Title :
A network security architecture to reduce the risk of data leakage for health care organizations
Author :
Rauscher, Richard ; Acharya, Raj
Author_Institution :
Dept. of Comput. Sci. & Eng., Pennsylvania State Univ., Hershey, PA, USA
Abstract :
Health care is a highly regulated industry in which much value is placed upon privacy and confidentiality. The business of health care, particularly in certain academic environments, requires access to data of varying sensitivities, including information from the public Internet. This paper proposes a VLAN-based architecture for segregating data of varying sensitivities, a list of components that facilitate access to and distillation of data, and a method for one-way promotion of individual nodes from areas of lower security to areas of higher security. The proposed solution is an implementable and pragmatic approach to reducing the risk of data leakage. Quality of experience (QoE) measures of two methods for access (node promotion and porthole-based access) are compared. The node promotion method improves the user-perceived responsiveness of applications over the porthole-based method while reducing flexibility.
Keywords :
Internet; computer network security; data privacy; medical information systems; quality of experience; QoE; VLAN-based architecture; confidentiality; data distillation; data leakage risk; data segregation; health care organizations; highly regulated industry; network security architecture; porthole-based method; pragmatic approach; privacy; public Internet; quality of experience measures; user-perceived responsiveness; Computer architecture; Delays; Internet; Medical services; Security; Sensitivity; Servers; QoE; VLAN; electronic health records; health care information systems; network security;
Conference_Titel :
e-Health Networking, Applications and Services (Healthcom), 2014 IEEE 16th International Conference on
Conference_Location :
Natal
DOI :
10.1109/HealthCom.2014.7001846
