Security of electronic medical record in integration process

With the implementation and integration of the new version of electronic medical record, the number of data which are exchanging between original systems has been increased to a large extent. The nature of the hospital determines that hospital information system must be running all year round. Because of that, high requirements are put forward in the safe running of hospital information system. In fact, electronic medical record is the original record of medical procedures and it often includes patients’ personal information and treatment details and has a high requirement in data integrity. As a result, the security of electronic medical record is extremely important.
Security of electronic medical record The integration of multiple systems under the new electronic medical record framework enhances system function. Meanwhile, this integration improves system complexity, leading to the fall of efficiency. Therefore, we’d like to analyze the security of electronic medical record in integration process from three aspects: interface security, synchronization security and unsolved security problem. Firstly, we will talk about the interface security of electronic medical record. 1.  Interface security: in the information exchange process of various clinical information systems, different permissions are required to transfer, write, modify and delete data in different systems. In this situation, interface security is very significant. We have to set these permissions after taking the using state of subsystems into consideration comprehensively. We should focus on both efficiency and interface security at the same time. 2.  Synchronization security: what is synchronization security? In fact, a lot of data in electronic medical record – the integrated platform are from other clinical information systems. Data in a certain clinical information system may be incorrect sometimes in the using process. At this time, timely automatic or manual synchronization is needed after the incorrect data have been modified in its original system. The new version of electronic medical record is able to synchronize data among various clinical information systems. Therefore, the ensuring of synchronization security is the premise to avoid unsafe factors in the integration process of various clinical information systems. 3.  Unsolved security problem: since the new version of electronic medical record is not perfect, there are still many unsolved security problems in the integration process. The first unsolved security problem is that the application of new technology is not enough. Based on the cryptography principles, digital signature is able to provide secure authentication of electronic information so as to protect data effectively in the login process of electronic medical record. However, since credible third-party certification center hasn’t been built up yet, this technology fails to be implemented in the new version of electronic medical record. The second unsolved problem is that effective implementation and maintenance of the new version of electronic medical record are hard to achieve. We have mentioned that although the system functions of the new version of electronic medical record have been enhanced, its system complexity is improved as well. Therefore, the implementation process and maintenance process of the new version of electronic medical record have particularly high requirements in technique and personnel. The third unsolved problem is that supports for policies and regulations as well as ancillary facilities are inadequate. As a result, we must try harder to improve the security of electronic medical records.