Security issues and framework of electronic medical record: A review

• Published in: Bulletin of Electrical Engineering and Informatics
• Main Author: Adamu J.; Hamzah R.; Rosli M.M.
• Format: Article
• Language: English
• Published: Institute of Advanced Engineering and Science 2020
• Online Access: https://www.scopus.com/inward/record.uri?eid=2-s2.0-85083061582&doi=10.11591%2feei.v9i2.2064&partnerID=40&md5=128657aa89f6bbf429774aa22de648e6

The electronic medical record has been more widely accepted due to its unarguable benefits when compared to a paper-based system. As electronic medical record becomes more popular, this raises many security threats against the systems. Common security vulnerabilities, such as weak authentication, cross-site scripting, SQL injection, and cross-site request forgery had been identified in the electronic medical record systems. To achieve the goals of using EMR, attaining security and privacy is extremely important. This study aims to propose a web framework with inbuilt security features that will prevent the common security vulnerabilities in the electronic medical record. The security features of the three most popular and powerful PHP frameworks Laravel, CodeIgniter, and Symfony were reviewed and compared. Based on the results, Laravel is equipped with the security features that electronic medical record currently required. This paper provides descriptions of the proposed conceptual framework that can be adapted to implement secure EMR systems. © 2020, Institute of Advanced Engineering and Science. All rights reserved.