TY - JOUR
T1 - Standards for safety, security and interoperability of medical devices in an integrated health information environment
T2 - Standards for safety, security, and interoperability of medical devices in an integrated health information environment
AU - Williams, Patricia
PY - 2017/4
Y1 - 2017/4
N2 - The protections required for safety, security, and privacy of health information across various information systems and medical devices are becoming increasingly complex. Since medical devices are connected to hospital wireless networks, they are often vulnerable to hacking attempts.1 The US Food and Drug Administration (FDA) recognized the problem in the Food and Drug Administration Safety and Innovation Act (FDASIA) report in 2014, proposing a "strategy and recommendations on an appropriate, riskbased regulatory framework pertaining to health information technology, including mobile medical applications, that promotes innovation, protects patient safety, and avoids regulatory duplication. Fundamental privacy and security are a challenge for many healthcare organizations that may need assistance to address the potential vulnerabilities, particularly where networks include medical devices.3 The increase in vulnerability arises from the nature of computer networks that demand plug-in methods of construction together with interconnectivity and seamless integration of multiple information systems involved in patient care. Studies show that implantable devices, such as an implantable cardioverter defibrillator (ICD), are potentially susceptible to malicious attacks that violate the privacy of patient information and medical telemetry-and may experience malicious alteration to the integrity of information, including patient data in therapy settings. The goals between security, privacy, safety, and utility of devices in situ (in their natural position) may be at odds with one another.5 Standards to Address Safety, Security, and Privacy of Medical Device Information The key to enabling patient safety is standardization.6 The new standard published by the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC),...
AB - The protections required for safety, security, and privacy of health information across various information systems and medical devices are becoming increasingly complex. Since medical devices are connected to hospital wireless networks, they are often vulnerable to hacking attempts.1 The US Food and Drug Administration (FDA) recognized the problem in the Food and Drug Administration Safety and Innovation Act (FDASIA) report in 2014, proposing a "strategy and recommendations on an appropriate, riskbased regulatory framework pertaining to health information technology, including mobile medical applications, that promotes innovation, protects patient safety, and avoids regulatory duplication. Fundamental privacy and security are a challenge for many healthcare organizations that may need assistance to address the potential vulnerabilities, particularly where networks include medical devices.3 The increase in vulnerability arises from the nature of computer networks that demand plug-in methods of construction together with interconnectivity and seamless integration of multiple information systems involved in patient care. Studies show that implantable devices, such as an implantable cardioverter defibrillator (ICD), are potentially susceptible to malicious attacks that violate the privacy of patient information and medical telemetry-and may experience malicious alteration to the integrity of information, including patient data in therapy settings. The goals between security, privacy, safety, and utility of devices in situ (in their natural position) may be at odds with one another.5 Standards to Address Safety, Security, and Privacy of Medical Device Information The key to enabling patient safety is standardization.6 The new standard published by the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC),...
KW - medical devices
KW - safety,security and interoperability
KW - standards
KW - integrated health information
UR - http://www.scopus.com/inward/record.url?scp=85055665034&partnerID=8YFLogxK
M3 - Article
SN - 1060-5487
VL - 88
SP - 32
EP - 34
JO - American Health Information Management Association, Journal of
JF - American Health Information Management Association, Journal of
IS - 4
ER -
