Medical information security analysis for standardization strategy in Korea

The present study analyzed the current state and related issues of standardization of personal medical information security by probing information security standards, guidelines, related statutes and certification programs in order for Korea to take initiatives in international standardization of security for ubiquitous healthcare (u-health). We chose essential elements of privacy, security and safety to investigate the international standardization status; in user privacy, user authentication, user ID security, and user identification, in health information security, data security, security infrastructure, accountability assurance, communication security, ID management and access control, non-repudiation, security management, and backup, storage, archiving, disposal, in safety, risk management, technology for emergency access, disassemble prevention and fixation, and equipment error check. As a result, we came up with the conclusion that Korea must immediately take the initiative of developing an international standard that addresses the overall safety of medical equipment, including emergency access, electrical malfunctioning management, and operational condition check.