学术医疗中心敏感数据分析安全计算环境的设计与实现

Design and Implementation of a Secure Computing Environment for Analysis of Sensitive Data at an Academic Medical Center.

作者信息

Oxley Peter R, Ruffing John, Campion Thomas R, Wheeler Terrie R, Cole Curtis L

机构信息

Samuel J. Wood Library, Weill Cornell Medicine, New York, NY.

Information Technologies and Services Department, Weill Cornell Medicine, New York, NY.

出版信息

AMIA Annu Symp Proc. 2018 Dec 5;2018:857-866. eCollection 2018.

PMID:30815128

原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC6371349/

Abstract

Academic medical centers need to make sensitive data from electronic health records, payer claims, genomic pipelines, and other sources available for analytical and educational purposes while ensuring privacy and security. Although many studies have described warehouses for collecting biomedical data, few studies have described secure computing environments for analysis of sensitive data. This case report describes the Weill Cornell Medicine Data Core with respect to user access, data controls, hardware, software, audit, and financial considerations. In the 2.5 years since launch, the Data Core has supported more than 200 faculty, staff, and students across nearly 60 research and education projects. Other institutions may benefit from adopting elements of the approach, including tools available on Github, for balancing access with privacy and security.

摘要

学术医疗中心需要提供来自电子健康记录、支付方理赔数据、基因组流程及其他来源的敏感数据，用于分析和教育目的，同时确保隐私和安全。尽管许多研究描述了用于收集生物医学数据的仓库，但很少有研究描述用于分析敏感数据的安全计算环境。本病例报告介绍了威尔康奈尔医学院数据核心在用户访问、数据控制、硬件、软件、审计和财务考量方面的情况。自启动以来的2.5年里，数据核心已支持了近60个研究和教育项目中的200多名教职员工和学生。其他机构可能会从采用该方法的要素（包括Github上可用的工具）中受益，以平衡访问与隐私及安全之间的关系。

相似文献

Design and Implementation of a Secure Computing Environment for Analysis of Sensitive Data at an Academic Medical Center.学术医疗中心敏感数据分析安全计算环境的设计与实现

AMIA Annu Symp Proc. 2018 Dec 5;2018:857-866. eCollection 2018.

Security of electronic medical information and patient privacy: what you need to know.电子医疗信息和患者隐私的安全：你需要知道的。

J Am Coll Radiol. 2014 Dec;11(12 Pt B):1212-6. doi: 10.1016/j.jacr.2014.09.011. Epub 2014 Dec 1.

Are privacy-enhancing technologies for genomic data ready for the clinic? A survey of medical experts of the Swiss HIV Cohort Study.用于基因组数据的隐私增强技术是否已准备好应用于临床？对瑞士艾滋病毒队列研究的医学专家的调查。

J Biomed Inform. 2018 Mar;79:1-6. doi: 10.1016/j.jbi.2017.12.013. Epub 2018 Jan 10.

Secure count query on encrypted genomic data.加密基因组数据上的安全计数查询。

J Biomed Inform. 2018 May;81:41-52. doi: 10.1016/j.jbi.2018.03.003. Epub 2018 Mar 15.

Efficient Privacy-Preserving Access Control Scheme in Electronic Health Records System.电子健康记录系统中的高效隐私保护访问控制方案。

Sensors (Basel). 2018 Oct 18;18(10):3520. doi: 10.3390/s18103520.

Patient-Controlled Attribute-Based Encryption for Secure Electronic Health Records System.用于安全电子健康记录系统的基于属性的患者可控加密

J Med Syst. 2016 Dec;40(12):253. doi: 10.1007/s10916-016-0621-3. Epub 2016 Oct 6.

MedCo: Enabling Secure and Privacy-Preserving Exploration of Distributed Clinical and Genomic Data.MedCo：实现分布式临床和基因组数据的安全和隐私保护探索。

IEEE/ACM Trans Comput Biol Bioinform. 2019 Jul-Aug;16(4):1328-1341. doi: 10.1109/TCBB.2018.2854776. Epub 2018 Jul 13.

Confidentiality Protection of Digital Health Records in Cloud Computing.云计算中数字健康记录的保密性保护。

J Med Syst. 2016 May;40(5):124. doi: 10.1007/s10916-016-0484-7. Epub 2016 Apr 8.

Top 10 Lessons Learned from Electronic Medical Record Implementation in a Large Academic Medical Center.从大型学术医疗中心实施电子病历中学到的十大经验教训。

Perspect Health Inf Manag. 2015 Jul 1;12(Summer):1g. eCollection 2015.

Lessons learned from a privacy breach at an academic health science centre.从一所学术健康科学中心的隐私泄露事件中吸取的教训。

Healthc Q. 2009;12(1):61-5, 2. doi: 10.12927/hcq.2009.20416.

引用本文的文献

The role of information science within the clinical translational science ecosystem.信息科学在临床转化科学生态系统中的作用。

J Clin Transl Sci. 2024 Nov 27;8(1):e224. doi: 10.1017/cts.2024.664. eCollection 2025.

Implementing virtual desktops for clinical research at an academic health center: a case report.在学术健康中心为临床研究实施虚拟桌面：病例报告。

JAMIA Open. 2024 Aug 28;7(3):ooae083. doi: 10.1093/jamiaopen/ooae083. eCollection 2024 Oct.

Transforming and extending library services by embracing technology and collaborations: A case study.通过拥抱技术和合作来转变和扩展图书馆服务：案例研究。

Health Info Libr J. 2022 Sep;39(3):294-298. doi: 10.1111/hir.12439. Epub 2022 Jun 22.

An architecture for research computing in health to support clinical and translational investigators with electronic patient data.用于健康研究计算的架构，以支持临床和转化研究人员使用电子患者数据。

J Am Med Inform Assoc. 2022 Mar 15;29(4):677-685. doi: 10.1093/jamia/ocab266.

Understanding enterprise data warehouses to support clinical and translational research.理解企业数据仓库以支持临床和转化研究。

J Am Med Inform Assoc. 2020 Jul 1;27(9):1352-1358. doi: 10.1093/jamia/ocaa089.

本文引用的文献

Secondary Use of Patients' Electronic Records (SUPER): An Approach for Meeting Specific Data Needs of Clinical and Translational Researchers.患者电子记录的二次利用（SUPER）：一种满足临床和转化研究人员特定数据需求的方法。

AMIA Annu Symp Proc. 2018 Apr 16;2017:1581-1588. eCollection 2017.

Modular design, application architecture, and usage of a self-service model for enterprise data delivery: the Duke Enterprise Data Unified Content Explorer (DEDUCE).企业数据交付自助服务模型的模块化设计、应用架构及使用：杜克企业数据统一内容浏览器（DEDUCE）

J Biomed Inform. 2014 Dec;52:231-42. doi: 10.1016/j.jbi.2014.07.006. Epub 2014 Jul 19.

Secondary use of clinical data: the Vanderbilt approach.临床数据的二次利用：范德比尔特方法

J Biomed Inform. 2014 Dec;52:28-35. doi: 10.1016/j.jbi.2014.02.003. Epub 2014 Feb 14.

The National Institutes of Health's Biomedical Translational Research Information System (BTRIS): design, contents, functionality and experience to date.美国国立卫生研究院的生物医学转化研究信息系统（BTRIS）：设计、内容、功能及目前的经验。

J Biomed Inform. 2014 Dec;52:11-27. doi: 10.1016/j.jbi.2013.11.004. Epub 2013 Nov 19.

Development of a HIPAA-compliant environment for translational research data and analytics.开发符合 HIPAA 标准的环境，用于转化研究数据和分析。

J Am Med Inform Assoc. 2014 Jan-Feb;21(1):185-9. doi: 10.1136/amiajnl-2013-001769. Epub 2013 Aug 2.

The Analytic Information Warehouse (AIW): a platform for analytics using electronic health record data.分析信息仓库 (AIW)：一个使用电子健康记录数据进行分析的平台。

J Biomed Inform. 2013 Jun;46(3):410-24. doi: 10.1016/j.jbi.2013.01.005. Epub 2013 Feb 9.

Privacy by Design at Population Data BC: a case study describing the technical, administrative, and physical controls for privacy-sensitive secondary use of personal information for research in the public interest.隐私设计在卑诗省人口署：一个案例研究，描述了隐私敏感的个人信息二次利用的技术、行政和物理控制措施，用于公共利益的研究。

J Am Med Inform Assoc. 2013 Jan 1;20(1):25-8. doi: 10.1136/amiajnl-2012-001011. Epub 2012 Aug 30.

Building public trust in uses of Health Insurance Portability and Accountability Act de-identified data.建立公众对健康保险携带和责任法案去识别数据使用的信任。

J Am Med Inform Assoc. 2013 Jan 1;20(1):29-34. doi: 10.1136/amiajnl-2012-000936. Epub 2012 Jun 26.

A Dimensional Bus model for integrating clinical and research data.一种用于整合临床和研究数据的多维巴士模型。

J Am Med Inform Assoc. 2011 Dec;18 Suppl 1(Suppl 1):i96-102. doi: 10.1136/amiajnl-2011-000339. Epub 2011 Aug 19.

Information warehouse - a comprehensive informatics platform for business, clinical, and research applications.信息仓库——一个用于商业、临床和研究应用的综合信息学平台。

AMIA Annu Symp Proc. 2010 Nov 13;2010:452-6.

文献检索

告别复杂PubMed语法，用中文像聊天一样搜索，搜遍4000万医学文献。AI智能推荐，让科研检索更轻松。

立即免费搜索

文件翻译

保留排版，准确专业，支持PDF/Word/PPT等文件格式，支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述，25分钟生成高质量综述，智能提取关键信息，辅助科研写作。

立即免费体验