Hospital computer networks, unlike humans, are not born with immune systems to protect themselves from virus attacks, hackers, or other maladies lurking in cyberspace. Yet networks do not exist in sterile bubbles either. Those in charge of protecting a
Hospital computer networks, unlike humans, are not born with immune systems to protect themselves from virus attacks, hackers, or other maladies lurking in cyberspace.
Yet networks do not exist in sterile bubbles either. Those in charge of protecting a network and its assets - while still providing service - must find the elusive balance between security and user benefit.
Sam Dwyer, Ph.D., a professor of radiology at the University of Virginia, lists several questions that must be answered in planning network security:
?What's being protected?
?What's the value of these assets?
?What vulnerabilities exist?
?Who's most likely to attack and by what methods?
?What would the consequences of a successful attack be?
?What protection is available?
"The depth of detail of network functionality, like the study of human anatomy, can be highly involved," said Thomas Siu, a network analyst at NASA's Glenn Research Center in Brookpark, OH. "Luckily, people don't die in these situations. But when medical care is dependent upon confidentiality, integrity, and availability of information accessed via the network, the management of security risks takes on greater significance."
Siu recommends constructing a network defense system that relies on multiple layers to provide security from threats from outside its perimeter as well as within.
"The security layers of perimeter defense, internal diagnostics, and user practices make up the high-level structure of a very detailed environment that protects the information within the network," he said.
The term 'perimeter defense' implies a firewall, a bastion of defense against outside invaders, Siu said.
"Such a defense consists of multiple systems that work synchronously to enforce an access-control policy, to permit only certain network traffic to pass through the boundary," he said.
With perimeter security, you can either permit all services but deny only specific risky traffic, or you can deny all traffic and permit only specifically allowed traffic. The first policy means users may introduce security risks to the network. The second policy avoids those risks, but users are disempowered, Siu said.
Inside the perimeter, some form of intrusion detection is important.
"It won't do you much good to know how people are likely to break into your network if you don't have a way of knowing when an attack is taking place," Dwyer said.
Emerging AI Algorithm Shows Promise for Abbreviated Breast MRI in Multicenter Study
April 25th 2025An artificial intelligence algorithm for dynamic contrast-enhanced breast MRI offered a 93.9 percent AUC for breast cancer detection, and a 92.3 percent sensitivity in BI-RADS 3 cases, according to new research presented at the Society for Breast Imaging (SBI) conference.
The Reading Room Podcast: Current Perspectives on the Updated Appropriate Use Criteria for Brain PET
March 18th 2025In a new podcast, Satoshi Minoshima, M.D., Ph.D., and James Williams, Ph.D., share their insights on the recently updated appropriate use criteria for amyloid PET and tau PET in patients with mild cognitive impairment.
Can Abbreviated Breast MRI Have an Impact in Assessing Post-Neoadjuvant Chemotherapy Response?
April 24th 2025New research presented at the Society for Breast Imaging (SBI) conference suggests that abbreviated MRI is comparable to full MRI in assessing pathologic complete response to neoadjuvant chemotherapy for breast cancer.
Clarius Mobile Health Unveils Anterior Knee Feature for Handheld Ultrasound
April 23rd 2025The T-Mode Anterior Knee feature reportedly offers a combination of automated segmentation and real-time conversion of grayscale ultrasound images into color-coded visuals that bolster understanding for novice ultrasound users.