searching Health Collection Change databases

Image of Publication

  • Peer Reviewed
  • Citation only


about this publication

A Question of Confidence, not a Question of Trust. Better Data Confidentiality Protection is Necessary

HIC 2004: Proceedings

Abstract: The HealthConnect and the NSW EHR*Net initiatives aim at implementing computer-based systems very different from those implemented in the past in healthcare institutions. The new systems will have to satisfy more demanding security and confidentiality requirements in order to attract participants who would be confident that their sensitive information is confidential. Yet, the system architecture requirements documents do not adequately provide for confidentiality protection by addressing only access control and selected transmission security issues while leaving the threat to confidentiality arising out of long term data storage unaddressed. This minimises the likelihood that an informed person will be willing to participate in either system, therefore minimises the likelihood of either system achieving their stated goals. It is proposed that encrypting confidential information at the point of entry into the system, maintaining it encrypted whilst within the system and only decrypting it at the point of authorised use, combined with separation of data storage, and encryption key and access control management, will demonstrably address the major weakness in the system architecture and facilitate realisation of other business and technical benefits.

To cite this article: Czapski, Michael. A Question of Confidence, not a Question of Trust. Better Data Confidentiality Protection is Necessary [online]. In: Walduck, Karin (Editor); Cesnik, Branko (Editor); Chu, Stephen (Editor). HIC 2004: Proceedings. Brunswick East, Vic.: Health Informatics Society of Australia, 2004: 120-126. Availability: <http://search.informit.com.au/documentSummary;dn=886040142207565;res=IELHEA> ISBN: 0975101315. [cited 29 Sep 16].

Personal Author: Czapski, Michael; Source: In: Walduck, Karin (Editor); Cesnik, Branko (Editor); Chu, Stephen (Editor). HIC 2004: Proceedings. Brunswick East, Vic.: Health Informatics Society of Australia, 2004: 120-126. Document Type: Conference Paper, Research ISBN: 0975101315 Subject: Computer networks; Information technology; Medical records; Privacy; Confidential communications; Wireless communication systems; Identifier: Encryption; Electronic health records (EHR) Affiliation: (1) SeeBeyond Pty. Ltd., Australia.

Database: Health Collection