Samy, Ganthan Narayana and Ahmad, Rabiah and Ismail, Zuraini (2010) Threats to health information security. Journal of Information Assurance and Security, 5 (2). pp. 1-6. ISSN 1554-1010
![[img]](http://eprints.utm.my/style/images/fileicons/text_html.png) |
HTML
- Published Version
9kB |
Abstract
The purpose of this paper is to identify the threats that exist in Healthcare Information Systems (HIS). The study has been carried out in three different departments namely in Information Technology Department (ITD), Medical Record Department (MRD) and X-Ray Department in one of the leading government supported hospital in Malaysia. The hospital was equipped with Total Hospital Information System (THIS) environment. The data were collected using in-depth structured interviews. The study identified 22 types of threats according to major threat categories based on ISO/IEC 27002 (ISO 27799:2008). The result shows the most critical threat for the THIS is the power failure. In addition acts of human error or failure threat also show high frequency of occurrence. The contribution of the paper will be categorization of threats in HIS and can be used to design and implement effective security systems and policies in healthcare setting.
| Item Type: | Article |
|---|---|
| Uncontrolled Keywords: | threats, healthcare information systems (HIS), information security, risk analysis |
| Subjects: | Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
| Divisions: | Advanced Informatics School |
| ID Code: | 39156 |
| Deposited By: | INVALID USER |
| Deposited On: | 25 Jun 2014 04:06 |
| Last Modified: | 15 Feb 2017 01:59 |
Repository Staff Only: item control page
