IT SECURITY - DEVELOPING A RESPONSE TO INCREASING RISKS

The move to computerization in health care requires attention to secur ity issues because the risks to violate patients' rights for privacy a re dramatically increasing. As providers in many countries are moving toward computerization, it is important to understand the dangers of c omputerization. Unauthorized users can access, copy, alter, delete, or distort hundreds or thousands of medical records within minutes. Info rmation can be violated by individuals and by system failures. It is i mportant to understand the potential harm to patients and to our socie ty. The relationship between privacy rights, confidentiality measures, and system security measures must be addressed. It is dangerous to cr eate computer systems in health care without establishing appropriate security measures. Special attention should be given to the weaknesses of the internet and the requirements of network security for a future 'global information infrastructure'. The internet is based on messagi ng as are many communication standards such as Edifact, HL7, etc. Mess aging systems in general need to be examined with regard to security a nd accountability issues.