TY - GEN
T1 - Protecting electronic health records in transit and at rest
AU - Ulybyshev, Denis
AU - Bare, Christian
AU - Bellisario, Kristen
AU - Kholodilo, Vadim
AU - Northern, Bradley
AU - Solanki, Abhijeet
AU - O'donnell, Timothy
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/7
Y1 - 2020/7
N2 - Healthcare providers need to communicate and exchange the clinical and administrative data from Electronic Health Records of patients. The Health Insurance Portability and Accountability Act (HIPAA) of 1996 requires the safeguarding and protection of Electronic Health Records when in transit and in storage. This paper presents a solution to protect Electronic Health Records in both states, in transit and at rest. Our secure data container guarantees data confidentiality and integrity and supports different data formats, including text and images. It can work in environments with limited Internet connectivity, which is important at times of disease pandemics or natural disasters. The potential benefit of this solution for healthcare providers would allow emailing data to patients in the form of our data container without using a HIPAA-compliant email server. This technology supports the ability to send and receive medical record documents, for a single encounter or encounters related to a condition, (1) allowing patient to download and keep their personal health record; (2) sharing continuity of care information with a provider referral to ensure medication reconciliation, for instance, with providers who are outside the information exchange network; and (3) delivering medical records securely to an insurance company who requires notes for a submitted claim. To address the problem of clinical and administrative data exchange between different healthcare providers across multiple networks, states and countries, our methodology allows patients to download and store their Electronic Health Records locally.
AB - Healthcare providers need to communicate and exchange the clinical and administrative data from Electronic Health Records of patients. The Health Insurance Portability and Accountability Act (HIPAA) of 1996 requires the safeguarding and protection of Electronic Health Records when in transit and in storage. This paper presents a solution to protect Electronic Health Records in both states, in transit and at rest. Our secure data container guarantees data confidentiality and integrity and supports different data formats, including text and images. It can work in environments with limited Internet connectivity, which is important at times of disease pandemics or natural disasters. The potential benefit of this solution for healthcare providers would allow emailing data to patients in the form of our data container without using a HIPAA-compliant email server. This technology supports the ability to send and receive medical record documents, for a single encounter or encounters related to a condition, (1) allowing patient to download and keep their personal health record; (2) sharing continuity of care information with a provider referral to ensure medication reconciliation, for instance, with providers who are outside the information exchange network; and (3) delivering medical records securely to an insurance company who requires notes for a submitted claim. To address the problem of clinical and administrative data exchange between different healthcare providers across multiple networks, states and countries, our methodology allows patients to download and store their Electronic Health Records locally.
KW - Access control
KW - Data leakage prevention
KW - Data privacy
KW - Electronic health records
KW - HIPAA
UR - http://www.scopus.com/inward/record.url?scp=85091150186&partnerID=8YFLogxK
U2 - 10.1109/CBMS49503.2020.00091
DO - 10.1109/CBMS49503.2020.00091
M3 - Conference contribution
AN - SCOPUS:85091150186
T3 - Proceedings - IEEE Symposium on Computer-Based Medical Systems
SP - 449
EP - 452
BT - Proceedings - 2020 IEEE 33rd International Symposium on Computer-Based Medical Systems, CBMS 2020
A2 - de Herrera, Alba Garcia Seco
A2 - Rodriguez Gonzalez, Alejandro
A2 - Santosh, KC
A2 - Temesgen, Zelalem
A2 - Kane, Bridget
A2 - Soda, Paolo
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 33rd IEEE International Symposium on Computer-Based Medical Systems, CBMS 2020
Y2 - 28 July 2020 through 30 July 2020
ER -