To view the report in PDF format, you first need to download the free Adobe Acrobat Viewer. The Acrobat Viewer will launch the file so that
you can see the document on your monitor and then print it. Download
Adobe Acrobat.
Download the Report
|
|
September 2007
 eHealth Vulnerability Reporting Program: Executive Briefing Document
In September 2007, the eHealth Vulnerability Reporting Program released its 2007 Industry Review report assessing the security risks associated with electronic health record (EHR) systems. The study evaluated current industry information security practices, assessed level of risk related to EHR systems, benchmarked healthcare information security practices against other industries, and produced a set of recommendations relating to activities beneficial to protecting information systems in the healthcare industry.
They found that vulnerabilities could be identified using standard tools and techniques and that no industry organization definitively has the responsibility to address security issues. The study was supported by various working groups and included a survey of over 850 provider organizations. The overall finding from the study concludes commercial EHR systems are vulnerable to exploitation given existing industry development and disclosure practices.
|
OPEN MINDS