Archives and Documentation Center
Digital Archives

Network security vulnerabilities and personal privacy ıssues in healthcare information systems: a case study in a private hospital

Show simple item record

dc.contributor Graduate Program in Biomedical Engineering.
dc.contributor.advisor Ülgen, Yekta.
dc.contributor.author Cengiz, Nihan Namoğlu.
dc.date.accessioned 2023-03-16T13:12:37Z
dc.date.available 2023-03-16T13:12:37Z
dc.date.issued 2014.
dc.identifier.other BM 2014 C46
dc.identifier.uri http://digitalarchive.boun.edu.tr/handle/123456789/18841
dc.description.abstract Healthcare industry has become widely dependent on information technology and internet; as it moves from paper to electronic records. Despite the bene ts of electronic system, good quality may not be totally achieved unless its risks to security are mitigated. Working in collaboration with a 150 bed private hospital in Turkey; this study aims to present a secure healthcare network infrastructure while presenting the security vulnerabilities in the current hospital information systems. The regulation criteria in Turkey and counterparts in USA and EU are compared according to their privacy approach and a list of items for common security controls from di erent industries is proposed as a best practice. The study shows that the hospital is not compliant with known healthcare standards like HIPAA or ISO 80001. Managements attitude against privacy and security shows that the responsibility is totally to IT and Biomedical Engineering Departments. Since explaining the threats and corresponding vulnerabilities in the system may cause the hospital be prone to cyber-attacks, the name of the hospital is secluded. As hospitals are adopting electronic transactions, consideration must be given to protect public electronic health records in terms of personal privacy aspects. Healthcare industry in Turkey should bene t from best practices in other industries and applications in other countries. This study can lead the pathway for policy makers in healthcare organizations and regulation authorities to implement a more secure environment for every citizen.|Keywords : Security, Privacy, Electronic Health Records, Personal Health Records, EHR, PHR, Cyber Threats, Hospital Information System, HIPAA, ISO80001, ISO27001, Healthcare Regulations.
dc.format.extent 30 cm.
dc.publisher Thesis (M.S.) - Bogazici University. Institute of Biomedical Engineering, 2014.
dc.subject.lcsh Health services administration -- Computer networks.
dc.subject.lcsh Health services administration -- Data processing.
dc.subject.lcsh Information storage and retrieval systems -- Hospitals.
dc.title Network security vulnerabilities and personal privacy ıssues in healthcare information systems: a case study in a private hospital
dc.format.pages x, 57 leaves ;


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search Digital Archive


Browse

My Account