e-Health Security Issues and Solutions

Abstract

The aim of the thesis is to give an understanding of the current situation and its security issues within the e-Health institutions. Following the analysing of current protocols and administrative concepts, an overall approach is given, of how security can be implemented, maintained, measured and ensured. This is achieved through the usage of standards like ITIL, ISO 27001, an management approach, which fills the gap of the mentioned standard introduced as top down approach. Later on the method called, Penetration-Testing will be presented which measures the current state of security level of an organisation. By developing these concepts, the focus lie on use cases of e-Health institution.