Research Student Profile

Home People Profile...

Prof. Matthew J Warren PhD

Brief biographical information

m.warren@deakin.edu.au

Access thesis on-line

A Security Advisory System for Healthcare Environments

This thesis considers the current requirements for security in European healthcare establishments. Information Technology is being used increasingly by all areas of healthcare, from administration to clinical treatment and this has resulted in increased dependence upon computer systems by healthcare staff. The thesis looks at healthcare security requirements from the European perspective. An aim of the research was to develop security guidelines that could be used by healthcare establishments to implement a common baseline standard for security. These guidelines represent work submitted to the Commission of European Communities SEISMED (Secure Environment for Information Systems in Medicine) project, with which the research programme was closely linked. The guidelines were validated by implementing them with the Plymouth and Torbay Health Trust. The thesis also describes the development of a new management methodology and this was developed to allow the smooth implementation of security within healthcare establishments. The methodology was validated by actually using it within the Plymouth and Torbay Health Authority to implement security countermeasures. A major area of the research was looking at the use of risk analysis and reviewing all the known risk analysis methodologies. The use of risk analysis within healthcare was also considered and the main risk analysis methods used by UK healthcare establishments were reviewed. The thesis explains why there is a need for a risk analysis method specially developed for healthcare. As part of the research a new risk analysis method was developed, this allows healthcare establishments to determine their own security requirements. The method was also combined with the new management methodology that would determine any implementional problems. The risk analysis methodology was developed into a computerised prototype, which demonstrated the different stages of the methodology.

Prof. Matthew J Warren

Director of studies: Prof Peter Sanders
Other supervisors: Dr Nick Gaunt

Journal papers

A new approach towards security training and awareness amongst the Healthcare Community
Warren MJ, Furnell SM, Sanders P
Informatics in Healthcare Australia, vol. 8, no. 1, pp20-26, 1999
More details | Download PDF

Computer Hacking and Cyber Terrorism: The real threats in the new millenium?
Furnell SM, Warren MJ
Computers & Security, vol. 18, no. 1, pp28-34, 1999
More details | Download PDF

Assessing staff attitudes towards information security in a European healthcare establishment
Furnell SM, Gaunt PN, Holben RF, Sanders P, Stockel CT, Warren MJ
Medical Informatics, vol. 21, no. 2, pp105-112, 1997
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

ODESSA - A New Approach to Healthcare Risk Analysis
Warren MJ, Furnell SM, Sanders P
Information Security in Research and Business, Chapman & Hall, pp391-402, 1997
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

Computer abuse : Vandalising the information society
Furnell SM, Warren MJ
Internet Research, vol. 7, no.1, pp61-66, 1996
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

Development of Security Guidelines for Existing Healthcare Systems
Furnell SM, Sanders P, Warren MJ
Medical Informatics, vol. 20, no. 3, pp139-148, 1995
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

A Generic Methodology for Health Care Data Security
Furnell SM, Gaunt PN, Pangalos G, Sanders P, Warren MJ
Medical Informatics, vol 19, no. 3, pp229-445, 1994
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

7 Journal papers

Conference papers

Cyber Terrorism: The Political Evolution of the Computer Hacker
Warren MJ, Furnell SM
Proceedings of Australian Institute of Computer Ethics Conference 1999 (AICEC99), Melbourne, Australia, pp415-425, 14-16 July, 1999
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

Methods of responding to healthcare security incidents
Furnell SM, Gritzalis D, Katsikas SK, Mavroudakis K, Sanders P, Warren MJ
Proceedings of MEDINFO 98, Seoul, South Korea, 18-22 August, 1998
More details | Download PDF

Electronic Commerce : Winners and Losers
Warren MJ, Furnell SM
Proceedings of the first International Network Conference 1998 (INC 98), Plymouth, UK, pp197-202, 6-9 July, 1998
More details | Download PDF

Addressing information security training and awareness within the European healthcare community
Furnell SM, Sanders P, Warren MJ
Proceedings of Medical Informatics Europe 14th International Congress (MIE 97), Porto Carras, Greece, pp707-711, 25-29 May, 1997
More details | Download PDF

Addressing the problem of data security in healthcare information systems
Furnell SM, Sanders P, Warren MJ
Proceedings of HC97: Current Perspectives in Healthcare Computing 1997 Part 1, Harrogate, UK, pp55-62, 17-19 March, 1997
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

A Telematics Security Training Application
Furnell SM, Hill D, Rosewall I, Warren MJ
Proceedings of EUROMEDIA 96, London, UK, pp286-290, 19-21 December, 1996
More details | Download PDF

POSEIDON - A Composite Multimedia Hospital Patient Records System
Salmons NJ, Furnell SM, Sanders P, Stockel CT, Warren MJ
Proceedings of Toward An Electronic Health Record Europe ?96, London, UK, 14-17 November, 1996
More details | Download PDF

Approaches to security in healthcare multimedia systems
Furnell SM, Salmons NJ, Sanders P, Stockel CT, Warren MJ
Proceedings of IFIP TC-6 and TC-11 Joint working Conference on Communications and Multimedia Security, Essen, Germany, pp25-35, 23-24 September, 1996
More details

ODESSA - Intelligent Healthcare Security Risk Assessment
Warren MJ, Furnell SM, Sanders P
Proceedings of 2nd International Conference on Neural Networks and Expert Systems in Medicine and Healthcare (NNESMED 96), Plymouth, UK, 28-30 August, 1996
This paper is not currently available. Please refer to paper number 33 - "ODESSA - A New Approach to Healthcare Risk Analysis"
More details

Provision of healthcare security information services using the World-Wide Web
Furnell SM, Sanders P, Warren MJ
Proceedings of Medical Informatics Europe 13th International Congress (MIE 96), Copenhagen, Denmark, 19-22 August, 1996
More details

Participational Management and the Implementation of Multimedia Systems
Warren MJ, Sanders P, Gaunt PN
Proceedings of MEDIACOMM 95 - International Conference on Multimedia Communications, Southampton, UK, pp131-135, 11-12 April, 1995
More details

Secure Multimedia Systems in Healthcare and Medicine
Furnell SM, Salmons NJ, Sanders P, Stockel CT, Warren MJ
Proceedings of MEDIACOMM 95 - International Conference on Multimedia Communications, Southampton, UK, pp103-107, 11-12 April, 1995
NB paper has been scanned from printed copy. We apologise for the screen quality of this paper.
More details | Download PDF

Security Criteria Expert System Concept: The Healthcare Application
Warren MJ, Sanders P, Gaunt PN
Proceedings of NNESMED 94 - International Conference on Neural Networks & Expert Systems in Medicine and Healthcare, Plymouth, England, pp146-153, August, 1994
More details

13 Conference papers

Contributions to edited books

Computer hacking and cyber terrorism: the real threats in the new millennium?
Furnell SM, Warren MJ
in Cyberterrorism. A.O?Day (Ed), Ashgate Publishing, 2004
More details

The ISHTAR World Wide Web Dissemination and Advisory Service for Healthcare Information Security
Furnell SM, Warren MJ, Evans MP
in Implementing Secure Healthcare Telematics Applications in Europe. The ISHTAR Consortium (Eds), Technology and Informatics 66, IOS Press: pp249-280, 2001
More details

Baseline Security Guidelines for Health Care Management
Sanders P, Furnell SM, Warren MJ
in Data Security in Health Care - Volume 1, Management Guidelines. The SEISMED Consortium (Eds), Technology and Informatics 31, IOS Press: pp82-107, 1996
More details

Baseline Security Guidelines for Health Care IT and Security Personnel
Sanders P, Furnell SM, Warren MJ
in Data Security in Health Care - Volume 2, Technical Guidelines. The SEISMED Consortium (Eds), Technology and Informatics 32, IOS Press: pp189-234, 1996
More details

Baseline Security Guidelines for Health Care System Users
Sanders P, Furnell SM, Warren MJ
in Data Security in Health Care - Volume 3, User Guidelines. The SEISMED Consortium (Eds), Technology and Informatics 33, IOS Press: pp78-99, 1996
More details

5 Contributions to edited books

Posters

Impact of security on a healthcare environment and how to overcome it
Warren MJ, Gaunt PN
Poster presentation at IMIA Working Conference "Caring for Health Information", 13-16 November, 1993
More details

1 Posters

26 publication(s) - all categories.