Title

Healthcare data breaches: Implications for digital forensic readiness

Document Type

Journal Article

Publication Title

Journal of Medical Systems

ISSN

1573-689X

Volume

43

Issue

1

First Page

7

Last Page

7

PubMed ID

30488291

Publisher

Kluwer Academic/Plenum Publishers

School

School of Science

Comments

Originally published as:

Chernyshev, M., Zeadally, S., & Baig, Z. (2019). Healthcare data breaches: Implications for digital forensic readiness. Journal of Medical Systems, 43(7).

Original article available here.

Abstract

While the healthcare industry is undergoing disruptive digital transformation, data breaches involving health information are not usually the result of integration of new technologies. Based on published industry reports, fundamental security safeguards are still considered to be lacking with many documented data breaches occurring as the result of device and equipment theft, human error, hacking, ransomware attacks and misuse. Health information is considered to be one of the most attractive targets for cybercriminals due to its inherent sensitivity, but digital investigations of incidents involving health information are often constrained by the lack of the necessary infrastructure forensic readiness. Following the analysis of healthcare data breach causes and threats, we describe the associated digital forensic readiness challenges in the context of the most significant incident causes. With specific focus on privilege misuse, we present a conceptual architecture for forensic audit logging to assist with capture of the relevant digital artefacts in support of possible future digital investigations.

DOI

10.1007/s10916-018-1123-2

Share

 
COinS