Deakin University
Browse

File(s) under permanent embargo

Healthcare Data Breaches: Implications for Digital Forensic Readiness

Version 2 2024-06-05, 05:24
Version 1 2019-04-23, 12:07
journal contribution
posted on 2024-06-05, 05:24 authored by Maxim (Max) ChernyshevMaxim (Max) Chernyshev, S Zeadally, Zubair BaigZubair Baig
While the healthcare industry is undergoing disruptive digital transformation, data breaches involving health information are not usually the result of integration of new technologies. Based on published industry reports, fundamental security safeguards are still considered to be lacking with many documented data breaches occurring as the result of device and equipment theft, human error, hacking, ransomware attacks and misuse. Health information is considered to be one of the most attractive targets for cybercriminals due to its inherent sensitivity, but digital investigations of incidents involving health information are often constrained by the lack of the necessary infrastructure forensic readiness. Following the analysis of healthcare data breach causes and threats, we describe the associated digital forensic readiness challenges in the context of the most significant incident causes. With specific focus on privilege misuse, we present a conceptual architecture for forensic audit logging to assist with capture of the relevant digital artefacts in support of possible future digital investigations.

History

Journal

Journal of Medical Systems

Volume

43

Article number

ARTN 7

Pagination

1 - 12

Location

United States

ISSN

0148-5598

eISSN

1573-689X

Language

English

Publication classification

C1.1 Refereed article in a scholarly journal

Copyright notice

2018, Springer Science+Business Media, LLC, part of Springer Nature

Issue

1

Publisher

SPRINGER