iTeh Standards logo
EURUSD
Your shopping cart is empty.
SIST

SIST EN ISO 27799:2017

(Main)

Health informatics - Information security management in health using ISO/IEC 27002 (ISO 27799:2016)

Health informatics - Information security management in health using ISO/IEC 27002 (ISO 27799:2016)

ISO 27799:2016 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).
It defines guidelines to support the interpretation and implementation in health informatics of ISO/IEC 27002 and is a companion to that International Standard.
ISO 27799:2016 provides implementation guidance for the controls described in ISO/IEC 27002 and supplements them where necessary, so that they can be effectively used for managing health information security. By implementing ISO 27799:2016, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information in their care.
It applies to health information in all its aspects, whatever form the information takes (words and numbers, sound recordings, drawings, video, and medical images), whatever means are used to store it (printing or writing on paper or storage electronically), and whatever means are used to transmit it (by hand, through fax, over computer networks, or by post), as the information is always be appropriately protected.
ISO 27799:2016 and ISO/IEC 27002 taken together define what is required in terms of information security in healthcare, they do not define how these requirements are to be met. That is to say, to the fullest extent possible, ISO 27799:2016 is technology-neutral. Neutrality with respect to implementing technologies is an important feature. Security technology is still undergoing rapid development and the pace of that change is now measured in months rather than years. By contrast, while subject to periodic review, International Standards are expected on the whole to remain valid for years. Just as importantly, technological neutrality leaves vendors and service providers free to suggest new or developing technologies that meet the necessary requirements that ISO 27799:2016 describes.
As noted in the introduction, familiarity with ISO/IEC 27002 is indispensable to an understanding of ISO 27799:2016.
The following areas of information security are outside the scope of ISO 27799:2016:
a)   methodologies and statistical tests for effective anonymization of personal health information;
b)   methodologies for pseudonymization of personal health information (see Bibliography for a brief description of a Technical Specification that deals specifically with this topic);
c)   network quality of service and methods for measuring availability of networks used for health informatics;
d)   data quality (as distinct from data integrity).

Medizinische Informatik - Informationsmanagement im Gesundheitswesen bei Verwendung der ISO/IEC 27002 (ISO 27799:2016)

Informatique de santé - Management de la sécurité de l'information relative à la santé en utilisant l'ISO/IEC 27002 (ISO 27799:2016)

L'ISO 27799 :2016 donne des lignes directrices en matière de normes organisationnelles relatives à la sécurité de l'information et des bonnes pratiques de management de la sécurité de l'information, incluant la sélection, la mise en ?uvre et la gestion de mesures de sécurité prenant en compte le ou les environnement(s) à risques pour la sécurité de l'information de l'organisme.
Elle spécifie des lignes directrices permettant d'interpréter et de mettre en ?uvre l'ISO/IEC 27002 dans le domaine de l'informatique de santé et constitue un complément à cette dernière.
L'ISO 27799 :2016 fournit des préconisations de mise en ?uvre des mesures décrites dans l'ISO/IEC 27002 et les complète, le cas échéant, de façon à ce qu'elles puissent être utilisées efficacement dans le mangement de la sécurité des informations de santé. La mise en ?uvre de l'ISO 27799 :2016 permettra aux organismes de santé et aux autres dépositaires d'informations de santé de garantir le niveau minimal requis de sécurité approprié aux conditions de leur organisme et de protéger la confidentialité, l'intégrité et la disponibilité des informations personnelles de santé dans leurs activités de soins.
L'ISO 27799 :2016 s'applique à tous les aspects des informations de santé, quelle que soit la forme (mots, chiffres, enregistrements sonores, dessins, vidéos et images médicales), le support utilisé pour les stocker (imprimés, documents manuscrits ou stockage électronique) ou les moyens mis en ?uvre pour leur transmission (en main propre, par fax, par réseau informatique ou par courrier), de sorte que l'information soit toujours correctement protégée.
L'ISO 27799 :2016 et l'ISO/IEC 27002 définissent les exigences en termes de sécurité de l'information dans les soins de santé, mais elles ne définissent pas la façon de satisfaire à ces exigences. En d'autres termes, dans toute la mesure du possible, la technologie est absente de l'ISO 27799 :2016. La neutralité sur les technologies de mise en ?uvre est une caractéristique importante. La technologie en matière de sécurité continue de se développer rapidement. Le rythme de cette évolution se mesure actuellement en mois et non plus en années. En revanche, bien que les Normes internationales soient soumises à des révisions régulières, il est prévu qu'elles restent valides pendant plusieurs années. De manière également importante, la neutralité sur les technologies laisse aux fournisseurs et aux prestataires de services l'entière liberté de suggérer des technologies nouvelles ou en développement qui peuvent répondre aux exigences décrites dans l'ISO 27799 :2016.
Comme mentionné dans l'introduction, la connaissance de l'ISO/IEC 27002 est indispensable à la compréhension de l'ISO 27799 :2016.
Les domaines suivants de la sécurité de l'information ne relèvent pas du domaine d'application de l'ISO 27799 :2016:
a)    les méthodologies et les essais statistiques en vue d'une anonymisation efficace des informations personnelles de santé;
b)    les méthodologies en vue de la pseudonymisation des informations personnelles de santé (voir la bibliographie pour une brève description d'une Spécification technique qui traite spécifiquement de ce sujet);
c)    la qualité des services fournis par le réseau et les méthodes pour évaluer la disponibilité des réseaux utilisés pour l'informatique de santé;
d)    la qualité des données (par opposition à l'intégrité des données).

Zdravstvena informatika - Upravljanje informacijske varnosti v zdravstvu z uporabo standarda ISO/IEC 27002 (ISO 27799:2016)

Ta mednarodni standard podaja smernice za standarde informacijske varnosti organizacij in načine uporabe upravljanja informacijske varnosti, kar vključuje izbiro, izvajanje in upravljanje kontrol, pri čemer upošteva tveganja za informacijsko varnost v okolju organizacije.
Ta mednarodni standard opredeljuje smernice za podporo pri tolmačenju in izvajanju na področju zdravstvene informatike v okviru standarda ISO/IEC 27002 in je spremljevalni standard k temu mednarodnemu standardu.
4) Ta mednarodni standard podaja smernice za izvajanje na področju kontrol, opisanih v standardu ISO/IEC 27002, in jih dopolnjuje, kjer je to potrebno, tako da se lahko učinkovito uporabljajo za upravljanje informacijske varnosti v zdravstvu. Zdravstvene organizacije in drugi hranitelji zdravstvenih podatkov lahko z izvajanjem tega mednarodnega standarda poskrbijo za najnižjo potrebno stopnjo varnosti, ki bo ustrezala pogojem določene organizacije ter zagotavljala zaupnost, celovitost in razpoložljivost osebnih zdravstvenih podatkov v njeni hrambi.
Ta mednarodni standard se uporablja za zdravstvene podatke v vseh pogledih, vseh oblikah (besede in številke, zvočni zapisi, risbe, videoposnetki ter medicinske slike), vseh oblikah njihovega shranjevanja (tiskanje, zapisovanje na papir ali elektronska shramba) in vseh oblikah njihovega prenašanja (ročno, po faksu, prek računalniških omrežij ali po pošti), pri čemer morajo biti ti podatki ustrezno zavarovani.
Ta mednarodni standard in standard ISO/IEC 27002 skupaj določata zahteve glede informacijske varnosti v zdravstvu, ne pa tudi načina, kako te zahteve izpolniti. Ta mednarodni standard je torej tehnološko nevtralen v največjem mogočem obsegu. Nevtralnost v zvezi z uvajanjem tehnologij je pomembna lastnost tega standarda. Varnostna tehnologija je še vedno podvržena naglemu razvoju in hitrost uvajanja tovrstnih sprememb je trenutno podana v mesecih namesto v letih. Po drugi strani so mednarodni standardi predmet rednih revizij, zato se na splošno pričakuje, da bodo ostali veljavni več let. Pomembno je tudi, da tehnološka nevtralnost dobaviteljem in ponudnikom storitev omogoča, da prosto predlagajo nove ali razvijajoče se tehnologije, ki izpolnjujejo potrebne zahteve v skladu s tem mednarodnim standardom.
Kot je omenjeno v uvodu, je poznavanje vsebine standarda ISO/IEC 27002 nujno potrebno za ustrezno razumevanje tega mednarodnega standarda.
Naslednja področja informacijske varnosti ne spadajo na področje uporabe tega mednarodnega standarda:
a) metodologije in statistični preskusi za učinkovito preoblikovanje osebnih zdravstvenih podatkov v anonimne;
b) metodologije za preoblikovanje osebnih zdravstvenih podatkov v psevdonime (glej bibliografijo za kratek opis tehnične specifikacije, v kateri je posebej obravnavana ta tema);
c) omrežna kakovost storitev in metod za merjenje razpoložljivosti omrežij, ki se uporabljajo za informatiko v zdravstvu;
d) kakovost podatkov (za razliko od njihove celovitosti).

General Information

Status
Published
Public Enquiry End Date
29-Nov-2014
Publication Date
28-Nov-2016
ICS
35.030 - IT Security
35.240.80 - IT applications in health care technology
Technical Committee
ITC - Information technology
Current Stage
6060 - National Implementation/Publication (Adopted Project)
Start Date
29-Aug-2016
Due Date
03-Nov-2016
Completion Date
29-Nov-2016
Ref Project
EN ISO 27799:2016 - Health informatics - Information security management in health using ISO/IEC 27002 (ISO 27799:2016)

Relations

Replaces
SIST EN ISO 27799:2008 - Health informatics - Information security management in health using ISO/IEC 27002 (ISO 27799:2008)
Effective Date
17-Aug-2016
Replaced By
kSIST FprEN ISO 27799:2025 - Health informatics - Information security controls in health based on ISO/IEC 27002 (ISO/FDIS 27799:2025)
Effective Date
23-Feb-2022
SIST EN ISO 27799:2017 - BARVESIST EN ISO 27799:2017 - BARVE
PreviousNext
Standard
SIST EN ISO 27799:2017 - BARVE
English language
114 pages
sale 10% off
Preview
sale 10% off
Preview
e-Library read for
1 day

Standards Content (Sample)


SLOVENSKI STANDARD
01-februar-2017
1DGRPHãþD
SIST EN ISO 27799:2008
Zdravstvena informatika - Upravljanje informacijske varnosti v zdravstvu z
uporabo standarda ISO/IEC 27002 (ISO 27799:2016)
Health informatics - Information security management in health using ISO/IEC 27002
(ISO 27799:2016)
Medizinische Informatik - Informationsmanagement im Gesundheitswesen bei
Verwendung der ISO/IEC 27002 (ISO 27799:2016)
Informatique de santé - Management de la sécurité de l'information relative à la santé en
utilisant l'ISO/IEC 27002 (ISO 27799:2016)
Ta slovenski standard je istoveten z: EN ISO 27799:2016
ICS:
35.030 Informacijska varnost IT Security
35.240.80 Uporabniške rešitve IT v IT applications in health care
zdravstveni tehniki technology
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

EN ISO 27799
EUROPEAN STANDARD
NORME EUROPÉENNE
August 2016
EUROPÄISCHE NORM
ICS 35.240.80 Supersedes EN ISO 27799:2008
English Version
Health informatics - Information security management in
health using ISO/IEC 27002 (ISO 27799:2016)
Informatique de santé - Management de la sécurité de Medizinische Informatik - Informationsmanagement
l'information relative à la santé en utilisant l'ISO/IEC im Gesundheitswesen bei Verwendung der ISO/IEC
27002 (ISO 27799:2016) 27002 (ISO 27799:2016)
This European Standard was approved by CEN on 18 June 2016.

CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this
European Standard the status of a national standard without any alteration. Up-to-date lists and bibliographical references
concerning such national standards may be obtained on application to the CEN-CENELEC Management Centre or to any CEN
member.
This European Standard exists in three official versions (English, French, German). A version in any other language made by
translation under the responsibility of a CEN member into its own language and notified to the CEN-CENELEC Management
Centre has the same status as the official versions.

CEN members are the national standards bodies of Austria, Belgium, Bulgaria, Croatia, Cyprus, Czech Republic, Denmark, Estonia,
Finland, Former Yugoslav Republic of Macedonia, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,
Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland, Turkey and
United Kingdom.
EUROPEAN COMMITTEE FOR STANDARDIZATION
COMITÉ EUROPÉEN DE NORMALISATION

EUROPÄISCHES KOMITEE FÜR NORMUNG

CEN-CENELEC Management Centre: Avenue Marnix 17, B-1000 Brussels
© 2016 CEN All rights of exploitation in any form and by any means reserved Ref. No. EN ISO 27799:2016 E
worldwide for CEN national Members.

Contents Page
European foreword . 3

European foreword
This document (EN ISO 27799:2016) has been prepared by Technical Committee ISO/TC 215 “Health
informatics” in collaboration with Technical Committee CEN/TC 251 “Health informatics” the
secretariat of which is held by NEN.
This European Standard shall be given the status of a national standard, either by publication of an
identical text or by endorsement, at the latest by February 2017, and conflicting national standards
shall be withdrawn at the latest by February 2017.
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. CEN [and/or CENELEC] shall not be held responsible for identifying any or all such patent
rights.
This document supersedes EN ISO 27799:2008.
According to the CEN-CENELEC Internal Regulations, the national standards organizations of the
following countries are bound to implement this European Standard: Austria, Belgium, Bulgaria,
Croatia, Cyprus, Czech Republic, Denmark, Estonia, Finland, Former Yugoslav Republic of Macedonia,
France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta,
Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, Switzerland,
Turkey and the United Kingdom.
Endorsement notice
The text of ISO 27799:2016 has been approved by CEN as EN ISO 27799:2016 without any modification.
INTERNATIONAL ISO
STANDARD 27799
Second edition
2016-07-01
Health informatics — Information
security management in health using
ISO/IEC 27002
Informatique de santé — Management de la sécurité de l’information
relative à la santé en utilisant l’ISO/IEC 27002
Reference number
ISO 27799:2016(E)
©
ISO 2016
ISO 27799:2016(E)
© ISO 2016, Published in Switzerland
All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form
or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior
written permission. Permission can be requested from either ISO at the address below or ISO’s member body in the country of
the requester.
ISO copyright office
Ch. de Blandonnet 8 • CP 401
CH-1214 Vernier, Geneva, Switzerland
Tel. +41 22 749 01 11
Fax +41 22 749 09 47
copyright@iso.org
www.iso.org
ii © ISO 2016 – All rights reserved

ISO 27799:2016(E)
Contents Page
Foreword .vii
Introduction .viii
1 Scope . 1
2 Normative references . 2
3 Terms and definitions . 2
4 Structure of this International Standard . 3
5 Information security policies . 4
5.1 Management direction for information security . 4
5.1.1 Policies for information security. 4
5.1.2 Review of the policies for information security . 5
6 Organization of information security . 6
6.1 Internal organization . 6
6.1.1 Information security roles and responsibilities . 6
6.1.2 Segregation of duties . 7
6.1.3 Contact with authorities . 7
6.1.4 Contact with special interest groups . 7
6.1.5 Information security in project management . 8
6.2 Mobile devices and teleworking . 8
6.2.1 Mobile device policy . 8
6.2.2 Teleworking. 9
7 Human resource security . 9
7.1 Prior to employment . 9
7.1.1 Screening . 9
7.1.2 Terms and conditions of employment .10
7.2 During employment .11
7.2.1 Management responsibilities .11
7.2.2 Information security awareness, education and training .11
7.2.3 Disciplinary process . .11
7.3 Termination and change of employment .12
7.3.1 Termination or change of employment responsibilities .12
8 Asset management .12
8.1 Responsibility for assets .12
8.1.1 Inventory of assets .12
8.1.2 Ownership of assets .13
8.1.3 Acceptable use of assets .13
8.1.4 Return of assets .13
8.2 Information classification .14
8.2.1 Classification of information .14
8.2.2 Labelling of information .15
8.2.3 Handling of assets .15
8.3 Media handling .16
8.3.1 Management of removable media .16
8.3.2 Disposal of media .16
8.3.3 Physical media transfer .17
9 Access control .17
9.1 Business requirements of access control .17
9.1.1 Access control policy .17
9.1.2 Access to networks and network services .18
9.2 User access management .18
9.2.1 User registration and de-registration .18
9.2.2 User access provisioning.19
ISO 27799:2016(E)
9.2.3 Management of privileged access rights .19
9.2.4 Management of secret authentication information of users .20
9.2.5 Review of user access rights .20
9.2.6 Removal or adjustment of access rights .21
9.3 User responsibilities .21
9.3.1 Use of secret authentication information .21
9.4 System and application access control .22
9.4.1 Information access restriction .22
9.4.2 Secure log-on procedures .22
9.4.3 Password management system .22
9.4.4 Use of privileged utility programs .23
9.4.5 Access control to program source code .23
10 Cryptography .23
10.1 Cryptographic controls .23
10.1.1 Policy on the use of cryptographic controls .23
10.1.2 Key management .24
11 Physical and environmental security .24
11.1 Secure areas .24
11.1.1 Physical security perimeter .24
11.1.2 Physical entry controls .25
11.1.3 Securing offices, rooms and facilities .25
11.1.4 Protecting against external and environmental threats .25
11.1.5 Working in secure areas .25
11.1.6 Delivery and loading areas .25
11.2 Equipment .26
11.2.1 Equipment siting and protection .26
11.2.2 Supporting utilities .26
11.2.3 Cabling security .27
11.2.4 Equipment maintenance .27
11.2.5 Removal of assets .27
11.2.6 Security of equipment and assets off-premises .27
11.2.7 Secure disposal or reuse of equipment .28
11.2.8 Unattended user equipment .28
11.2.9 Clear desk and clear screen policy .28
12 Operations security .29
12.1 Operational procedures and responsibilities .29
12.1.1 Documented operating procedures .29
12.1.2 Change management .29
12.1.3 Capacity management .30
12.1.4 Separation of development, testing and operational environments .30
12.2 Protection from malware .30
12.2.1 Controls against malware .30
12.3 Backup .31
12.3.1 Information backup .31
12.4 Logging and monitoring .31
12.4.1 Event logging .31
12.4.2 Protection of log information .32
12.4.3 Administrator and operator logs .33
12.4.4 Clock synchronisation .34
12.5 Control of operational software .34
12.5.1 Installation of software on operational systems .34
12.6 Technical vulnerability management .34
12.6.1 Management of technical vulnerabilities.34
12.6.2 Restrictions on software installation .35
12.7 Information systems audit considerations .35
12.7.1 Information systems audit controls .35
iv © ISO 2016 – All rights reserved

ISO 27799:2016(E)
13 Communications security .35
13.1 Network security management .35
13.1.1 Network controls .35
13.1.2 Security of network services .36
13.1.3 Segregation in networks .36
13.2 Information transfer .36
13.2.1 Information transfer policies and procedures .36
13.2.2 Agreements on information transfer .37
13.2.3 Electronic messaging .37
13.2.4 Confidentiality or non-disclosure agreements .38
14 System acquisition, development and maintenance .38
14.1 Security requirements of information systems .38
14.1.1 Information security requirements analysis and specification .38
14.1.2 Securing application services on public networks .40
14.1.3 Protecting application services transactions .40
14.2 Security in development and support processes .40
14.2.1 Secure development policy .40
14.2.2 System change control procedures .41
14.2.3 Technical review of applications after operating platform changes .41
14.2.4 Restrictions on changes to software packages .41
14.2.5 Secure system engineering principles.42
14.2.6 Secure development environment .42
14.2.7 Outsourced development .42
14.2.8 System security testing .42
14.2.9 System acceptance testing .43
14.3 Test data .43
14.3.1 Protection of test data .43
15 Supplier relationships .43
15.1 Information security in supplier relationships .43
15.1.1 Information security policy for supplier relationships .43
15.1.2 Addressing security within supplier agreements .44
15.1.3 Information and communication technology supply chain .44
15.2 Supplier service delivery management .44
15.2.1 Monitoring and review of supplier services .45
15.2.2 Managing changes to supplier services . .45
16 Information security incident management .45
16.1 Management of information security incidents and improvements .45
16.1.1 Responsibilities and procedures .45
16.1.2 Reporting information security events .45
16.1.3 Reporting information security weaknesses .46
16.1.4 Assessment of and decision on information security events .47
16.1.5 Response to information security incidents .47
16.1.6 Learning from information security incidents .47
16.1.7 Collection of evidence . .47
17 Information security aspects of business continuity management .48
17.1 Information security continuity .48
17.1.1 Planning information security continuity .48
17.1.2 Implementing information security continuity .49
17.1.3 Verify, review and evaluate information security continuity .49
17.2 Redundancies .49
17.2.1 Availability of information processing facilities .49
18 Compliance .50
18.1 Compliance with legal and contractual requirements .50
18.1.1 Identification of applicable legislation and contractual requirements .50
18.1.2 Intellectual property rights .50
18.1.3 Protection of records .50
ISO 27799:2016(E)
18.1.4 Privacy and protection of personally identifiable information .51
18.1.5 Regulation of cryptographic controls .52
18.2 Information security reviews .52
18.2.1 Independent review of information security .52
18.2.2 Compliance with security policies and standards .52
18.2.3 Technical compliance review .53
Annex A (informative) Threats to health information security.54
Annex B (informative) Practical action plan for implementing ISO/IEC 27002 in healthcare .59
Annex C (informative) Checklist for conformance to ISO 27799 .72
Bibliography .98
vi © ISO 2016 – All rights reserved

ISO 27799:2016(E)
Foreword
ISO (the International Organization for Standardization) is a worldwide federation of national standards
bodies (ISO member bodies). The work of preparing International Standards is normally carried out
through ISO technical committees. Each member body interested in a subject for which a technical
committee has been established has the right to be represented on that committee. International
organizations, governmental and non-governmental, in liaison with ISO, also take part in the work.
ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of
electrotechnical standardization.
The procedures used to develop this document and those intended for its further maintenance are
described in the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the
different types of ISO documents should be noted. This document was drafted in accordance with the
editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).
Attention is drawn to the possibility that some of the elements of this document may be the subject of
patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of
any patent rights identified during the development of the document will be in the Introduction and/or
on the ISO list of patent declarations received (see www.iso.org/patents).
Any trade name used in this document is information given for the convenience of users and does not
constitute an endorsement.
For an explanation on the meaning of ISO specific terms and expressions related to conformity
assessment, as well as information about ISO’s adherence to the WTO principles in the Technical
Barriers to Trade (TBT) see the following URL: Foreword - Supplementary information
The committee responsible for this document is ISO/TC 215, Health informatics.
This second edition cancels and replaces the first edition (ISO 27799:2008), which has been technically
revised.
ISO 27799:2016(E)
Introduction
This International Standard provides guidance to healthcare organizations and other custodians of
personal health information on how best to protect the confidentiality, integrity and availability of
such information. It is based upon and extends the general guidance provided by ISO/IEC 27002:2013
and addresses the special information security management needs of the health sector and its unique
operating environments. While the protection and security of personal information is important
to all individuals, corporations, institutions and governments, there are special requirements in the
health sector that need to be met to ensure the confidentiality, integrity, auditability and availability
of personal health information. This type of information is regarded by many as being among the most
confidential of all types of personal information. Protecting this confidentiality is essential if the privacy
of subjects of care is to be maintained. The integrity of health information is to be protected to ensure
patient safety, and an important component of that protection is ensuring that the information’s entire
life cycle be fully auditable. The availability of health information is also critical to effective healthcare
delivery. Health informatics systems is to meet unique demands to remain operational in the face of
natural disasters, system failures and denial-of-service attacks. Protecting the confidentiality, integrity
and availability of health information therefore requires health sector specific expertise.
Regardless of size, location and model of service delivery, all healthcare organizations need to have
stringent controls in place to protect the health information entrusted to them. Yet many health
professionals work as solo health providers or in small clinics that lack the dedicated IT resources to
manage information security. Healthcare organizations therefore need clear, concise, and health-care-
specific guidance on the selection and implementation of such controls. This International Standard
is to be adaptable to the wide range of sizes, locations, and models of service delivery found in
healthcare. Finally, with increasing electronic exchange of personal health information between health
professionals (including use of wireless and Internet services), there is a clear benefit in adopting a
common reference for information security management in healthcare.
ISO/IEC 27002 is already being used extensively for health informatics IT security management
through the agency of national or regional guidelines in Australia, Canada, France, the Netherlands,
New Zealand, South Africa, the United Kingdom and elsewhere. ISO 27799 draws upon the experience
gained in these national endeavours in dealing with the security of personal health information and is
intended as a companion document to ISO/IEC 27002. It is not intended to supplant the ISO/IEC 27000-
series of standards. Rather, it is a complement to these more generic standards.
ISO 27799 applies ISO/IEC 27002 to the healthcare domain in a way that carefully considers the
appropriate application of security controls for the purposes of protecting personal health information.
These considerations have, in some cases, led the authors to conclude that application of certain
ISO/IEC 27002 control objectives is essential if personal health information is to be adequately
protected. ISO 27799 therefore places constraints upon the application of certain security controls
specified in ISO/IEC 27002.
All of the security control objectives described in ISO/IEC 27002 are relevant to health informatics,
but some controls require additional explanation in regard to how they can best be used to protect
the confidentiality, integrity and availability of health information. There are also additional health
sector specific requirements. This International Standard provides additional guidance in a format that
persons responsible for health information security can readily understand and adopt.
In the health domain, it is possible for an organization (a hospital, say) to be certified using
ISO/IEC 27001 without requiring certification against or even acknowledgement of ISO 27799. It
is to be hoped, however, that as healthcare organizations strive to improve the security of personal
health information, conformance with ISO 27799 as a stricter standard for healthcare will also become
widespread.
Objectives
Maintaining information confidentiality, availability, and integrity (including authenticity, accountability
and auditability) are the overarching goals of information security. In healthcare, privacy of subjects
of care depends upon maintaining the confidentiality of personal health information. To maintain
viii © ISO 2016 – All rights reserved

ISO 27799:2016(E)
confidentiality, measures is also be taken to maintain the integrity of data, if for no other reason than
that it is possible to corrupt the integrity of access control data, audit trails, and other system data in
ways that allow breaches in confidentiality to take place or to go unnoticed. In addition, patient safety
depends upon maintaining the integrity of personal health information, failure to do this can also result
in illness, injury or even death. Likewise, a high level of availability is an especially important attribute
of health systems, where treatment is often time-critical. Indeed, disasters that could lead to outages in
other, non-health related, IT systems may be the very times when the information contained in health
systems is most critically needed. Moreover, denial of service attacks against networked systems are
increasingly common.
The controls discussed in this International Standard are those identified as appropriate in healthcare
to protect confidentiality, integrity and availability of personal health information and to ensure that
access to such information can be audited and accounted for. These controls help to prevent errors
in medical practice that might ensue from failure to maintain the integrity of health information. In
addition, they help to ensure that the continuity of medical services is maintained.
There are additional considerations that shape the goals of health information security. These includes
the following:
a) honouring legislative obligations as expressed in applicable data protection laws and regulations
1)
protecting a subject of care is right to privacy;
b) maintaining established privacy and security best practices in health informatics;
c) maintaining individual and organizational accountability among health organizations and health
professionals;
d) supporting the implementation of systematic risk management within health organizations;
e) meeting the security needs identified in common healthcare situations;
f) reducing operating costs by facilitating the increased use of technology in a safe, secure, and well
managed manner that supports, but does not constrain current health activities;
g) maintaining public trust in health organizations and the information systems these organizations
rely upon;
h) maintaining professional standards and ethics as established by health-related professional
organizations (in
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

Loading comments...

This May Also Interest You

SIST
SIST EN ISO 13606-4:2019(Main)
Health informatics - Electronic health record communication - Part 4: Security (ISO 13606-4:2019)
EN ISO 13606-4:2019

This document describes a methodology for specifying the privileges necessary to access EHR data. This methodology forms part of the overall EHR communications architecture defined in ISO 13606-1.
This document seeks to address those requirements uniquely pertaining to EHR communications and to represent and communicate EHR-specific information that will inform an access decision. It also refers to general security requirements that apply to EHR communications and points at technical solutions and standards that specify details on services meeting these security needs.
NOTE       Security requirements for EHR systems not related to the communication of EHRs are outside the scope of this document.

  • Standard
    40 pages
    English language
    sale 10% off
    e-Library read for
    1 day
  • Standard
    40 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TS CEN ISO/TS 14441:2014(Main)
Health informatics - Security and privacy requirements of EHR systems for use in conformity assessment (ISO/TS 14441:2013)
CEN ISO/TS 14441:2013

ISO/TS 14441:2013 examines electronic patient record systems at the clinical point of care that are also interoperable with EHRs. ISO/TS 14441:2013 addresses their security and privacy protections by providing a set of security and privacy requirements, along with guidelines and best practice for conformity assessment.
ISO/TS 14441:2013 includes a cross-mapping of 82 security and privacy requirements against the Common Criteria categories in ISO/IEC 15408 (all parts).

  • Technical specification
    122 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST-TP CEN/TR 15300:2006(Main)
Health informatics - Framework for formal modelling of healthcare security policies
CEN/TR 15300:2006

This CEN report specifies the starting point for working on some formalising tools that could be used by the healthcare actors to express, compare and validate local and/or network security policies.
Defining and validating a correct security policy encompass different activities such as expressing correctly
(i.e. without any ambiguity), formulating correctly (i.e. without any misinterpretation) and proving the correctness (i.e. without known failures or major lack) of the [to be formally modelled] security policy.
This CEN report does NOT intend at all to specify a UNIQUE or UNIVERSAL formal model that need to be used by the European healthcare community: it only indicates, as a first working step, some ways that could be followed to help that healthcare community to correctly and fruitfully manipulate the security policy concept(s) and the formal modelling techniques.
This CEN report does NOT intend to indicate an EXHAUSTIVE spectrum of all the published formal security policy models: it only gives a readable and understandable flavour of the most well-known formal models and also of the [maybe] most interesting ones from the healthcare activity and needs point of view. This CEN report is, in this very first version, divided in five parts:
o   Part #1 - Introduction to formal modelling: this clause summarises and justifies the following needs:
i.   need for policies, in general and for any context;
ii.   need for security policies, in any data processing context;
iii.   need for models (or modelling facilities) of security policies, in some generic system environments;
iv.   need for formal models (or formal modelling facilities) of security policies, in some sensitive areas;
v.   need for healthcare-oriented formal models of security policies, specialized to healthcare specificities.
o   Part #2 - Historical security policies and models: this clause explains and introduces the main objectives and concepts of the security policy modelling activity that seems to be of

  • Technical report
    33 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 12251:2005(Main)
Health informatics - Secure User Identification for Health Care - Management and Security of Authentication by Passwords
EN 12251:2004

This document is designed to improve the authentication of individual users of health care IT systems, by strengthening the automatic software procedures associated with the management of user identifiers and passwords, without resorting to additional hardware facilities.
This document applies to all information systems (hereafter called systems) within the health care environment that handle or store sensitive person identifiable health information, using passwords as the only means of authenticating the entered user identifier, i.e., verifying the claimed identity of a user. Systems that fall within the scope of this document include for example electronic patient record systems, patient administrative systems and laboratory systems, containing personal health information.
This document does not apply to systems outside the health care environment. Neither does it apply to systems within the health care environment that use other means of identification and authentication, such as smart cards, biometric methods or other technical facilities.

  • Standard
    13 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN 14484:2004(Main)
Health informatics - International transfer of personal health data covered by the EU data protection directive - High level security policy
EN 14484:2003

This item will provide guidance on the data protection policy which should be implemented by organisations which are participants in international applications which involve transfer of person identifiable data across national borders and which require compliance with the EU Data Protection Directive.

  • Standard
    55 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
oSIST prEN 13608-3:2006
Health informatics - Security for healthcare communication - Part 3: Secure data channels
prEN 13608-3
  • Draft
    23 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
oSIST prEN 13608-1:2006
Health informatics - Security for healthcare communication - Part 1: Concepts and terminology
prEN 13608-1
  • Draft
    85 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
kSIST FprEN ISO 27799:2025(Main)
Health informatics - Information security controls in health based on ISO/IEC 27002 (ISO/FDIS 27799:2025)
FprEN ISO 27799

ISO 27799:2016 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).
It defines guidelines to support the interpretation and implementation in health informatics of ISO/IEC 27002 and is a companion to that International Standard.
ISO 27799:2016 provides implementation guidance for the controls described in ISO/IEC 27002 and supplements them where necessary, so that they can be effectively used for managing health information security. By implementing ISO 27799:2016, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information in their care.
It applies to health information in all its aspects, whatever form the information takes (words and numbers, sound recordings, drawings, video, and medical images), whatever means are used to store it (printing or writing on paper or storage electronically), and whatever means are used to transmit it (by hand, through fax, over computer networks, or by post), as the information is always be appropriately protected.
ISO 27799:2016 and ISO/IEC 27002 taken together define what is required in terms of information security in healthcare, they do not define how these requirements are to be met. That is to say, to the fullest extent possible, ISO 27799:2016 is technology-neutral. Neutrality with respect to implementing technologies is an important feature. Security technology is still undergoing rapid development and the pace of that change is now measured in months rather than years. By contrast, while subject to periodic review, International Standards are expected on the whole to remain valid for years. Just as importantly, technological neutrality leaves vendors and service providers free to suggest new or developing technologies that meet the necessary requirements that ISO 27799:2016 describes.
As noted in the introduction, familiarity with ISO/IEC 27002 is indispensable to an understanding of ISO 27799:2016.
The following areas of information security are outside the scope of ISO 27799:2016:
a) methodologies and statistical tests for effective anonymization of personal health information;
b) methodologies for pseudonymization of personal health information (see Bibliography for a brief description of a Technical Specification that deals specifically with this topic);
c) network quality of service and methods for measuring availability of networks used for health informatics;
d) data quality (as distinct from data integrity).

  • Draft
    82 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
oSIST prEN 13608-2:2006
Health informatics - Security for healthcare communication - Part 2: Secure data objects
prEN 13608-2
  • Draft
    22 pages
    English language
    sale 10% off
    e-Library read for
    1 day
SIST
SIST EN IEC 81001-5-1:2022(Main)
Health software and health IT systems safety, effectiveness and security - Part 5-1: Security - Activities in the product life cycle (IEC 81001-5-1:2021)
EN IEC 81001-5-1:2022

This document defines the LIFE CYCLE requirements for development and maintenance of HEALTH SOFTWARE needed to support conformance to IEC 62443-4-1[11] – taking the specific needs for HEALTH SOFTWARE into account. The set of PROCESSES, ACTIVITIES, and TASKS described in this document establishes a common framework for secure HEALTH SOFTWARE LIFE CYCLE PROCESSES. An informal overview of activities for HEALTH SOFTWARE is shown in Figure 2.
[Figure 2]
[derived from IEC 62304:2006[8], Figure 2]
Figure 2 - HEALTH SOFTWARE LIFE CYCLE PROCESSES
The purpose is to increase the CYBERSECURITY of HEALTH SOFTWARE by establishing certain ACTIVITIES and TASKS in the HEALTH SOFTWARE LIFE CYCLE PROCESSES and also by increasing the SECURITY of SOFTWARE LIFE CYCLE PROCESSES themselves.
It is important to maintain an appropriate balance of the key properties SAFETY, effectiveness and SECURITY as discussed in ISO 81001-1[17].
This document excludes specification of ACCOMPANYING DOCUMENTATION contents.

  • Standard
    59 pages
    English language
    sale 10% off
    e-Library read for
    1 day