{"title":"定义安全度量来评估电子健康记录系统:在智利的案例研究","authors":"Gastón Márquez, C. Taramasco, H. Astudillo","doi":"10.1109/ICSA-C50368.2020.00038","DOIUrl":null,"url":null,"abstract":"The Electronic Health Record (EHR) is a digital document that stores sensitive patient information. In this regard, there are novel techniques and methods for satisfying security in EHR in specific domains (such as authentication, networking, cryptography, among others). Nevertheless, there is not enough evidence on quality instruments composed of cross-cutting security metrics obtained from academic as well as grey literature. This article proposes a quality instrument that measures the satisfaction degree of security in EHRs. The instrument is composed of five security approaches and nineteen security metrics collected and characterized from the academic and grey literature. We evaluated the effectiveness of the quality instrument in a case study with 20 healthcare actors in Chile. The results suggest that the metric is quite effective, but it depends on the degree of security training of the clinical staff. The findings of this study support the idea that our quality instrument can be considered as a starting point to evaluate the quality of EHRs.","PeriodicalId":202587,"journal":{"name":"2020 IEEE International Conference on Software Architecture Companion (ICSA-C)","volume":"52 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-03-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Defining Security Metrics To Evaluate Electronic Health Records Systems: A Case Study in Chile\",\"authors\":\"Gastón Márquez, C. Taramasco, H. Astudillo\",\"doi\":\"10.1109/ICSA-C50368.2020.00038\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The Electronic Health Record (EHR) is a digital document that stores sensitive patient information. In this regard, there are novel techniques and methods for satisfying security in EHR in specific domains (such as authentication, networking, cryptography, among others). Nevertheless, there is not enough evidence on quality instruments composed of cross-cutting security metrics obtained from academic as well as grey literature. This article proposes a quality instrument that measures the satisfaction degree of security in EHRs. The instrument is composed of five security approaches and nineteen security metrics collected and characterized from the academic and grey literature. We evaluated the effectiveness of the quality instrument in a case study with 20 healthcare actors in Chile. The results suggest that the metric is quite effective, but it depends on the degree of security training of the clinical staff. The findings of this study support the idea that our quality instrument can be considered as a starting point to evaluate the quality of EHRs.\",\"PeriodicalId\":202587,\"journal\":{\"name\":\"2020 IEEE International Conference on Software Architecture Companion (ICSA-C)\",\"volume\":\"52 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2020-03-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2020 IEEE International Conference on Software Architecture Companion (ICSA-C)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSA-C50368.2020.00038\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE International Conference on Software Architecture Companion (ICSA-C)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSA-C50368.2020.00038","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Defining Security Metrics To Evaluate Electronic Health Records Systems: A Case Study in Chile
The Electronic Health Record (EHR) is a digital document that stores sensitive patient information. In this regard, there are novel techniques and methods for satisfying security in EHR in specific domains (such as authentication, networking, cryptography, among others). Nevertheless, there is not enough evidence on quality instruments composed of cross-cutting security metrics obtained from academic as well as grey literature. This article proposes a quality instrument that measures the satisfaction degree of security in EHRs. The instrument is composed of five security approaches and nineteen security metrics collected and characterized from the academic and grey literature. We evaluated the effectiveness of the quality instrument in a case study with 20 healthcare actors in Chile. The results suggest that the metric is quite effective, but it depends on the degree of security training of the clinical staff. The findings of this study support the idea that our quality instrument can be considered as a starting point to evaluate the quality of EHRs.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
