Share Email Print

Proceedings Paper

Safe teleradiology: information assurance as project planning methodology
Author(s): Jeff R. Collmann; Adil Alaoui; Dan Nguyen; David Lindisch
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

This project demonstrates use of OCTAVE, an information security risk assessment method, as an approach to the safe design and planning of a teleradiology system. By adopting this approach to project planning, we intended to provide evidence that including information security as an intrinsic component of project planning improves information assurance and that using information assurance as a planning tool produces and improves the general system management plan. Several considerations justify this approach to planning a safe teleradiology system. First, because OCTAVE was designed as a method for retrospectively assessing and proposing enhancements for the security of existing information management systems, it should function well as a guide to prospectively designing and deploying a secure information system such as teleradiology. Second, because OCTAVE provides assessment and planning tools for use primarily by interdisciplinary teams from user organizations, not consultants, it should enhance the ability of such teams at the local level to plan safe information systems. Third, from the perspective of sociological theory, OCTAVE explicitly attempts to enhance organizational conditions identified as necessary to safely manage complex technologies. Approaching information system design from the perspective of information security risk management proactively integrates health information assurance into a project’s core. This contrasts with typical approaches that perceive “security” as a secondary attribute to be “added” after designing the system and with approaches that identify information assurance only with security devices and user training. The perspective of health information assurance embraces so many dimensions of a computerized health information system’s design that one may successfully deploy a method for retrospectively assessing information security risk as a prospective planning tool. From a sociological perspective, this approach enhances the general conditions as well as establishes specific policies and procedures for reliable performance of health information assurance.

Paper Details

Date Published: 19 May 2003
PDF: 11 pages
Proc. SPIE 5033, Medical Imaging 2003: PACS and Integrated Medical Information Systems: Design and Evaluation, (19 May 2003); doi: 10.1117/12.480455
Show Author Affiliations
Jeff R. Collmann, Georgetown Univ. (United States)
Adil Alaoui, Georgetown Univ. (United States)
Dan Nguyen, Georgetown Univ. (United States)
David Lindisch, Georgetown Univ. (United States)

Published in SPIE Proceedings Vol. 5033:
Medical Imaging 2003: PACS and Integrated Medical Information Systems: Design and Evaluation
H. K. Huang; Osman M. Ratib, Editor(s)

© SPIE. Terms of Use
Back to Top