As sensitive healthcare data get distributed throughout and beyond the enterprise, unauthorized access, eavesdropping, masquerading, intrusion, and data integrity become more of a concern.Although ongoing research has sought to solve these security
As sensitive healthcare data get distributed throughout and beyond the enterprise, unauthorized access, eavesdropping, masquerading, intrusion, and data integrity become more of a concern.
Although ongoing research has sought to solve these security issues, these efforts so far have been in isolation, according to Vijay Kallepalli, a computer scientist at the University of Manitoba in Canada.
"To our knowledge, there is no evidence of work that studies the overall security components required for sharing radiology data and how these can be used together without degrading performance, scalability, and fault tolerance," Kallepalli said.
Some security architectures have been designed for hospitals, but these are restricted to sharing data within a single enterprise. Although existing technology to interconnect hospitals permits data sharing, some healthcare institutions are reluctant to share medical data because of the lack of proper security infrastructure.
To meet the need for broader and more comprehensive security measures, researchers at Manitoba configured a scalable, fault-tolerant, and well-performing security infrastructure for sharing DICOM images for distributed environments beyond the single enterprise. Hospitals can use it as a blueprint for sharing radiology data.
The model provides fine-grained access control, policy management, demographics filtering, log maintenance, and auditing constrained to the Canadian-Manitoban Personal Health Information Act (PHIA) of 1999, according to Kallepalli. PHIA is similar to the Health Insurance Portability and Accountability Act (HIPAA) in the U.S.
In the Manitoba prototype, an authentication engine performs user validation, an authorization engine provides access control, a log maintenance engine maintains log data, and a filtering engine replaces the demographics embedded in DICOM images with dummy values.
The model uses SSL (secure sockets layer, a protocol designed to provide secure communications on the Internet) for communication between client and security nodes to protect data from eavesdropping and to ensure data integrity.
"Our work is specific to radiology data, where the DICOM standard is used for communication," Kallepalli said.
DICOM Work Group-14 provides mechanisms for applications to perform integrity checks, secure authentication, and secure transmission of data. But the group defers access control, log maintenance, and auditing for future consideration.
Emerging AI Algorithm Shows Promise for Abbreviated Breast MRI in Multicenter Study
April 25th 2025An artificial intelligence algorithm for dynamic contrast-enhanced breast MRI offered a 93.9 percent AUC for breast cancer detection, and a 92.3 percent sensitivity in BI-RADS 3 cases, according to new research presented at the Society for Breast Imaging (SBI) conference.
The Reading Room Podcast: Current Perspectives on the Updated Appropriate Use Criteria for Brain PET
March 18th 2025In a new podcast, Satoshi Minoshima, M.D., Ph.D., and James Williams, Ph.D., share their insights on the recently updated appropriate use criteria for amyloid PET and tau PET in patients with mild cognitive impairment.
Can Abbreviated Breast MRI Have an Impact in Assessing Post-Neoadjuvant Chemotherapy Response?
April 24th 2025New research presented at the Society for Breast Imaging (SBI) conference suggests that abbreviated MRI is comparable to full MRI in assessing pathologic complete response to neoadjuvant chemotherapy for breast cancer.
Clarius Mobile Health Unveils Anterior Knee Feature for Handheld Ultrasound
April 23rd 2025The T-Mode Anterior Knee feature reportedly offers a combination of automated segmentation and real-time conversion of grayscale ultrasound images into color-coded visuals that bolster understanding for novice ultrasound users.