Sensors (Jun 2019)

Study of Out-Of-Hospital Access to HIS System: A Security Perspective

  • Chih-Yung Chen,
  • Yi-Chang Hsu,
  • Chang-Ching Lin,
  • Jeyhun Hajiyev,
  • Chia-Rong Su,
  • Ching-His Tseng

DOI
https://doi.org/10.3390/s19112628
Journal volume & issue
Vol. 19, no. 11
p. 2628

Abstract

Read online

In light of the need for Extramural Hospital Information System (HIS) access through mobile devices outside the hospital, this research analyzes situational information security threats, including the circumstances in which a mobile device may get lost and personal data may be stolen. Moreover, the system needs to be implemented in accordance with the regulations. Based on the security threat analysis, it is proposed to use a security control module to provide a security-enabled HIS proxy module, two-way authentication module, and One-Time Password (OTP). The sending module and cryptographic technology computing module with Micro SD encryption card form a set of HIS extension system, which includes the SMS OTP method to simultaneously verify the two-way authentication mechanism of a user and the device that the user owns.

Keywords