Events Calendar

Today
Mon
Tue
Wed
Thu
Fri
Sat
Sun
M
T
W
T
F
S
S
31
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
1
2
3
4
Natural, Traditional & Alternative Medicine
Natural, Traditional & Alternative Medicine
2021-06-07 - 2021-06-08    
All Day
Natural, Traditional and Alternative Medicine mainly focuses on the latest and exciting innovations in every area of Natural Medicine & Natural Products, Complementary and Alternative [...]
More Info
Advances In Natural Medicines, Nutraceuticals & Neurocognition
Advances In Natural Medicines, Nutraceuticals & Neurocognition
2021-06-11 - 2021-06-12    
All Day
The two-days meeting goes to be an occurrence to appear forward to for its enlightening symposiums & workshops from established consultants of the sphere, exceptional [...]
More Info
Automation and Artificial Intelligence
Automation and Artificial Intelligence
2021-06-15 - 2021-06-16    
All Day
Conference Series invites all the experts and researchers from the Automation and Artificial Intelligence sector all over the world to attend “2nd International Conference on [...]
More Info
Green Chemistry and Technology 2021
Green Chemistry and Technology 2021
2021-06-23 - 2021-06-24    
All Day
Green Chemistry and Technology is a global overview with the Theme:: “Sustainable Chemistry and its key role in waste management and essential public service to [...]
More Info
Food Science & Nutrition
Food Science & Nutrition
2021-06-25 - 2021-06-26    
All Day
Food Science is a multi-disciplinary field involving chemistry, biochemistry, nutrition, microbiology, and engineering to give one the scientific knowledge to solve real problems associated with [...]
More Info
Food Safety and Health
Food Safety and Health
2021-06-28 - 2021-06-29    
All Day
The main objective is to bring all the leading academic scientists, researchers and research scholars together to exchange and share their experiences and research results [...]
More Info
Food Microbiology
Food Microbiology
2021-06-28 - 2021-06-29    
All Day
This conference provide a platform to share the new ideas and advancing technologies in the field of Food Microbiology and Food Technology. The objective of [...]
More Info
Events on 2021-06-07
Natural, Traditional & Alternative Medicine
Natural, Traditional & Alternative Medicine
7 Jun 21
Events on 2021-06-11
Advances In Natural Medicines, Nutraceuticals & Neurocognition
Advances In Natural Medicines, Nutraceuticals & Neurocognition
11 Jun 21
Events on 2021-06-15
Automation and Artificial Intelligence
Automation and Artificial Intelligence
15 Jun 21
Events on 2021-06-23
Green Chemistry and Technology 2021
Green Chemistry and Technology 2021
23 Jun 21
Events on 2021-06-25
Food Science & Nutrition
Food Science & Nutrition
25 Jun 21
Events on 2021-06-28
Food Safety and Health
Food Safety and Health
28 Jun 21
Food Microbiology
Food Microbiology
28 Jun 21
Latest News

Aug 08 : OIG Finds Privacy and Security Risks with ONC EHR Certification Process

August 8, 2014
oig
It is ironic to learn the Office of Inspector General (OIG) believes the Office of the National Coordinator for Health Information Technology (ONC) essentially has an insufficient compliance program to maintain the privacy and security of the protected health information (PHI) hosted by electronic health records (EHR).In an August 2014 report (A-06-11-00063), OIG concluded that the process ONC uses to certify EHR is not sufficient to ensure the privacy and security of the EHR PHI.I have attached a link to the OIG report and included regarding the findings and recommendations of the OIG.

WHAT WE FOUND

ONC’s oversight of the ATCBs did not fully ensure that test procedures and standards could adequately secure and protect electronic patient information contained in EHRs. Specifically, ONC did not ensure that the ATCBs:

  • developed procedures to periodically evaluate whether certified EHRs continued to meet Federal standards and
  • developed a training program to ensure that their personnel were competent to test and certify EHRs and to secure proprietary or sensitive EHR information.

The ATCBs’ standards and procedures for testing and certifying EHRs met all NIST test procedure requirements that ONC approved. However, those NIST test procedures were not sufficient to ensure that EHRs would adequately secure and protect patient health information; in particular, the procedures allowed ATCBs to certify EHRs that demonstrated the use of a single-character password during testing. In addition, the NIST test procedures did not address common security issues, such as, but not limited to, password complexity and/or logging emergency access or user privilege changes.

WHAT WE RECOMMEND

To ensure that each patient’s health information in EHRs is secure and protected, we recommend that ONC require the ATCBs to:

  • develop procedures to periodically evaluate whether certified EHRs continue to meet Federal standards and
  • develop a training program to ensure that their personnel are competent to test and certify EHRs and to secure proprietary or sensitive EHR information.

We also recommend that ONC work with NIST to strengthen EHR test procedure requirements so that ATCBs can ensure during testing that EHR vendors incorporate a baseline set of security and privacy features into the development of EHRs to address common security issues.

Source

Post Views: 220