Information Security and Privacy of Patient-Centered Health IT Services: What Needs to Be Done?
Proceedings of the 47th Hawaii International Conference on System Sciences (HICSS 2014)
10 Pages Posted: 9 Feb 2014 Last revised: 6 May 2014
Date Written: January 6, 2014
Patients increasingly want to access health information and services via tailored patient-centered health IT services (PHS). PHS produce value by managing, assessing, and working on users’ sensitive personal health information and leverage benefits of supporting technologies like cloud computing or mobile information and communication technology. Thus, information security and privacy is highly relevant for the development, deployment, and assessment of PHS. To ease PHS requirements engineering and contribute to the mastering of arising information security and privacy challenges, we derive PHS information security and privacy requirements. With our research we contribute to the scientific knowledge base by illustrating PHS information security and privacy requirements and providing a foundation for PHS requirements development, which represents a fundamental part of software engineering. For practice-oriented audiences, this research can serve as introduction to PHS and offers a foundation and guide for secure and privacy-ensuring development and deployment of PHS.
Keywords: patient-centered, health IT, information security, information privacy, requirements, eHealth
JEL Classification: L86
Suggested Citation: Suggested Citation