Healthcare data breaches: Implications for digital forensic readiness

Abstract

While the healthcare industry is undergoing disruptive digital transformation, data breaches involving health information are not usually the result of integration of new technologies. Based on published industry reports, fundamental security safeguards are still considered to be lacking with many documented data breaches occurring as the result of device and equipment theft, human error, hacking, ransomware attacks and misuse. Health information is considered to be one of the most attractive targets for cybercriminals due to its inherent sensitivity, but digital investigations of incidents involving health information are often constrained by the lack of the necessary infrastructure forensic readiness. Following the analysis of healthcare data breach causes and threats, we describe the associated digital forensic readiness challenges in the context of the most significant incident causes. With specific focus on privilege misuse, we present a conceptual architecture for forensic audit logging to assist with capture of the relevant digital artefacts in support of possible future digital investigations.

Document Type

Journal Article

Date of Publication

2019

ISSN

1573-689X

Volume

43

Issue

1

PubMed ID

30488291

Publication Title

Journal of Medical Systems

Publisher

Kluwer Academic/Plenum Publishers

School

School of Science

RAS ID

31064

Comments

Chernyshev, M., Zeadally, S., & Baig, Z. (2019). Healthcare data breaches: Implications for digital forensic readiness. Journal of Medical Systems, 43(7).

Available here.

Copyright

subscription content

First Page

7

Last Page

7

Share

 
COinS
 

Link to publisher version (DOI)

10.1007/s10916-018-1123-2