Zheng Zhou,Brent J. Liu,H. K. Huang,Bin Guo,Jorge Documet,Nelson King

DOI: https://doi.org/10.1117/12.653459

2006-01-01

Abstract:The deadline of HIPAA (Health Insurance Portability and Accountability Act) Security Rules has passed on February 2005; therefore being HIPAA compliant becomes extremely critical to healthcare providers. HIPAA mandates healthcare providers to protect the privacy and integrity of the health data and have the ability to demonstrate examples of mechanisms that can be used to accomplish this task. It is also required that a healthcare institution must be able to provide audit trails on image data access on demand for a specific patient. For these reasons, we have developed a HIPAA compliant auditing system (HCAS) for image data security in a PACS by auditing every image data access. The HCAS was presented in 2005 SPIE. This year, two new components, LDSE (Lossless Digital Signature Embedding) and LTVS (Patient Location Tracking and Verification System) logs, have been added to the HCAS. The LDSE can assure medical image integrity in a PACS, while the LTVS can provide access control for a PACS by creating a security zone in the clinical environment. By integrating the LDSE and LTVS logs with the HCAS, the privacy and integrity of image data can be audited as well. Thus, a PACS with the HCAS installed can become HIPAA compliant in image data privacy and integrity, access control, and audit control.

Zheng Zhou,Brent J Liu

DOI: https://doi.org/10.1016/j.compmedimag.2004.09.009

IF: 7.422

2005-01-01

Computerized Medical Imaging and Graphics

Abstract:As an official regulation for healthcare privacy and security, Health Insurance Portability and Accountability Act (HIPAA) mandates health institutions to protect health information against unauthorized use or disclosure. One such method proposed by HIPAA Security Standards is audit trail, which records and examines health information access activities. HIPAA mandates healthcare providers to have the ability to generate audit trails on data access activities for any specific patient. Although current medical imaging systems generate activity logs, there is a lack of formal methodology to interpret these large volumes of log data and generate HIPAA compliant auditing trails.

Hai-yan Zhou,Xing Yao,Yue-ming Zhu,Hui-long Duan,Xu-dong Lu,Chen-hui Zhao

DOI: https://doi.org/10.3969/j.issn.1671-7104.2006.06.010

2006-01-01

Abstract:PACS (Picture Archiving and Communication System) is successfully applied in Huzhou Central Hospital, and is well integrated with its HIS system by WEBSERVICE middleware. The system supports DICOM 3.0 Standard, and DICOM gateways are installed for modalities that do not support DICOM so as to have implemented the digitalization of all the image departments in the hospital.

D B Harding Jr,R J Gac Jr,C T Reynolds 3rd,J Romlein,A K Chacko

DOI: https://doi.org/10.1007/BF03167663

Abstract:The modern information revolution has facilitated a metamorphosis of health care delivery wrought with the challenges of securing patient sensitive data. To accommodate this reality, Congress passed the Health Insurance Portability and Accountability Act (HIPAA). While final guidance has not fully been resolved at this time, it is up to the health care community to develop and implement comprehensive security strategies founded on procedural, hardware and software solutions in preparation for future controls. The Virtual Radiology Environment (VRE) Project, a landmark US Army picture archiving and communications system (PACS) implemented across 10 geographically dispersed medical facilities, has addressed that challenge by planning for the secure transmission of medical images and reports over their local (LAN) and wide area network (WAN) infrastructure. Their model, which is transferable to general PACS implementations, encompasses a strategy of application risk and dataflow identification, data auditing, security policy definition, and procedural controls. When combined with hardware and software solutions that are both non-performance limiting and scalable, the comprehensive approach will not only sufficiently address the current security requirements, but also accommodate the natural evolution of the enterprise security model.

Liang SHEN,Qian HUANG,You ZHAI,Yunqing QIU,Qingwei ZHAO,Lihua WU,Min ZHOU,Jian LIU

DOI: https://doi.org/10.3785/j.issn.1008-9292.2020.07.01

2020-01-01

Abstract:Clinical trial management system is independently developed by our hospital, which basically realized the whole process management and data collection of clinical trials. Based on the platform, the functional architecture of data remote monitoring and auditing was established. By desensitizing and encrypting of data, the project and subject hologram were visualized to facilitate to review of data. The data remote monitoring and auditing cloud platform adopts the B/S architecture pattern. Users register to apply for an account through the cloud platform, and access to the account via HTTPS security protocol. The authorized users were able to view the relevant items online to ensure the secure data transmission and easy operating. The electronic management of data is the direction of future efforts. By compliance with laws and regulations, the remote monitoring/auditing can be realized, and the data security and personal privacy can be ensured with the application of information technology. In this paper, the feasibility of remote monitoring/auditing mode is explored, specific technical schemes and system functions are suggested, and the realization scenarios are conceived in case of major public health emergencies.

JL Yu,XT Hu,B Zhang,SN Ning

DOI: https://doi.org/10.1117/12.538648

2003-01-01

Abstract:A new architecture for HIPAS (Hyperspectral Image Processing and Analysis System V2.0) was introduced in this paper which was modified and improved based on the first version HIPAS V1.0. The comprehensive hyperspectral image analyzing system has been developed under VC++6.0 integrated development environment (IDE) and obtained perfect runtime efficiency and stability. The base architecture was specially designed and implemented to meet the requirements for the rapid preprocessing of imaging spectrometer data and easy prototyping of algorithms. Based on the modularized and object oriented software engineering construction, the architecture is compatible for other UNIX platforms with little modification. The most important components of HIPAS were presented in this paper including tools for input/output, preprocessing, data visualization, information extraction, conventional image analysis, advanced tools, and integrated interface to connect with general spectral databases. Some new methodologies for data analysis and processing were realized and applied to reach some valuable results based on the architecture including mineral identification, agriculture investigation, urban mapping etc. With an open storage architecture, HIPAS is entirely compatible with some advanced special commercial software such as ENVI(C) and ERDAS(C) and even the common image processing system Photoshop(C). At last, a strict and careful software test was carried out and the results were also analyzed and discussed.

JG Zhang,XM Chen,J Zhuang,JR Jiang,XY Zhang,DQ Wu,HK Huang

DOI: https://doi.org/10.1117/12.480651

2003-01-01

Abstract:In this paper, we presented a new security approach to provide security measures and features in both healthcare information systems (PACS, RIS/HIS), and electronic patient record (EPR). We introduced two security components, certificate authoring (CA) system and patient record digital signature management (DSPR) system, as well as electronic envelope technology, into the current hospital healthcare information infrastructure to provide security measures and functions such as confidential or privacy, authenticity, integrity, reliability, non-repudiation, and authentication for in-house healthcare information systems daily operating, and EPR exchanging among the hospitals or healthcare providers. CA component keeps the information of user personnel identification, accessing rights, and their administration levels, and the DSPR component manages the All the digital signatures of patient medical records signed through using an-symmetry key encryption technologies. The electronic envelopes used for EPR exchanging are created based on the information of signers, digital signatures, and identifications of patient records stored in CAS and DSMS, as well as the destinations and the remote users. The CAS and DSMS were developed and integrated into a RIS-integrated PACS, and the integration of these new security components is seamless and painless. The electronic envelopes designed for EPR were used successfully in multimedia data transmission.

Alex K. S. Wong,Lawrence W. C. Chan,Ying Liu

DOI: https://doi.org/10.1007/s10796-009-9150-7

2009-01-01

Information Systems Frontiers

Abstract:This paper is aimed to present a novel compartmental PACS model for the automatic object-oriented integration and visualization of heterogeneous data for the multidisciplinary biomedical studies in the midst of the imaging services in radiology department. The generic PACS is conceptually partitioned into two compartments: service and integration. The service compartment supports the routine imaging service by connecting the imaging modalities to the web client workstations through a single fault-tolerant hardware. The integration compartment is synthesized by open source and open standard software tools to perform the long-term archiving of imaging cases and to integrate the images with the related data from other clinical disciplines. The prototype of the compartmental PACS model has been successfully implemented in the Department of Health Technology and Informatics (HTI) at the Hong Kong Polytechnic University (PolyU). Multi-disciplinary study on a cardiovascular case is considered as an example in this paper to demonstrate the seamless integration and web-based visualization of heterogeneous data from radiology, ophthalmology, cardiology and hematology. The implementation of the compartmental PACS model demonstrates a deliberative system design for allocating mission-critical components at the clinical frontline of imaging services and long-term archiving components at the backend. The integrative feature of object-oriented long-term archive addresses the comprehensive needs of patient-centered multidisciplinary biomedical studies.

JG Zhang,Z Zhou,J Zhuang,RL Han,GZ Zhang,J Feng,MP Wang,CF Wang

DOI: https://doi.org/10.1117/12.435459

2001-01-01

Abstract:Huadong hospital in Shanghai with 700 beds provides health care services for inpatients and outpatients, as well as special senior and VIP patients. In order to move to digital imaging based radiology practice, and also provide better intra-hospital clinical services for senior and VIP patients, we started designing and planning PACS implementation from September of 1999. Based on the radiology service model and current workflow in Huadong hospital, we implemented PACS in following steps: In phase I, we designed PALS infrastructure and implemented PACS networks connecting to most digital modalities, reading rooms and clinical buildings, we also built NT-based module PALS for every kind of digital imaging modality with DICOM communication capability. In phase II, we developed an UNIX based PACS central server connecting to the individual module PACS for image routing, querying and retrieving among different departments and modality sections, and also installed specially designed interactive teleconsultation display workstations in radiology sections and clinical departments for consultation services. In phase III, we will integrate RIS into PACS infrastructure to optimize PACS dataflow and improve radiology workflow to achieve better performance and more efficient services. In this presentation, we will also discuss the PACS design strategies and implementation methods in Huadong hospitals to decrease the risks and to increase the positive responses from the partners and end users.

Wayne Bradford,John F Hurdle,Bernie LaSalle,Julio C Facelli

DOI: https://doi.org/10.1136/amiajnl-2013-001769

Abstract:High-performance computing centers (HPC) traditionally have far less restrictive privacy management policies than those encountered in healthcare. We show how an HPC can be re-engineered to accommodate clinical data while retaining its utility in computationally intensive tasks such as data mining, machine learning, and statistics. We also discuss deploying protected virtual machines. A critical planning step was to engage the university's information security operations and the information security and privacy office. Access to the environment requires a double authentication mechanism. The first level of authentication requires access to the university's virtual private network and the second requires that the users be listed in the HPC network information service directory. The physical hardware resides in a data center with controlled room access. All employees of the HPC and its users take the university's local Health Insurance Portability and Accountability Act training series. In the first 3 years, researcher count has increased from 6 to 58.

Liviu Constantinescu,Jinman Kim,Ashnil Kumar,Daiki Haraguchi,Lingfeng Wen,Dagan Feng

DOI: https://doi.org/10.1186/2047-2501-1-3

2013-01-10

Abstract:Over the past decade, rapid development of imaging technologies has resulted in the introduction of improved imaging devices, such as multi-modality scanners that produce combined positron emission tomography-computed tomography (PET-CT) images. The adoption of picture archiving and communication systems (PACS) in hospitals have dramatically improved the ability to digitally share medical image studies via portable storage, mobile devices and the Internet. This has in turn led to increased productivity, greater flexibility, and improved communication between hospital staff, referring physicians, and outpatients. However, many of these sharing and viewing capabilities are limited to proprietary vendor-specific applications. Furthermore, there are still interoperability and deployment issues which reduce the rate of adoption of such technologies, thus leaving many stakeholders, particularly outpatients and referring physicians, with access to only traditional still images with no ability to view or interpret the data in full. In this paper, we present a distribution architecture for medical image display across numerous devices and media, which uses a preprocessor and an in-built networking framework to improve compatibility and promote greater accessibility of medical data. Our INVOLVE2 system consists of three main software modules: 1) a preprocessor, which collates and converts imaging studies into a compressed and distributable format; 2) a PACS-compatible workflow for self-managing distribution of medical data, e.g. via CD USB, network etc; 3) support for potential mobile and web-based data access. The focus of this study was on cultivating patient-centric care, by allowing outpatient users to comfortably access and interpret their own data. As such, the image viewing software included on our cross-platform CDs was designed with a simple and intuitive user-interface (UI) for use by outpatients and referring physicians. Furthermore, digital image access via mobile devices or web-based access enables users to engage with their data in a convenient and user-friendly way. We evaluated the INVOLVE2 system using a pilot deployment in a hospital environment.

Zheng Zhou

DOI: https://doi.org/10.1016/j.compmedimag.2007.02.013

2007-01-01

Abstract:Computer aided diagnosis/detection (CAD) has been extensively used in mammography, chest, and three-dimensional (3D) CT lung imaging for clinical decision support over last 5-6 years. Recent trend is to integrate CAD applications with a PACS so that CAD results can be reviewed by most physicians for diagnosis. However, data security issue arises when a CAD application is integrated with a PACS. In this paper, we present a lossless digital signature embedding (LDSE) method for assuring the integrity of images used by the CAD and new images and results generated by the CAD application. Our experimental results show that the method is effective for assuring the integrity of CAD images. Combining this method with traditional one-dimensional digital signature technique for protecting CAD results, we provide a complete integrity assurance solution for a CAD application integrated with a PACS. (c) 2007 Elsevier Ltd. All rights reserved.

Yongqiang Tan,Jianguo Zhang,Yanqing Hua,Guozhen Zhang,H. K. Huang

DOI: https://doi.org/10.1117/12.652671

2006-01-01

Abstract:Traditionally, Picture Archiving and Communication Systems (PACS) use textual-based retrieval, which have their limitations. General-purposed content-based image retrieval (CBIR) systems often do not perform well in medical images and are not integrated with PACS and Radiology Information System (RIS). In this presentation we design a CBIR system that is integrated with PACS and RIS, by using a user-supplied query image to retrieve similar images from PACS and get corresponding reports from RIS. We also employ ACR index for radiological diagnosis to reduce the search space and to provide meaningful results in our CBIR system. We use high resolution CT lung images as the test data. A key image is selected for each series, and after a radiologist delineates the pathology bearing region, local texture features as well as ACR indexes and series UID are stored in a CBIR server. Series UID can be used to retrieve images from PACS and to obtain corresponding reports from RIS. The system is a useful learning tool for radiology education and can provide valuable references for radiologists when a new case comes.

Luís A Bastião Silva,Carlos Costa,José Luis Oliveira

DOI: https://doi.org/10.1007/s11548-011-0625-x

Abstract:Purpose: Diagnostic imaging procedures have continuously increased over the last decade and this trend may continue in coming years, creating a great impact on storage and retrieval capabilities of current PACS. Moreover, many smaller centers do not have financial resources or requirements that justify the acquisition of a traditional infrastructure. Alternative solutions, such as cloud computing, may help address this emerging need. Methods: A tremendous amount of ubiquitous computational power, such as that provided by Google and Amazon, are used every day as a normal commodity. Taking advantage of this new paradigm, an architecture for a Cloud-based PACS archive that provides data privacy, integrity, and availability is proposed. The solution is independent from the cloud provider and the core modules were successfully instantiated in examples of two cloud computing providers. Operational metrics for several medical imaging modalities were tabulated and compared for Google Storage, Amazon S3, and LAN PACS. Results: A PACS-as-a-Service archive that provides storage of medical studies using the Cloud was developed. The results show that the solution is robust and that it is possible to store, query, and retrieve all desired studies in a similar way as in a local PACS approach. Conclusion: Cloud computing is an emerging solution that promises high scalability of infrastructures, software, and applications, according to a "pay-as-you-go" business model. The presented architecture uses the cloud to setup medical data repositories and can have a significant impact on healthcare institutions by reducing IT infrastructures.

Daniel Agbesi Dzissah,Joong-Sun Lee,Hiroyuki Suzuki,Mie Nakamura,Takashi Obi

DOI: https://doi.org/10.4258/hir.2019.25.2.106

2019-01-01

Healthcare Informatics Research

Abstract:OBJECTIVES: Home-based nursing care services have increased over the past decade. However, accountability and privacy issues as well as security concerns become more challenging during care provider visits. Because of the heterogeneous combination of mobile and stationary assistive medical care devices, conventional systems lack architectural consistency, which leads to inherent time delays and inaccuracies in sharing information. The goal of our study is to develop an architecture that meets the competing goals of accountability and privacy and enhances security in distributed home-based care systems.METHODS: We realized this by using a context-aware approach to manage access to remote data. Our architecture uses a public certification service for individuals, the Japanese Public Key Infrastructure and Health Informatics-PKI to identify and validate the attributes of medical personnel. Both PKI mechanisms are provided by using separate smart cards issued by the government.RESULTS: Context-awareness enables users to have appropriate data access in home-based nursing environments. Our architecture ensures that healthcare providers perform the needed home care services by accessing patient data online and recording transactions.CONCLUSIONS: The proposed method aims to enhance healthcare data access and secure information delivery to preserve user's privacy. We implemented a prototype system and confirmed its feasibility by experimental evaluation. Our research can contribute to reducing patient neglect and wrongful treatment, and thus reduce health insurance costs by ensuring correct insurance claims. Our study can provide a baseline towards building distinctive intelligent treatment options to clinicians and serve as a model for home-based nursing care.

B J Liu,F Cao,M Z Zhou,G Mogel,L Documet

DOI: https://doi.org/10.1016/s0895-6111(02)00090-3

Abstract:PACS is widely used in hospitals and is considered a mission critical system for around-the-clock daily clinical operation. Scheduled or unscheduled downtime of the main PACS archive storage or server could potentially cripple the entire PACS operation. This is especially the case in a filmless hospital environment. Therefore, in a downtime event, it is most desirable for users to have only a minimal performance impact without interruption of clinical data flow or loss of data and to have available historical PACS studies. This paper summarizes some of the developments in the design and implementation of a reliable PACS that insures maximum uptime for end users while preserving the integrity of the PACS data and making it available during downtime events. It also details strategy for developing proper clinical workflow contingency procedures when a scheduled downtime event to the main archive storage and server occurs. Specifically, the design and implementation of a fault-tolerant (FT) main archive server, the development of a FT back-up archive using an application service provider (ASP) model, and the clinical experiences while upgrading a main archive server and migrating the stored PACS data to new storage media will be discussed.

Pascal Theriault-Lauzier,Denis Cobin,Olivier Tastet,Elodie Labrecque Langlais,Bahareh Taji,Guson Kang,Aun-Yeong Chong,Derek So,An Tang,Judy Wawira Gichoya,Sarath Chandar,Pierre-Luc Déziel,Julie G Hussin,Samuel Kadoury,Robert Avram

DOI: https://doi.org/10.1016/j.cjca.2024.05.025

Abstract:The potential of artificial intelligence (AI) in medicine lies in its ability to enhance clinicians' capacity to analyse medical images, thereby improving diagnostic precision and accuracy and thus enhancing current tests. However, the integration of AI within health care is fraught with difficulties. Heterogeneity among health care system applications, reliance on proprietary closed-source software, and rising cybersecurity threats pose significant challenges. Moreover, before their deployment in clinical settings, AI models must demonstrate their effectiveness across a wide range of scenarios and must be validated by prospective studies, but doing so requires testing in an environment mirroring the clinical workflow, which is difficult to achieve without dedicated software. Finally, the use of AI techniques in health care raises significant legal and ethical issues, such as the protection of patient privacy, the prevention of bias, and the monitoring of the device's safety and effectiveness for regulatory compliance. This review describes challenges to AI integration in health care and provides guidelines on how to move forward. We describe an open-source solution that we developed that integrates AI models into the Picture Archives Communication System (PACS), called PACS-AI. This approach aims to increase the evaluation of AI models by facilitating their integration and validation with existing medical imaging databases. PACS-AI may overcome many current barriers to AI deployment and offer a pathway toward responsible, fair, and effective deployment of AI models in health care. In addition, we propose a list of criteria and guidelines that AI researchers should adopt when publishing a medical AI model to enhance standardisation and reproducibility.

Stephen J Tipton,Sara Forkey,Young B Choi

DOI: https://doi.org/10.1007/s10916-016-0465-x

Abstract:This paper examines various methods encompassing the authentication of users in accessing Electronic Medical Records (EMRs). From a methodological perspective, multiple authentication methods have been researched from both a desktop and mobile accessibility perspective. Each method is investigated at a high level, along with comparative analyses, as well as real world examples. The projected outcome of this examination is a better understanding of the sophistication required in protecting the vital privacy constraints of an individual's Protected Health Information (PHI). In understanding the implications of protecting healthcare data in today's technological world, the scope of this paper is to grasp an overview of confidentiality as it pertains to information security. In addressing this topic, a high level overview of the three goals of information security are examined; in particular, the goal of confidentiality is the primary focus. Expanding upon the goal of confidentiality, healthcare accessibility legal aspects are considered, with a focus upon the Health Insurance Portability and Accountability Act of 1996 (HIPAA). With the primary focus of this examination being access to EMRs, the paper will consider two types of accessibility of concern: access from a physician, or group of physicians; and access from an individual patient.

Steve G Langer

DOI: https://doi.org/10.1007/s10278-016-9913-x

Abstract:In 1999-2003, SIIM (then SCAR) sponsored the creation of several special topic Primers, one of which was concerned with computer security. About the same time, a multi-society collaboration authored an ACR Guideline with a similar plot; the latter has recently been updated. The motivation for these efforts was the launch of Health Information Portability and Accountability Act (HIPAA). That legislation directed care providers to enable the portability of patient medical records across authorized medical centers, while simultaneously protecting patient confidentiality among unauthorized agents. These policy requirements resulted in the creation of numerous technical solutions which the above documents described. While the mathematical concepts and algorithms in those papers are as valid today as they were then, recent increases in the complexity of computer criminal applications (and defensive countermeasures) and the pervasiveness of Internet connected devices have raised the bar. This work examines how a medical center can adapt to these evolving threats.

Joseph E Chasteen,Gretchen Murphy,Arden Forrey,David Heid

2004-08-15

Abstract:This article reviews the issues related to the Health Insurance Portability & Accountability Act (HIPAA) security rule that apply to dental practice. The security rule specifically addresses individually identifiable health information that is transmitted or maintained in electronic media. System security must be applied to the entire technical infrastructure for the practice environment as well as to the work culture on a daily basis and must be thought of as an enterprise asset. Security refers to all of the policies, procedures, tools, and techniques used to assure that privacy and confidentiality are adequately addressed in a healthcare system. HIPAA requires all covered entities that transmit or maintain electronic health information perform, and document, a risk assessment for security and develop a security plan to address major areas of concern. A self-assessment tool is provided in this article.