Furnell S M, Sanders P W, Warren M J
Network Research Group, Faculty of Technology, University of Plymouth, UK.
Med Inform (Lond). 1995 Apr-Jun;20(2):139-48. doi: 10.3109/14639239509025352.
As modern healthcare establishments become increasingly dependent upon information systems it is vital to ensure that adequate security is present to safeguard the confidentiality and integrity of data and the availability of systems. Whilst this is now generally recognized in the design of new systems, many existing operational systems have been implemented without security in mind. This paper describes the need for a standardized approach in the protection of existing healthcare systems within Europe and presents an overview of a new set of information security guidelines that have been developed specifically for the medical community. The guidelines discussed have been produced as a deliverable of the Commission of European Communities (CEC) SEISMED (Secure Environment for Information Systems in Medicine) project, under the Advanced Informatics in Medicine (AIM) programme.
随着现代医疗机构越来越依赖信息系统,确保具备足够的安全性以保护数据的保密性和完整性以及系统的可用性至关重要。虽然在新系统设计中这一点如今已得到普遍认可,但许多现有的操作系统在实施时并未考虑安全性。本文描述了在欧洲保护现有医疗系统采用标准化方法的必要性,并概述了专门为医疗界制定的一套新的信息安全指南。所讨论的指南是欧洲共同体委员会(CEC)的SEISMED(医学信息系统安全环境)项目在医学高级信息学(AIM)计划下的一项成果。
