Authors: Patricia A.H. Williams
Addresses: School of Computer and Information Science, Edith Cowan University, 100 Joondalup Drive, Joondalup, WA 6027, Australia
Abstract: Practical application of security measures severely hampers the level of security afforded to medical data in Australia. Whilst the reasons for medical data security are widely understood, there is little published information on how to tackle even basic security challenges for medical practice in Australia. Research suggests that there is an underestimation of the potential threats by medical practitioners; hence there is sufficient reason to promote development of tools to assist medical practice with technical issues they are unfamiliar with. This paper discusses the lack of threat realisation and provides a process for how security may be improved by those who are responsible for it. The process includes a framework for risk assessment and its practical implementation to make medical data in Australia secure.
Keywords: medical data security; risk assessment; information security; data protection; general practice; Australia; security measures; computer security; healthcare.
International Journal of Information and Computer Security, 2007 Vol.1 No.4, pp.414 - 429
Published online: 22 Oct 2007 *Full-text access for editors Access for subscribers Purchase this article Comment on this article