy/security.
When HIPAA was passed, many applauded the portability aspects of HIPAA that allowed for continuing healthcare coverage for individuals who lost their jobs and attendant healthcare insurance. But few back in 1996 anticipated the dramatic impact that HIPAA would have later on the privacy and security of health information in the United States. This article discusses not only the history of HIPAA ...
متن کاملDesign of RSA-CA Based E-Health System for Supporting HIPAA Privacy-Security Regulations
The privacy and the security regulations are two essential requirements of Health Insurance Portability and Accountability Act (HIPAA), recognized by US congress in 1996 as the US Federal Law followed by global e-health industry, in the protection of healthcare privacy. In this paper, a certificate authority (CA) based duality solution has been proposed to fulfill the HIPAA privacy and security...
متن کامل