• Korea Journal of Hospital Management
• /
• v.8 no.2
• /
• pp.111-129
• /
• 2003

This study discusses the direction of legislation to strengthen the legal protection of medical records privacy in information age. The legislation trends on privacy protection of medical records in European Union and United States are analysed and the current law and regulation of Korea on medical records are compared. The issues discussed include the ownership of medical records, the patient's right of access to medical records, medical information publication for other than treatment or insurance processing use, confidentiality responsibility of provider organizations, medical information management in provider organizations, penalty for the unlawful use of patient information. This study concludes that the patients' right on medical record and provider organization's responsibility in processing patient information should be strengthened in order to protect patients' privacy and to conform to the international standard on medical record protection in the information age.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.7 no.5
• /
• pp.967-979
• /
• 2013

Now a day, Wireless Sensor Networks (WSNs) are being widely used in different areas one of which is healthcare services. A wireless medical sensor network senses patient's vital physiological signs through medical sensor-nodes deployed on patient's body area; and transmits these signals to devices of registered medical professionals. These sensor-nodes have low computational power and limited storage capacity. Moreover, the wireless nature of technology attracts malicious minds. Thus, proper user authentication is a prime concern before granting access to patient's sensitive and private data. Recently, P. Kumar et al. claimed to propose a strong authentication protocol for healthcare using Wireless Medical Sensor Networks (WMSN). However, we find that P. Kumar et al.'s scheme is flawed with a number of security pitfalls. Information stored inside smart card, if extracted, is enough to deceive a valid user. Adversary can not only access patient's physiological data on behalf of a valid user without knowing actual password, can also send fake/irrelevant information about patient by playing role of medical sensor-node. Besides, adversary can guess a user's password and is able to compute the session key shared between user and medical sensor-nodes. Thus, the scheme looses message confidentiality. Additionally, the scheme fails to resist insider attack and lacks user anonymity.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2002.05a
• /
• pp.366-372
• /
• 2002

Tele-medicine and emergency medical system are necessary for moving from an accidental point or far distance to a hospital and emergency treatment or home treatment before a hospital. Emergency treatment is extremely important in the case of death before arriving a hospital and deformed or disabled by medical treatment delay. A necessary element for this medical system is the emergency communication system. This system is on preparing for an ability of furnishing patient status to a corresponding health service by monitoring the patient at an ambulance of the accident place. This is the transportation of basic biological information of a patient to a medical center by wireless communication system and the corresponding hospital or medical center examine the patient by monitoring, then they can send emergency medical order to the patient for emergency treatment. The TRS is most efficient way of emergency medical communication system, which is currently used with popularity. In this paper studied simultaneously a way of detecting and transporting bio-logical signals, and monitoring of transporting data with communication of voice in the accident place or ambulance.

• The Korean Journal of Emergency Medical Services
• /
• v.25 no.2
• /
• pp.113-128
• /
• 2021

Purpose: This study sought to analyze perceptions and attitudes regarding patient personal information protection according to the general characteristics of paramedic students and their clinical practice experience. Methods: A total of 215 paramedic students from G university in I metropolitan city and D university in G do were surveyed. Frequency analysis, percentage analysis, and one-way distribution analysis were conducted using the software SPSS version 23.0. Results: First, recognition regarding the operation of laws and systems related to medical law and personal information protection was high among students who had no clinical practice experience, and there were no differences with regard to students' general characteristics. Second, the level of recognition regarding patient personal information protection and exposure did not differ depending on students' general characteristics and clinical practice experience. Conclusion: Based on the results of this study, students' recognition and attitude should be improved by carrying out continuous education on patient personal information protection. Furthermore, more specialized and systematic training related to patient personal information protection should be conducted to nurture appropriately trained paramedic students.

• The Korean Journal of Health Service Management
• /
• v.7 no.3
• /
• pp.213-224
• /
• 2013

The purpose of this study is to find out the most successful way for the protection of medical information focusing on the electronic medical record(EMR). In this study, every aspect of the EMR is reviewed in terms of the hospital management. In particular, definitions, major functions, strengths and weaknesses of the EMR are considered. This study also examines the general development of the EMR as well as the current situation of applying the EMR. Important issues such as the protection of patient Medical information, informed consent, and the customer-oriented hospital information system are discussed and interpreted in light of the introduction of the EMR into the area of the hospital management. Finally, in this paper Protection of medical information by major Issues on Patient medical information.

• Journal of Internet Computing and Services
• /
• v.21 no.4
• /
• pp.25-34
• /
• 2020

In the current medical information system, a system environment is constructed in which Biometric data generated by using IoT or medical equipment connected to a patient can be stored in a medical information server and monitored at the same time. Also, the patient's biometric data, medical information, and personal information after simple authentication using only the ID / PW via the mobile terminal of the medical staff are easily accessible. However, the method of accessing these medical information needs to be improved in the dimension of protecting patient's personal information, and provides a quick authentication system for first aid. In this paper, we implemented an automatic authentication system based on the patient's situation and evaluated its performance. Patient's situation was graded into normal and emergency situation, and the situation of the patient was determined in real time using incoming patient biometric data from the ward. If the patient's situation is an emergency, an emergency message including an emergency code is send to the mobile terminal of the medical staff, and they attempted automatic authentication to access the upper medical information of the patient. Automatic authentication is a combination of user authentication(ID/PW, emergency code) and mobile terminal authentication(medical staff's role, working hours, work location). After user authentication, mobile terminal authentication is proceeded automatically without additional intervention by medical staff. After completing all authentications, medical staffs get authorization according to the role of medical staffs and patient's situations, and can access to the patient's graded medical information and personal information through the mobile terminal. We protected the patient's medical information through limited medical information access by the medical staff according to the patient's situation, and provided an automatic authentication without additional intervention in an emergency situation. We performed performance evaluation to verify the performance of the implemented automatic authentication system.

• Journal of the Korea Society of Computer and Information
• /
• v.17 no.12
• /
• pp.251-258
• /
• 2012

The protection of medical information by major Issues on medical information to protect the individuals' privacy on medical information. Especially, Issues of medical service information, medical record, insurance, employment, Genetic technology including genetic test and screening, gene therapy and genetic enhancement is developing rapidly. Defensibility of medical information documentation is tested in the courts. medical information can be illicitly accessed from anywhere and transmitted across the quickly and with risk of detection. Once data is distributed on the internet, it may become available to anyone who wishes to purchase it, and it cannot be expunge. Patient privacy protection of medical information is controlled mostly by patient consent laws that define how and when a patient must consent before a physician may disclose the patient's medical information to anyone else. enterprise that offers consumers commodities or services is checking problem about customer information of management system is checking problem about customer information of management system essentially. Therefore, in this paper will find a way out to Protection of medical information by major Issues on medical information.

• The Korean Society of Law and Medicine
• /
• v.13 no.1
• /
• pp.91-123
• /
• 2012

Doctors and patients for the purpose of healing and treatment of disease through the contract will make a relationship. Doctors perform the medical practice for the state and illness of patient. Given that the patient did not cooperate in the doctor's medical practice, it is difficult to achieve the goal of disease healing. If the patient don't cooperate the medical care, and it is linked with a doctor's medical malpractice, patient's violation of obligation in medical cooperation is considered with negligence on the part of patients. However, this negligence should be limited to obvious cases that the patient's behavior is unreasonable although the doctor provides medical information to patients and induced the patient's response. Also, patient's violation of obligation in medical cooperation must result in adjusting the indemnification via a setoff of fault except the cases having causal relationship between doctor's fault and malpractice.

• Journal of Internet Computing and Services
• /
• v.18 no.6
• /
• pp.75-84
• /
• 2017

As there has been growing interests in PHR-based personalized health management project, various institutions recently explore safe methods of recording personal medical and health information. In particular, innovative medical solution can be realized when medical researchers and medical service institutes can generally get access to patient data. As EMR data is extremely sensitive, there has been no progress in clinical information exchange. Moreover, patients cannot get access to their own health data and exchange it with researchers or service institutions. It can be operated in terms of technology, yet policy environment are affected by state laws as well as Privacy and Security Policy. Blockchain technology-independent, in transaction, and under test-is introduced in the medical industry in order to settle these problems. In other words, medical organizations can grant preliminary approval on patient information exchange by using the safely encrypted and distributed Blockchain ledger and can be managed independently and completely by individuals. More apparently, medical researchers can gain access to information, thereby contributing to the scientific advance in rare diseases or minor groups in the world. In this paper, we focused on how to manage personal medical information and its protective use and proposes medical treatment exchange system for patients based on a permissioned Blockchain network for the safe PHR operation. Trusted Model for Sharing Medical Data (TMSMD), that is proposed model, is based on exchanging information as patients rely on hospitals as well as among hospitals. And introduce medical treatment exchange system for patients based on a permissioned Blockchain network. This system is a model that encrypts and records patients' medical information by using this permissioned Blockchain and further enhances the security due to its restricted counterfeit. This provides service to share medical information uploaded on the permissioned Blockchain to approved users through role-based access control. In addition, this paper presents methods with smart contracts if medical institutions request patient information complying with domestic laws by using the distributed Blockchain ledger and eventually granting preliminary approval for sharing information. This service will provide an independent information transaction and the Blockchain technology under test will be adopted in the medical industry.

• Journal of the Institute of Electronics and Information Engineers
• /
• v.51 no.10
• /
• pp.128-136
• /
• 2014

Recently, although exponentially growing the quantity of information that have been used and shared on internet networks, the patient information of each medical center have not been used and shared among medical centers due to the protection of patients privacy and the different database schema. To address this problem, we have studied the data structure of the patient information, the standard of medical information for patients we propose a patient information sharing system design that each medical center is able to use and share the patient information among medical centers in spite of different patient information systems with protecting patients privacy.