In the medical field, huge amount of clinical data is stored for the needs of e-records, referrals, recipes, test results,... It is crucial that stored data is accessible to authorized persons at any time, from any location. The problem is that stored data contains sensitive personal information of patients, and consequently storing clinical data poses a security risk.
Clinical data needs to be protected as good as possible, but at the same time, this must not affect the functionality of the software solution from the user's point of view.
The goal of this thesis is to find the possible approaches to solution of this problem and to describe a concept of storing sensitive clinical data in the database, based on symmetric encryption. To prove the adequacy of the concept to solve the above described problem, a prototype must be developed.
|