[Med-privacy] "Data Hemorrhages in the Health Care Sector"
peter marshall
pwm@comcast.net
Tue, 10 Mar 2009 12:26:26 -0700
Report: False Assurances of Security in Health IT Systems
Dartmouth College business professor Eric Johnson has written a report
called "Data Hemorrhages in the Health Care Sector." The paper
discusses how confidential data flowing from health-care providers
pose financial risks to firms and medical risks to patients. Examining
the consequences including privacy violations, medical fraud, financial
and medical identity theft, the paper characterized the security risk
for a group of health-care organizations using a direct analysis of
leaked files. The analysis demonstrated both a substantial threat and
vulnerability for the health-care sector and as well as the unique
complexity exhibited by the US health-care system. The paper was
presented at the Thirteenth International Conference of International
Financial Cryptography Association. EPIC has urged strong safeguards
in the field of medical privacy.
Eric Johnson, Data Hemorrhages in the Health Care Sector:
http://fc09.ifca.ai/papers/54_Data_Hemorrhages.pdf
EPIC's page on Medical Privacy:
http://epic.org/privacy/medical/
[EPIC]