{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,10]],"date-time":"2026-06-10T15:56:24Z","timestamp":1781106984207,"version":"3.54.1"},"reference-count":39,"publisher":"IGI Global Scientific Publishing","issue":"1","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013,1,1]]},"abstract":"<p>This paper developed a method to assess information security risks in e-healthcare. Specifically, it first developed a static E-Healthcare Information Security Risk (EHISR) model to present thirty-three security risk factors by identifying information security threats and their sources in e-healthcare. Second, a dynamic E-Healthcare Information Flow (EHIF) model was developed to logically link these information risk factors in the EHISR model. Pattern analysis showed that information security risks could be classified into two levels, and versatility analysis showed that the overall security risks for eight information flows were close with a range from 55% to 86%. Third, one quantifiable approach based on a relative-weighted assessment model was developed to demonstrate how to assess the information security risks in e-healthcare. This quantitative security risk measurement establishes a reference point for assessing e-healthcare security risks and assists managers in selecting a reliable information flow infrastructure with a lower security risk level.<\/p>","DOI":"10.4018\/jdm.2013010103","type":"journal-article","created":{"date-parts":[[2013,9,6]],"date-time":"2013-09-06T14:33:07Z","timestamp":1378477987000},"page":"36-57","source":"Crossref","is-referenced-by-count":9,"title":["Development of an E-Healthcare Information Security Risk Assessment Method"],"prefix":"10.4018","volume":"24","author":[{"given":"June","family":"Wei","sequence":"first","affiliation":[{"name":"College of Business, University of West Florida, Pensacola, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Binshan","family":"Lin","sequence":"additional","affiliation":[{"name":"Department of Management\/Marketing, College of Business Administration, Louisiana State University in Shreveport, Shreveport, LA, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Meiga","family":"Loho-Noya","sequence":"additional","affiliation":[{"name":"College of Business, University of West Florida, Pensacola, FL, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"2432","reference":[{"key":"jdm.2013010103-0","doi-asserted-by":"publisher","DOI":"10.1201\/1086\/45098.14.1.20050301\/87267.3"},{"issue":"6","key":"jdm.2013010103-1","first-page":"28","article-title":"HIPAA: Where are we now?","volume":"39","author":"G.Burkhartsmeier","year":"2007","journal-title":"Medical Laboratory Observer"},{"key":"jdm.2013010103-2","doi-asserted-by":"publisher","DOI":"10.4018\/jdm.2008040101"},{"key":"jdm.2013010103-3","doi-asserted-by":"publisher","DOI":"10.1108\/02635570710750417"},{"key":"jdm.2013010103-4","doi-asserted-by":"publisher","DOI":"10.1001\/jama.280.15.1371"},{"key":"jdm.2013010103-5","doi-asserted-by":"publisher","DOI":"10.1108\/02635570910957605"},{"issue":"9","key":"jdm.2013010103-6","first-page":"22","article-title":"E-healthcare is priorities for hospitals.","volume":"54","year":"2000","journal-title":"Healthcare Financial Management"},{"issue":"1","key":"jdm.2013010103-7","first-page":"72","article-title":"Value increasing model in commercial e-banking.","volume":"51","author":"J.Howell","year":"2010","journal-title":"Journal of Computer Information Systems"},{"issue":"2","key":"jdm.2013010103-8","first-page":"1","article-title":"Health information privacy and e-healthcare.","volume":"4","author":"E. P.Kelly","year":"2002","journal-title":"International Journal of Healthcare Technology and Management"},{"key":"jdm.2013010103-9","doi-asserted-by":"publisher","DOI":"10.1377\/hlthaff.17.6.41"},{"issue":"4","key":"jdm.2013010103-10","doi-asserted-by":"crossref","first-page":"225","DOI":"10.1097\/00115514-200207000-00005","article-title":"The role of the internet in improving healthcare quality.","volume":"47","author":"K. E.Kerwin","year":"2002","journal-title":"Journal of Healthcare Management"},{"key":"jdm.2013010103-11","doi-asserted-by":"publisher","DOI":"10.1504\/IJEH.2006.008697"},{"key":"jdm.2013010103-12","doi-asserted-by":"publisher","DOI":"10.4018\/jdm.2005010101"},{"key":"jdm.2013010103-13","author":"E. M.Knod","year":"2001","journal-title":"Operations management, meeting customer\u2019s demand"},{"key":"jdm.2013010103-14","unstructured":"Kroekne, D. (2006). Experiencing MIS. Pearson\/Prentice Hall."},{"key":"jdm.2013010103-15","doi-asserted-by":"publisher","DOI":"10.1504\/IJMC.2011.040608"},{"issue":"3","key":"jdm.2013010103-16","first-page":"48","article-title":"Privacy and security compliance in the e-healthcare marketplace.","volume":"54","author":"M.Lutes","year":"2000","journal-title":"Healthcare Financial Management Association"},{"issue":"1","key":"jdm.2013010103-17","doi-asserted-by":"crossref","first-page":"3","DOI":"10.1097\/01974520-199807000-00002","article-title":"Building a quality future.","volume":"15","author":"E. C.Nelson","year":"1998","journal-title":"Frontiers of Health Services Management"},{"issue":"3","key":"jdm.2013010103-18","first-page":"189","article-title":"Editor\u2019s introduction.","volume":"15","author":"L. M.Newell","year":"2001","journal-title":"Journal of Healthcare Management"},{"key":"jdm.2013010103-19","year":"2008","journal-title":"An introduction to computer security: The NIST handbook, special publication. 800-12"},{"key":"jdm.2013010103-20","unstructured":"Null, R., & Wei, J. (2007). Increase business values in the hospital industry via IT and IS support value chain analysis. In Proceedings of the Decision Sciences Institution (DSI), Phoenix, AZ."},{"key":"jdm.2013010103-21","doi-asserted-by":"publisher","DOI":"10.1504\/IJMC.2011.040145"},{"key":"jdm.2013010103-22","doi-asserted-by":"publisher","DOI":"10.4018\/jdm.2006040101"},{"issue":"2","key":"jdm.2013010103-23","first-page":"58","volume":"21","year":"2000","journal-title":"Health Management Technology"},{"key":"jdm.2013010103-24","doi-asserted-by":"publisher","DOI":"10.4018\/jdm.2003100101"},{"issue":"3","key":"jdm.2013010103-25","first-page":"38","article-title":"Demographic determinants of adoption of technological innovation.","volume":"51","author":"A.Quazi","year":"2011","journal-title":"Journal of Computer Information Systems"},{"issue":"1","key":"jdm.2013010103-26","first-page":"61","article-title":"Improving workflow in home healthcare industry: A case study.","volume":"13","author":"M.Rao","year":"2004","journal-title":"Journal of International Technology and Information Management"},{"key":"jdm.2013010103-27","doi-asserted-by":"publisher","DOI":"10.1108\/02635570810876723"},{"key":"jdm.2013010103-28","doi-asserted-by":"publisher","DOI":"10.1504\/IJEH.2006.008693"},{"issue":"5","key":"jdm.2013010103-29","first-page":"32","article-title":"DETELINE: HIMSS.","volume":"754","author":"A.Solovy","year":"2000","journal-title":"Hospitals & Health Networks"},{"key":"jdm.2013010103-30","doi-asserted-by":"publisher","DOI":"10.1108\/02635571111133551"},{"issue":"2","key":"jdm.2013010103-31","first-page":"1","article-title":"HIPAA certification and training guidelines for healthcare organizations: An IS 2002 model curriculum implementation.","volume":"4","author":"LongeneckerSweatt","year":"2006","journal-title":"Information Systems Education Journal"},{"key":"jdm.2013010103-32","doi-asserted-by":"publisher","DOI":"10.1108\/02635570810876787"},{"key":"jdm.2013010103-33","doi-asserted-by":"publisher","DOI":"10.1504\/IJMC.2011.040146"},{"issue":"2","key":"jdm.2013010103-34","doi-asserted-by":"crossref","first-page":"128","DOI":"10.1504\/IJMC.2006.008605","article-title":"An onion ring framework for developing and assessing mobile commerce security.","volume":"4","author":"J.Wei","year":"2006","journal-title":"International Journal of Mobile Communications"},{"key":"jdm.2013010103-35","unstructured":"Wei, J., & Loho-Noya, M. (2008). Development of a detection model for e-healthcare information attacks. In Proceedings of the Southwest Decision Sciences Institution, Houston, TX."},{"key":"jdm.2013010103-36","doi-asserted-by":"publisher","DOI":"10.1201\/1086\/43317.10.4.20010901\/31772.4"},{"key":"jdm.2013010103-37","doi-asserted-by":"crossref","unstructured":"Wilson, M., de Zafra, D. E., Pitcher, S. I., Tressler, J. D., & Ippolito, J. B. (1998). Information technology security training requirements: A role and performance based model. National Institute of Standards and Technology. NIST Special Publication 800-16.","DOI":"10.6028\/NIST.SP.800-16"},{"key":"jdm.2013010103-38","doi-asserted-by":"publisher","DOI":"10.1504\/IJEH.2006.008688"}],"container-title":["Journal of Database Management"],"original-title":[],"language":"ng","link":[{"URL":"https:\/\/www.igi-global.com\/viewtitle.aspx?TitleId=84068","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,6,1]],"date-time":"2022-06-01T21:59:25Z","timestamp":1654120765000},"score":1,"resource":{"primary":{"URL":"https:\/\/services.igi-global.com\/resolvedoi\/resolve.aspx?doi=10.4018\/jdm.2013010103"}},"subtitle":[""],"short-title":[],"issued":{"date-parts":[[2013,1,1]]},"references-count":39,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2013,1]]}},"URL":"https:\/\/doi.org\/10.4018\/jdm.2013010103","relation":{},"ISSN":["1063-8016","1533-8010"],"issn-type":[{"value":"1063-8016","type":"print"},{"value":"1533-8010","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013,1,1]]}}}