2. Telemedicine
Telemedicine refers to
the use of
Telecommunications
and medical
informatics to provide
electronically
delivered healthcare
services.
Source: Telemedicine. A Guide to Assessing Telecommunication in Health Care.
Washington, DC: National Academy Press, 1996.
3. Authentication
• Username Password
is sufficient but must
also be strengthened.
• Trust between the
machine that is
sending the
information and the
one receiving it.
4. Encryption
• Data is encrypted for
stronger transport
security
• This aims to add a
safety net in case
data is accessed by
unauthorized people
via internet or any
other gateway.
5. Authorization
• Varying levels of data
access shall be given
to specific people
• Different levels shall
be provided so that
specific patient info
will be available to
specific healthcare
providers
6. Access Control
• Access control is achieved
once authorization levels
are defined.
• This gives a more defined
system support access
• It could even go as far as
giving VIP access to other
patients and giving them
capability to edit data
7. Auditing
• Once a machine accesses
the system it records and
logs vital information
• Recorded information
includes: user, IP address,
patient, data type, access
type, and time of access.
• This is one way to monitor
inappropriate access
8. Physical Security
• Aside from systems
gateway; access also to the
actual server unit is possible
• Site must be staffed 24
hours per day.
• Controlled locks and
biometrics security is
recommended.
• Unauthorized use of flash
drives or any storage device
must be strictly monitored
• Also, software installation
must be avoided
9. Important Things to Remember
• Security in IT is never absolute; all
factors of must be considered
• There is always a relative risk that is
involved; practice approach is a must
• Patient Security and Confidentiality is
a priority most especially in the field
of healthcare
