KommITS' Technology Days
On 18–19 September, SecMaker participated in KommITS' Technology D...
How do we protect the privacy of those receiving care in a fragmented health care sector? How can schools, social services, medical services, specialist clinics, private providers and family members collaborate in a secure chain of care? The lack of interoperable systems means that telephone calls, e-mails and letters will often be issued with security defects. The employees in the chain of care require a new approach and a comprehensive view of the patient across organisational boundaries.
In one area we have come a long way and are now seen as a forerunner. Sweden has been building up a national infrastructure for secure login for 10 years. The HSA (Hälso- och Sjukvårdens Adressregister – health care professional database) is a solid platform to build on. It consists of an electronic database containing quality-assured information on persons, departments and units in municipalities, county councils and at private care providers. The database contains information on over 500,000 professionals. The HSA allows efficient procedures to be introduced at a time of increased demand for authorisation protection and access controls. The information in the HSA is registered and quality-checked so that only authorised persons can access the information for which they are authorised. This allows secure login with smart SITHS cards.
However, login must also be fast and simple. In one health region, login time to the computer at start-up in the morning was measured at six minutes. Logging in to the most frequently used systems takes several minutes longer. Users log in sometimes using a password and sometimes using a smart card. Logout can take several minutes when the user wants to take a break, goes to lunch or finishes work for the day. Fast user switching is required when several people share a single computer. Otherwise, users work in each other’s login, which negates the whole idea of the national IT security solution.
In a well thought-out IT infrastructure, smart cards can reduce login times to seconds and make employees’ everyday work more efficient. They make it easier to comply with the organisation’s security policies and productivity also increases. Below are a few examples of applications that use smart cards and software solutions that already exist in the Swedish health care system:
The use of mobile health care systems will increase considerably. A tablet makes documentation easier, faster and more secure in care of the elderly and when making rounds. Login using a smart card enables user authentication and digital signing of medical certificates and prescriptions. The card identifies the user clearly and unequivocally.
These are major steps towards a secure, efficient chain of care:
Building up infrastructure takes time, but we have already made quite a lot of progress. It will guarantee long-term solutions that make work faster, simpler and more secure for a hard-pressed body of professionals. Now is the time to accelerate the work on change.
Share this article