Wednesday, February 6, 2008

PHI Spy, With My Little Eye...

Just how hard is it to build a secure health information exchange? Apparently pretty hard, because as reported by FCW foreign agencies are now working hard on exfiltrating civilian medical data from data warehouses.

The CDC has been hit, as well as a Military Health System server containing Tricare data. And, according to DHS, more and more attacks are coming against the health industry.

Hopefully, all these interoperable health data exchange systems will use open standards so we can all scrutinize them for security and get them fixed quickly when holes show up. Either way, it;s certainly something to think about as we make the slow crawl to electronic health records.


Matt said...

Sure, there's that. Plus a much scarier group wants your health care information -- health care marketers (such as myself).

Jaz said...


Nicely put.

Hence the need for all of us to be able to section off which parts of our record we want made available to whom. I'd be fine with you knowing I'm in the market for massage therapy, but not mental health product. Someone else might have a completely different outlook, but the point is we should have as much control over our medical history as we do our credit history. No more, no less.

Matt said...

Agreed. (I'd personally like slightly more.)

Disclosures and Disclaimers


My employer is compensated through funding to provide analytical research, technology solutions, and Web-based public and private health care performance reports by the State of New York, the State of Illinois, the Centers for Medicare & Medicaid Services, the Agency for Healthcare Research and Quality, the Commonwealth Fund and Bridges to Excellence. I am not being compensated by any of these organisations to create articles for or make edits to this Web site or any other medium; and all posts authored by me are as an individual and do not represent my employer or the agencies I work for.