Software that is difficult to use appears to be a primary reason behind the growing number of leaks of online sensitive patient health data, according to a study published in December by researchers at Dartmouth College's Tuck School of Business, the Wall Street Journal's "Digits" reports.
The study was launched to better understand why such data leaks occur and what might be done to resolve the problem, according to "Digits."
Study Details
Lead author M. Eric Johnson, director of the business school's Center for Digital Strategies, and colleagues monitored peer-to-peer, or P2P, networks that are commonly used to share various types of files. Although P2P networks mainly are used to share music and similar files, P2P software also is capable of detecting other types of files that can be shared among users, "Digits" reports.
Over a two-week period in 2009, the researchers were able to find more than 200 files containing information that included:
- Names;
- Addresses;
- Dates of birth;
- Social security numbers;
- Insurance numbers; and
- Other health-related data.
The researchers also tracked search terms that were being used on the networks and found that users were looking for results based on keywords such as "public health passwords."
Johnson said complicated software is most likely the reason for the broad availability of sensitive information on P2P networks. He explained that health workers may be forced to find other alternatives to store patient data, such as regular word-processing and spreadsheet tools, that are less secure and that they can download and store on their home computers.
Possible Solutions
Johnson said that the 2009 economic stimulus package's incentive program, which encourages health care providers to become meaningful users of health IT, could reduce information leaks.
He added that cloud computing also could help smaller businesses tap into better, more user-friendly software (Valentino-DeVries, "Digits," Wall Street Journal, 1/3).