Universiti Teknologi Malaysia Institutional Repository

Security threats categories in healthcare information systems

Ahmad, Rabiah and Ismail, Zuraini and G., Narayana Samy (2010) Security threats categories in healthcare information systems. Health Informatics Journal, 16 (3). 201 - 209. ISSN 1460-4582

[img] PDF
73Kb

Official URL: http://dx.doi.org/10.1177/1460458210377468

Abstract

This article attempts to investigate the various types of threats that exist in healthcare information systems (HIS). A study has been carried out in one of the government-supported hospitals in Malaysia.The hospital has been equipped with a Total Hospital Information System (THIS). The data collected were from three different departments, namely the Information Technology Department (ITD), the Medical Record Department (MRD), and the X-Ray Department, using in-depth structured interviews. The study identified 22 types of threats according to major threat categories based on ISO/IEC 27002 (ISO 27799:2008). The results show that the most critical threat for the THIS is power failure followed by acts of human error or failure and other technological factors. This research holds significant value in terms of providing a complete taxonomy of threat categories in HIS and also an important component in the risk analysis stage.

Item Type:Article
Uncontrolled Keywords:healthcare information systems HIS, information security, risk analysis, threats
Subjects:Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Divisions:Computer Science and Information System (Formerly known)
ID Code:26663
Deposited By: Liza Porijo
Deposited On:18 Jul 2012 03:57
Last Modified:06 Aug 2012 07:54

Repository Staff Only: item control page