F RA N C E S M A R I E L L E M . O L I VA , R N

5 CONCEPTS OF SECURITY TELEMEDICINE

SECURITY

• Is the degree of resistance to, or protection from harm.

AUTHENTICATION

• Verifying the identity of the user or service• Involves trusting both

the authentication information and computer it is coming from• Verification is through:

User ID and PasswordFiltering of IP addressTokens and many more

TRANSPORT SECURITY (ENCRYPTION)

• Process of encoding messages (or information) in such a way that only authorized parties can read it.• Keeps data safe and

confidential even if unauthorized access occurs.

AUTHORIZATION

• Process of verifying if the user has rights/permission to access.

• It promotes hierarchy at how much a person can access at a given level.Ex. Patients are only

permitted to view their laboratory results but they are not permitted to view the Doctor’s notes.

ACCESS CONTROL

• Users are granted access and certain privileges to the information or data.• Privileges to:

Read dataEdit dataDelete dataAdd data

AUDIT CONTROL

• Logs or records of computer access.

• It is done to identify inappropriate or unauthorized access

• Recorded information include:User IP AddressPatientData TypeAccess TypeType of Access

PHYSICAL SECURITY

• Addresses actions you can take to protect the data from intruders by: Housing all servers

containing valuable data in a main computer facility.

Staff should be present 24 hours per day,

Must be secured with biometric access controlled devices,

Installation of unauthorized software is prohibited.