Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR. - See you again, readers American Health. In Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR., we want to give you about . So come to this site if you want to look for reference about home and interior design

Title : Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR.
link : Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR.

Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR.

This appeared last week:

20 September 2017

Fresh fears raised over MyHR security

Posted by Julie Lambert

IT experts have challenged assurances that an alleged theft of Medicare numbers has no bearing on the security of the My Health Record. 

Monash University lecturer Robert Merkel, a specialist in software testing and fault analysis, told a parliamentary inquiry last week that he believed the most likely source of the breach was the Department of Human Services’ HPOS system, which doctors log into via the PKI or PRODA channels.  

He said he was concerned that ease of access for health practitioners had taken priority over security in the design of the health IT system, leading to the breach which resulted in Medicare numbers being offered for sale on the internet.  

“Without going into the details of the weaknesses, both of those systems are less secure than they should be, and in the case of PRODA, the weaknesses are a plausible means by which criminals could gain illegitimate access to Medicare details,” he said.  

Dr Merkel said the HPOS system seemed to demonstrate a “disconnect” between decision-makers and IT security expertise.  

“Secondly, it prioritises convenience for healthcare providers over IT security,” he said. 

“So I’m concerned that these two factors are likely to apply, or are, indeed, already baked into the design of the My Health Record. I think that serious security and privacy problems with My Health Record are inevitable.”

Paul Power, an IT consultant and principal of eHealth Privacy Australia, said reliance on a centralised data base with more than 100,000 legitimate access points made the MyHR system difficult to defend. 

“The possibility of securing over 100,000 GP PCs is close to zero, which means the probability of it being hacked is close to 100%,” he said. 

Officials from the Australian Digital Health Agency and the DHS also gave evidence at Friday’s hearing of the Senate Finance and Public Administration References Committee.

They said the data breach, revealed in the media in early July, had no relationship to the MyHR.  

Caroline Edwards, deputy secretary of health and aged care at DHS, said the intrusion appeared to be the work of “person or persons” illegally tapping into the channel used by doctors to access Medicare numbers.  

More here:

http://medicalrepublic.com.au/fears-raised-myhr-security/11127

The article is based on submissions to the Senate Inquiry on the Medicare Data Breach:

Here is the link to the enquiry home page:

http://www.aph.gov.au/Parliamentary_Business/Committees/Senate/Finance_and_Public_Administration/medicareinformation

The submissions make interesting reading as does the transcript of the questioning by the Senators

Here is the overall link and those who responded:

http://www.aph.gov.au/Parliamentary_Business/Committees/Senate/Finance_and_Public_Administration/medicareinformation/Submissions

1              Centre for Internet Safety (PDF 47 KB)          

2              Office of the Australian Information Commissioner (PDF 4429 KB)            

3              RACGP (PDF 380 KB)      

4              Australian Digital Health Agency (PDF 153 KB)    

5              Dr Culnane, Dr Rubinstein, Dr Teague  (PDF 388 KB)        

6              Professor Danuta Mendelson and Dr Gabrielle Wolf (PDF 907 KB)            

7              Department of Human Services (PDF 390 KB)     

8              eHealth Privacy Australia (PDF 423 KB)  

9              Future Wise Australia (PDF 2040 KB)       

10           University of Newcastle Legal Centre (PDF 132 KB)          

11           Australian Medical Association (PDF 149 KB)       

12           Dr David Glance (PDF 203 KB)    

You can download as a single .zip file and browse at your leisure or click the hyperlinks.

The Committee reports October 16. It will be fascinating to see what they make of all the submissions and testimony.

David.

How do you think about Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR.

We hope all of you can enjoy to read the article about Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR.. Be happy and Good Luck. Don't forget come back to this site

You have read Despite All The Bluff And Bluster Not Everyone Is Convinced Regarding The Security Of The MyHR. with the link https://topamericanhealth.blogspot.com/2017/09/despite-all-bluff-and-bluster-not.html

Tweet