Study of Out-Of-Hospital Access to HIS System: A Security Perspective

In light of the need for Extramural Hospital Information System (HIS) access through mobile devices outside the hospital, this research analyzes situational information security threats, including the circumstances in which a mobile device may get lost and personal data may be stolen. Moreover, the...

Full description

Saved in:
Bibliographic Details
Published in:Sensors (Basel, Switzerland) Switzerland), 2019-06, Vol.19 (11), p.2628
Main Authors: Chen, Chih-Yung, Hsu, Yi-Chang, Lin, Chang-Ching, Hajiyev, Jeyhun, Su, Chia-Rong, Tseng, Ching-His
Format: Article
Language:English
Subjects:
Algorithms
Authentication
Cell Phone
Computer Security
Confidentiality
dynamic account
encryption card
Health Records, Personal
Hospital Information Systems
Humans
Identity theft
m-health
Mobile communication systems
Privacy
privacy protection
Security management
Smartphones
SMS OTP
Telemedicine
Threat evaluation
user authentication
Citations: Items that this one cites
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In light of the need for Extramural Hospital Information System (HIS) access through mobile devices outside the hospital, this research analyzes situational information security threats, including the circumstances in which a mobile device may get lost and personal data may be stolen. Moreover, the system needs to be implemented in accordance with the regulations. Based on the security threat analysis, it is proposed to use a security control module to provide a security-enabled HIS proxy module, two-way authentication module, and One-Time Password (OTP). The sending module and cryptographic technology computing module with Micro SD encryption card form a set of HIS extension system, which includes the SMS OTP method to simultaneously verify the two-way authentication mechanism of a user and the device that the user owns.
ISSN:1424-8220
1424-8220
DOI:10.3390/s19112628