Modeling risk in distributed healthcare information systems

Conf Proc IEEE Eng Med Biol Soc. 2006:2006:5447-50. doi: 10.1109/IEMBS.2006.260351.

Abstract

This paper presents a modeling approach for performing a risk analysis study of networked healthcare information systems. The proposed method is based on CRAMM for studying the assets, threats and vulnerabilities of the distributed information system, and models their interrelationships using Bayesian networks. The most critical events are identified and prioritized, based on "what - if" studies of system operation. The proposed risk analysis framework has been applied to a healthcare information network operating in the North Aegean Region in Greece.

MeSH terms

  • Bayes Theorem
  • Computer Communication Networks
  • Computer Security
  • Computers
  • Greece
  • Hospital Information Systems*
  • Humans
  • Information Systems
  • Medical Records Systems, Computerized
  • Models, Theoretical
  • Risk
  • Risk Assessment
  • Software
  • Systems Integration
  • Telemedicine