• DocumentCode
    2227633
  • Title

    Security analysis and implementation of web-based telemedicine services with a four-tier architecture

  • Author

    Maji, Amiya K. ; Mukhoty, Arpita ; Majumdar, Arun K. ; Mukhopadhyay, Jayanta ; Sural, Shamik ; Paul, Soubhik ; Majumdar, Bandana

  • Author_Institution
    Indian Inst. of Technol., Kharagpur
  • fYear
    2008
  • fDate
    Jan. 30 2008-Feb. 1 2008
  • Firstpage
    46
  • Lastpage
    54
  • Abstract
    Security of telemedicine applications is not often given adequate importance by the developers and healthcare administrators primarily to reduce cost. Though some security safeguards are employed by these applications to comply with existing medical data security and privacy regulations, these are not adequate in todaypsilas context. Moreover, in a Web-based application environment not only the data but also the application itself is vulnerable to attackers. Keeping these concerns in mind, we present the design of a Web-based, four-tier telemedicine system named iMedik which is accessible over desktops as well as handheld devices. We have illustrated how the proposed system differs from existing three-tier Web applications. The compliance status of the application with HIPAA Security Guidelines has also been noted. The security measures described in our approach look into the four-tier architecture from an attackerpsilas viewpoint and present a simple road map for developing secure e-health application with anywhere, anytime availability.
  • Keywords
    Internet; data privacy; health care; medical information systems; security of data; telemedicine; Web-based telemedicine service; four-tier architecture; handheld device; health care; iMedik; medical data security; privacy regulation; secure e-health; security analysis; Application software; Costs; Data security; Information security; Internet; Medical services; Protection; Roads; Robustness; Telemedicine; e-health; multi-tier; telemedicine; vulnerability analysis; web based;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Pervasive Computing Technologies for Healthcare, 2008. PervasiveHealth 2008. Second International Conference on
  • Conference_Location
    Tampere
  • Print_ISBN
    978-963-9799-15-8
  • Type

    conf

  • DOI
    10.1109/PCTHEALTH.2008.4571024
  • Filename
    4571024