Medical Information and Network Security (Various)
Duration
June 2004 – Ongoing
Internal Participants
Trish Williams, Craig Valli, Andrew Woodward, Chris Bolan
This project is examing the security of medical systems and network security. It is conducted at a systemic level examing infrastructure and system issues as well as localised examining local infrastuctures for example general practise networks. As medical systems become more digitised, interconnected and dependent on the Internet as a communications backbone this has significant implications for local, regional and national security.
This research is targetted at improving outcomes for general practise and the medical system infrastructure as a whole. There are various on-going projects in the area.
Review of General Practise Security Posture and Awareness
This is ongoing action research project for a PhD. It aims to conduct a gap analysis in security stance for general practise. Having completed the gap analysis an action plan will be executed via a developed framework to increase the overall security posture and hardness of the medical practises. This will hopefully result in a generic framework that can assist medical practises to secure their assets. This is critical in protecting the national health infrastructure.
Review of the security of medical practise software against SQL injection attacks
This project is testing various medical practise management software and hospital management systems that uses SQL engines against attack from injection. This pertintent in that it will see if medical systems are vulnerable to automated attack and denial of service via this vulnerability. Its relation to security is if these systems can be rendered ineffective or useless during a terrorist attack for instance the effects could be devastating.