The dark side of telemedicine

Improved on-line medical 'architecture' to thwart hackers, assemble like home-stereo system, lower health care cost

Publication Date:

Sandia news media contact

Neal Singer
nsinger@sandia.gov
505-845-7078

Sandia's Linda Gallagher checks her blood oxygenation and pressure with sensors connected to a state-of-the-art unit from TelAssist Corp. The work is part of a Sandia effort to develop secure online telemedicine techniques.
Sandia’s Linda Gallagher checks her blood oxygenation and pressure with sensors connected to a state-of-the-art unit from TelAssist Corp. The work is part of a Sandia effort to develop secure online telemedicine techniques. (Photo by Randy Montoya)
Download 300dpi JPEG image, ‘telemed.jpg’, 1.3Mb (Media are welcome to download/publish this image with related news stories.)

ALBUQUERQUE, N.M. — People worry that their credit card numbers will be intercepted online to finance the purchases of strangers.

A far worse problem is the potential for hackers to access and misuse medical or psychiatric data, whether in transit or stored online.

People with long-term diseases like diabetes, or even those only genetically predisposed to them, could face job turndowns and insurance rebuffs if information purloined from data banks were sold to corporate bidders. Politicians and celebraties would be particularly susceptible to scandals and blackmail arising from intercepted data. More distant in time, patients relying upon intravenously delivered medicine, remotely controlled, could have their lives threatened by a cyber attacker altering their medicinal flow rate.

Yet because of its versatility, online medicine has the potential to widen health care choices, cut costs, and provide maximum care to a large number of people.

Because of these factors and because the amount of medical data sent across the Net is increasing, researchers at Sandia National Laboratories, a U.S. Department of Energy research facility, have developed and now applied for an intellectual property patent on a computer “architecture” that incorporates built-in security mechanisms to protect information sent between medical system components.

In addition, the Sandia framework, rather than relying on turnkey systems, encourages hospitals and individual patients to buy and assemble off-the-shelf medical equipment — that is, only the equipment needed — the same way home stereo components are bought individually and assembled. Competition between suppliers of subcomponents should lower prices and rescue consumers from the need to buy all the features manufacturers of entire systems might incorporate.

Sandia researchers are interested in the storage and transmission of medical information because they believe that the capability to use the Net to send uncorrupted medical data throughout the United States will substantially reduce the potentially large numbers of civilian casualties that could be expected from a natural disaster or terrorist event.

Given the current state of online medical security, according to Dr. Leon Hoffman, spokesperson for the American Psychoanalytic Association, “We recommend not sending out identifiable data over the Net. We are fighting so hard over the privacy issue. It’s a terribly frightening proposition for people to have records out there in cyberspace.”

Dr. Dena McFadden, deputy medical director of the Massachusetts region of Brookline-headquartered Harvard Pilgrim Health Care, described the effect of an incident reported several years ago in which a patient discovered detailed mental health notes in his own electronic record, along with physical health data. Since then, she says, “We’ve put in audit trails to tell us who’s accessed what, we’ve enhanced passwords and installed encryption, firewalls and dedicated lines. One of the things we’ve learned is that in addition to all of that, we need to manage the human factor and put in controls around unauthorized access by authorized users.”

The Sandia architecture deals with that “very difficult problem” by enforcing strict role-based access, says Sandia project leader Steve Warren.

Equipment complying with the Sandia architecture will be used at New Orleans’s Alton Ochsner Medical Foundation in the care of patients suffering from hypertension. The formal clinical tests, conducted over the next eight months, will be used in part to evaluate the cost-effectiveness and diagnostic feasibility of telemedicine in this arena.

“When I started this project four years ago, I wanted to identify a strong medical partner to complement our expertise in sensors and information systems,” says Sam Varnado, director of Sandia’s Energy and Critical Infrastructure Technology Center. “We selected Ochsner after a competitive bidding process, and they have been truly outstanding partners.”

Some of the technological issues were detailed in papers presented in April in Rockville, Maryland, at the “Workshops on Future Medical Devices: Home Care Technologies for the 21st Century,” and in early May at the “Toward An Electronic Patient Record ’99” conference in Orlando, Florida.

Lowered costs, better security

The reason for interest in plug-and-play — a term for adding or subtracting computer components at will — is driven by the high expense of current telemedicine systems. As Sandia authors wrote in the abstract of a paper delivered in early May, “Most telemedicine systems are custom-designed and do not inter-operate with other commercial offerings. Users are limited to a set of functionality that a single vendor provides and must often pay high prices to obtain this functionality, since vendors in this marketplace must deliver entire systems in order to compete. Besides increasing corporate research and development costs, this inhibits the ability of the user to make intelligent purchasing decisions regarding best-of-breed technologies.”

The second goal is to demonstrate that proper use of security technology can allow medical information to be transmitted electronically, maintaining strict patient confidentiality while information is in transit to a physician, billing agency, or other medical entity.

Says Sandia researcher Richard Craft, lead architect for the project, “We have leading-edge cryptography libraries. These will strengthen the toolkit of telemedicine security algorithms. The Sandia-proprietary telemedicine architecture will be licensed for off-the-shelf devices manufactured by a large number of companies. We are currently laying the ground rules for how telemedicine devices will talk with one another within this secure environment. It’s like a card game: first you lay the ground rules, then you play.”

Service areas that are supported within the Sandia-designed telemedicine architecture include user interfaces; medical devices for acquiring patient data, delivering therapy, or analyzing specimens; electronic patient records that store information collected by devices; processing services that can analyze and interpret data; communication mechanisms and the supporting directory services; protocols that dictate orders of operation for medical instruments; and a backplane, a service similar to an operating system that stitches the other service areas together.

Benefits of online medicine

Telemedicine uses technology to provide an alternative to traditional, in-person physician visits, and provide medical care at a patient’s location, regardless of the location of the medical team. Computer scientists familiar with the medical field believe that within the next five years, computers at remote locations will control vital-sign monitoring and limited types of medical treatment. Medical care will travel with patients, whether they are in the home, the office, or on travel, so their electronic medical records must be accessible from any location.

“Sensors attached to patients will transmit signals to computers, either in the home or at a remote location, for state-of-health analysis,” says Warren. “Because these vital-signs sensors will be non-invasive and comfortable to wear, they will acquire medical information from the patient around the clock instead of a few times a day. This approach to continuous physiological monitoring and trend analysis will lead to a preventive health care model where the future health of an individual will be predicted based on information acquired from these sensors. This differs from the primary care delivery model employed today, where a patient visits a physician only after suffering discomfort or experiencing a health emergency.”

The ongoing effort

The research team at Ochsner Clinic is currently using a commercial, turnkey telemedicine system manufactured by TelAssist Corporation, Ridgefield, NJ, for its hypertension study. Sandia, in an effort to test the effectiveness of the “plug-and-play” approach to telemedicine, is renovating that commercial system for use on Sandia’s secure telemedicine device architecture. The new system will be tested jointly by Sandia and Ochsner Clinic in a controlled clinical study that assesses the cost-effectiveness and diagnostic feasibility of the approach.

Principal investigator Dr. Richard N. Re and Dr. Marie A. Krousel-Wood lead the Ochsner effort. The work is supported by the Telemedicine and Advanced Technology Research Center, U.S. Army Medical Research and Materiel Command, Fort Detrick, Frederick, Md.

 

Sandia National Laboratories is a multimission laboratory operated by National Technology and Engineering Solutions of Sandia LLC, a wholly owned subsidiary of Honeywell International Inc., for the U.S. Department of Energy’s National Nuclear Security Administration. Sandia Labs has major research and development responsibilities in nuclear deterrence, global security, defense, energy technologies and economic competitiveness, with main facilities in Albuquerque, New Mexico, and Livermore, California.

Sandia news media contact

Neal Singer
nsinger@sandia.gov
505-845-7078