Threat Modeling for Electronic Health Record Systems

被引:15
作者
Almulhem, Ahmad [1 ]
机构
[1] King Fahd Univ Petr & Minerals, Dept Comp Engn, Dhahran 31261, Saudi Arabia
来源
JOURNAL OF MEDICAL SYSTEMS | 2012年 / 36卷 / 05期
关键词
Electronic health record; EHR; Electronic medical record; EMR; Attack tree; Threat model;
D O I
10.1007/s10916-011-9770-6
中图分类号
R19 [保健组织与事业(卫生事业管理)];
学科分类号
摘要
The security of electronic health record (EHR) systems is crucial for their growing acceptance. There is a need for assurance that these records are securely protected from attacks. For a system as complex as an EHR system, the number of possible attacks is potentially very large. In this paper, a threat modeling methodology, known as attack tree, is employed to analyze attacks affecting EHR systems. The analysis is based on a proposed generic client-server model of EHR systems. The developed attack tree is discussed along with some system properties that enable quantitative and qualitative analysis. A list of suggested countermeasures are also highlighted.
引用
收藏
页码:2921 / 2926
页数:6
相关论文
共 19 条
[1]  
Anderson R, 1996, BRIT MED J, V312, P109
[2]   A security policy model for clinical information systems [J].
Anderson, RJ .
1996 IEEE SYMPOSIUM ON SECURITY AND PRIVACY, PROCEEDINGS, 1996, :30-43
[3]  
[Anonymous], 2005, HLTH INFORM ELECT HL
[4]  
[Anonymous], 2011, EMR AD MOD
[5]  
[Anonymous], 2001, CMUSEI2001TN001
[6]  
[Anonymous], 1994, Fundamentals of Computer Security Technology
[7]  
[Anonymous], 2010, PACS and imaging informatics: Basic Principles and Applications
[8]   Privacy, confidentiality, and electronic medical records [J].
Barrows, RC ;
Clayton, PD .
JOURNAL OF THE AMERICAN MEDICAL INFORMATICS ASSOCIATION, 1996, 3 (02) :139-148
[9]  
Beale T, 2005, Yearb Med Inform, P301
[10]  
Dierks T., 2008, RFC 5246: The transport layer security (TLS) protocol version 1.2
12