Explanation-Based Auditing.
dc.contributor.author | Fabbri, Daniel | en_US |
dc.date.accessioned | 2013-06-12T14:15:43Z | |
dc.date.available | NO_RESTRICTION | en_US |
dc.date.available | 2013-06-12T14:15:43Z | |
dc.date.issued | 2013 | en_US |
dc.date.submitted | 2013 | en_US |
dc.identifier.uri | https://hdl.handle.net/2027.42/97860 | |
dc.description.abstract | Recent U.S. legislation such as the Affordable Care Act, HIPAA and HITECH outline rules governing the appropriate use of personal health information (PHI). Unfortunately, current technologies do not meet the security requirements of these regulations. In particular, while electronic medical records (EMR) systems maintain detailed audit logs that record each access to PHI, the logs contain too many accesses for compliance officers to practically monitor, putting PHI at risk. This thesis presents the explanation-based auditing system, which aims to filter appropriate accesses from the audit log so compliance officers can focus their efforts on suspicious behavior. The main observation of the system is that most appropriate accesses to medical records occur for valid clinical or operational reasons in the process of treating a patient, while inappropriate accesses do not. This thesis discusses how explanations for accesses (1) capture these clinical and operational reasons, (2) can be mined directly from the EMR database, (3) can be enhanced by filling-in frequently missing types of data, and (4) can drastically reduce the auditing burden. | en_US |
dc.language.iso | en_US | en_US |
dc.subject | Data Security | en_US |
dc.title | Explanation-Based Auditing. | en_US |
dc.type | Thesis | en_US |
dc.description.thesisdegreename | PhD | en_US |
dc.description.thesisdegreediscipline | Computer Science and Engineering | en_US |
dc.description.thesisdegreegrantor | University of Michigan, Horace H. Rackham School of Graduate Studies | en_US |
dc.contributor.committeemember | Lefevre, Kristen R. | en_US |
dc.contributor.committeemember | Hedstrom, Margaret L. | en_US |
dc.contributor.committeemember | Jagadish, Hosagrahar V. | en_US |
dc.contributor.committeemember | Hanauer, David Alan | en_US |
dc.contributor.committeemember | Cafarella, Michael John | en_US |
dc.subject.hlbsecondlevel | Computer Science | en_US |
dc.subject.hlbtoplevel | Engineering | en_US |
dc.description.bitstreamurl | http://deepblue.lib.umich.edu/bitstream/2027.42/97860/1/dfabbri_1.pdf | |
dc.owningcollname | Dissertations and Theses (Ph.D. and Master's) |
Files in this item
Remediation of Harmful Language
The University of Michigan Library aims to describe library materials in a way that respects the people and communities who create, use, and are represented in our collections. Report harmful or offensive language in catalog records, finding aids, or elsewhere in our collections anonymously through our metadata feedback form. More information at Remediation of Harmful Language.
Accessibility
If you are unable to use this file in its current format, please select the Contact Us link and we can modify it to make it more accessible to you.