Security requirements for the medical information used by U-Healthcare medical equipment

Jaebum Son, Soonseok Kim, Gil-Hong Park, Jihun Cha, Kijung Park

Research output: Contribution to journalArticle

3 Citations (Scopus)

Abstract

Home healthcare based on ubiquitous technology (u-technology) is emerging as a solution to increasing chronic disease patients with the advent of aging of society. While u-technology has the advantage that improves accessibility to medical services, it also increases the probability of the infringement of privacy of personal medical information, the leakage of which can do greater damage than any other information. At the juncture that social requirement for privacy protection is getting important, the development of standard and specification to evaluate the minimum security level of u-health medical devices is inevitable as a prerequisite for the vitalization of u-health. This study aimed at the development of security test methodology for u-health medical devices and proposed the standard and specification to secure medical information security. For the purpose, first, we defined the scope of u-health medical devices and categorized its physical and operational types. Second, security core technologies were selected that can be applied to u-health medical device in three aspects such as administrative safeguard dealing with operator, policy, document, system and user education, physical safeguard dealing with control of entrance and exit, screen or shared instrument, and technical safeguard dealing with computer system-related technological elements. Lastly, each security core technology was assigned to each physical and operational types of u-health medical devices and relative significance of which was determined. The guideline containing the developed security core technology and test methodology for u-health medical device would be utilized for the enhancement of security level in the design of u-health medical devices and setting the authentication standard for authorization process for security in Korean Food and Drug Administration.

Original languageEnglish
Pages (from-to)169-180
Number of pages12
JournalInternational Journal of Security and its Applications
Volume7
Issue number1
Publication statusPublished - 2013 May 10

Fingerprint

Biomedical equipment
Health
Specifications
Security of data
Authentication
Computer systems
Aging of materials
Education

Keywords

  • Authentication standard
  • Medical information security
  • Security core technology
  • Security test methodology
  • U-Health medical device

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Security requirements for the medical information used by U-Healthcare medical equipment. / Son, Jaebum; Kim, Soonseok; Park, Gil-Hong; Cha, Jihun; Park, Kijung.

In: International Journal of Security and its Applications, Vol. 7, No. 1, 10.05.2013, p. 169-180.

Research output: Contribution to journalArticle

@article{79a0cb46728b44bea8e170a119b62a62,
title = "Security requirements for the medical information used by U-Healthcare medical equipment",
abstract = "Home healthcare based on ubiquitous technology (u-technology) is emerging as a solution to increasing chronic disease patients with the advent of aging of society. While u-technology has the advantage that improves accessibility to medical services, it also increases the probability of the infringement of privacy of personal medical information, the leakage of which can do greater damage than any other information. At the juncture that social requirement for privacy protection is getting important, the development of standard and specification to evaluate the minimum security level of u-health medical devices is inevitable as a prerequisite for the vitalization of u-health. This study aimed at the development of security test methodology for u-health medical devices and proposed the standard and specification to secure medical information security. For the purpose, first, we defined the scope of u-health medical devices and categorized its physical and operational types. Second, security core technologies were selected that can be applied to u-health medical device in three aspects such as administrative safeguard dealing with operator, policy, document, system and user education, physical safeguard dealing with control of entrance and exit, screen or shared instrument, and technical safeguard dealing with computer system-related technological elements. Lastly, each security core technology was assigned to each physical and operational types of u-health medical devices and relative significance of which was determined. The guideline containing the developed security core technology and test methodology for u-health medical device would be utilized for the enhancement of security level in the design of u-health medical devices and setting the authentication standard for authorization process for security in Korean Food and Drug Administration.",
keywords = "Authentication standard, Medical information security, Security core technology, Security test methodology, U-Health medical device",
author = "Jaebum Son and Soonseok Kim and Gil-Hong Park and Jihun Cha and Kijung Park",
year = "2013",
month = "5",
day = "10",
language = "English",
volume = "7",
pages = "169--180",
journal = "International Journal of Security and its Applications",
issn = "1738-9976",
publisher = "Science and Engineering Research Support Society",
number = "1",

}

TY - JOUR

T1 - Security requirements for the medical information used by U-Healthcare medical equipment

AU - Son, Jaebum

AU - Kim, Soonseok

AU - Park, Gil-Hong

AU - Cha, Jihun

AU - Park, Kijung

PY - 2013/5/10

Y1 - 2013/5/10

N2 - Home healthcare based on ubiquitous technology (u-technology) is emerging as a solution to increasing chronic disease patients with the advent of aging of society. While u-technology has the advantage that improves accessibility to medical services, it also increases the probability of the infringement of privacy of personal medical information, the leakage of which can do greater damage than any other information. At the juncture that social requirement for privacy protection is getting important, the development of standard and specification to evaluate the minimum security level of u-health medical devices is inevitable as a prerequisite for the vitalization of u-health. This study aimed at the development of security test methodology for u-health medical devices and proposed the standard and specification to secure medical information security. For the purpose, first, we defined the scope of u-health medical devices and categorized its physical and operational types. Second, security core technologies were selected that can be applied to u-health medical device in three aspects such as administrative safeguard dealing with operator, policy, document, system and user education, physical safeguard dealing with control of entrance and exit, screen or shared instrument, and technical safeguard dealing with computer system-related technological elements. Lastly, each security core technology was assigned to each physical and operational types of u-health medical devices and relative significance of which was determined. The guideline containing the developed security core technology and test methodology for u-health medical device would be utilized for the enhancement of security level in the design of u-health medical devices and setting the authentication standard for authorization process for security in Korean Food and Drug Administration.

AB - Home healthcare based on ubiquitous technology (u-technology) is emerging as a solution to increasing chronic disease patients with the advent of aging of society. While u-technology has the advantage that improves accessibility to medical services, it also increases the probability of the infringement of privacy of personal medical information, the leakage of which can do greater damage than any other information. At the juncture that social requirement for privacy protection is getting important, the development of standard and specification to evaluate the minimum security level of u-health medical devices is inevitable as a prerequisite for the vitalization of u-health. This study aimed at the development of security test methodology for u-health medical devices and proposed the standard and specification to secure medical information security. For the purpose, first, we defined the scope of u-health medical devices and categorized its physical and operational types. Second, security core technologies were selected that can be applied to u-health medical device in three aspects such as administrative safeguard dealing with operator, policy, document, system and user education, physical safeguard dealing with control of entrance and exit, screen or shared instrument, and technical safeguard dealing with computer system-related technological elements. Lastly, each security core technology was assigned to each physical and operational types of u-health medical devices and relative significance of which was determined. The guideline containing the developed security core technology and test methodology for u-health medical device would be utilized for the enhancement of security level in the design of u-health medical devices and setting the authentication standard for authorization process for security in Korean Food and Drug Administration.

KW - Authentication standard

KW - Medical information security

KW - Security core technology

KW - Security test methodology

KW - U-Health medical device

UR - http://www.scopus.com/inward/record.url?scp=84877107710&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84877107710&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:84877107710

VL - 7

SP - 169

EP - 180

JO - International Journal of Security and its Applications

JF - International Journal of Security and its Applications

SN - 1738-9976

IS - 1

ER -