Detection and control of phishing attack in electronic medical record application

U. Aneesh Kini; M. Poornananda Bhat; Raghavendra Ganiga; Radhika M. Pai; M. M. Manohara Pai; H. C. Shiva Prasad

doi:10.1007/978-981-15-5558-9_82

Detection and control of phishing attack in electronic medical record application

U. Aneesh Kini, M. Poornananda Bhat, Raghavendra Ganiga, Radhika M. Pai, M. M. Manohara Pai, H. C. Shiva Prasad

Department of Information and Communication Technology, Manipal Institute of Technology, Manipal
Department of Humanities and Management, Manipal Institute of Technology, Manipal

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Advancement in Information and Communication Technology (I&CT) has wide applications in medical field. The patient record can be stored electronically instead of files. Electronic Medical Record (EMR) is a collection of application program that collects and stores the patient data in servers. Data are retrievable by patients or doctors from any part of the globe via the internet. The disadvantage is that several attacks are possible, and one such attack is the phishing attack. In phishing attack, the attacker replicates the original web application to collect data in an unauthorized way. This paper provides an insight into the phishing attack in an EMR and the possible ways to overcome the phishing attack. The solution is provided by role-based authentication that ensures only privileged users get access to the EMR, thereby preventing the threat of patient’s data misuse. The application is tested for a potential attack on the pre- and post-implementation scenarios.

Original language	English
Title of host publication	Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019
Editors	Thangaprakash Sengodan, M. Murugappan, Sanjay Misra
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	975-985
Number of pages	11
ISBN (Print)	9789811555572
DOIs	https://doi.org/10.1007/978-981-15-5558-9_82
Publication status	Published - 2020
Event	1st International Conference on Advances in Electrical and Computer Technologies, ICAECT 2019 - Coimbatore, India Duration: 26-04-2019 → 27-04-2019

Publication series

Name	Lecture Notes in Electrical Engineering
Volume	672
ISSN (Print)	1876-1100
ISSN (Electronic)	1876-1119

Conference

Conference	1st International Conference on Advances in Electrical and Computer Technologies, ICAECT 2019
Country/Territory	India
City	Coimbatore
Period	26-04-19 → 27-04-19

All Science Journal Classification (ASJC) codes

Industrial and Manufacturing Engineering

Access to Document

10.1007/978-981-15-5558-9_82

Cite this

Aneesh Kini, U., Poornananda Bhat, M., Ganiga, R., Pai, R. M., Manohara Pai, M. M., & Shiva Prasad, H. C. (2020). Detection and control of phishing attack in electronic medical record application. In T. Sengodan, M. Murugappan, & S. Misra (Eds.), Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019 (pp. 975-985). (Lecture Notes in Electrical Engineering; Vol. 672). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-981-15-5558-9_82

Aneesh Kini, U. ; Poornananda Bhat, M. ; Ganiga, Raghavendra et al. / Detection and control of phishing attack in electronic medical record application. Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019. editor / Thangaprakash Sengodan ; M. Murugappan ; Sanjay Misra. Springer Science and Business Media Deutschland GmbH, 2020. pp. 975-985 (Lecture Notes in Electrical Engineering).

@inproceedings{4ae092dc85214cabac87053ca836b51b,

title = "Detection and control of phishing attack in electronic medical record application",

abstract = "Advancement in Information and Communication Technology (I&CT) has wide applications in medical field. The patient record can be stored electronically instead of files. Electronic Medical Record (EMR) is a collection of application program that collects and stores the patient data in servers. Data are retrievable by patients or doctors from any part of the globe via the internet. The disadvantage is that several attacks are possible, and one such attack is the phishing attack. In phishing attack, the attacker replicates the original web application to collect data in an unauthorized way. This paper provides an insight into the phishing attack in an EMR and the possible ways to overcome the phishing attack. The solution is provided by role-based authentication that ensures only privileged users get access to the EMR, thereby preventing the threat of patient{\textquoteright}s data misuse. The application is tested for a potential attack on the pre- and post-implementation scenarios.",

author = "{Aneesh Kini}, U. and {Poornananda Bhat}, M. and Raghavendra Ganiga and Pai, {Radhika M.} and {Manohara Pai}, {M. M.} and {Shiva Prasad}, {H. C.}",

year = "2020",

doi = "10.1007/978-981-15-5558-9_82",

language = "English",

isbn = "9789811555572",

series = "Lecture Notes in Electrical Engineering",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "975--985",

editor = "Thangaprakash Sengodan and M. Murugappan and Sanjay Misra",

booktitle = "Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019",

address = "Germany",

note = "1st International Conference on Advances in Electrical and Computer Technologies, ICAECT 2019 ; Conference date: 26-04-2019 Through 27-04-2019",

}

Aneesh Kini, U, Poornananda Bhat, M, Ganiga, R , Pai, RM , Manohara Pai, MM & Shiva Prasad, HC 2020, Detection and control of phishing attack in electronic medical record application. in T Sengodan, M Murugappan & S Misra (eds), Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019. Lecture Notes in Electrical Engineering, vol. 672, Springer Science and Business Media Deutschland GmbH, pp. 975-985, 1st International Conference on Advances in Electrical and Computer Technologies, ICAECT 2019, Coimbatore, India, 26-04-19. https://doi.org/10.1007/978-981-15-5558-9_82

Detection and control of phishing attack in electronic medical record application. / Aneesh Kini, U.; Poornananda Bhat, M.; Ganiga, Raghavendra et al.
Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019. ed. / Thangaprakash Sengodan; M. Murugappan; Sanjay Misra. Springer Science and Business Media Deutschland GmbH, 2020. p. 975-985 (Lecture Notes in Electrical Engineering; Vol. 672).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Detection and control of phishing attack in electronic medical record application

AU - Aneesh Kini, U.

AU - Poornananda Bhat, M.

AU - Ganiga, Raghavendra

AU - Pai, Radhika M.

AU - Manohara Pai, M. M.

AU - Shiva Prasad, H. C.

PY - 2020

Y1 - 2020

N2 - Advancement in Information and Communication Technology (I&CT) has wide applications in medical field. The patient record can be stored electronically instead of files. Electronic Medical Record (EMR) is a collection of application program that collects and stores the patient data in servers. Data are retrievable by patients or doctors from any part of the globe via the internet. The disadvantage is that several attacks are possible, and one such attack is the phishing attack. In phishing attack, the attacker replicates the original web application to collect data in an unauthorized way. This paper provides an insight into the phishing attack in an EMR and the possible ways to overcome the phishing attack. The solution is provided by role-based authentication that ensures only privileged users get access to the EMR, thereby preventing the threat of patient’s data misuse. The application is tested for a potential attack on the pre- and post-implementation scenarios.

AB - Advancement in Information and Communication Technology (I&CT) has wide applications in medical field. The patient record can be stored electronically instead of files. Electronic Medical Record (EMR) is a collection of application program that collects and stores the patient data in servers. Data are retrievable by patients or doctors from any part of the globe via the internet. The disadvantage is that several attacks are possible, and one such attack is the phishing attack. In phishing attack, the attacker replicates the original web application to collect data in an unauthorized way. This paper provides an insight into the phishing attack in an EMR and the possible ways to overcome the phishing attack. The solution is provided by role-based authentication that ensures only privileged users get access to the EMR, thereby preventing the threat of patient’s data misuse. The application is tested for a potential attack on the pre- and post-implementation scenarios.

UR - http://www.scopus.com/inward/record.url?scp=85091314155&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85091314155&partnerID=8YFLogxK

U2 - 10.1007/978-981-15-5558-9_82

DO - 10.1007/978-981-15-5558-9_82

M3 - Conference contribution

AN - SCOPUS:85091314155

SN - 9789811555572

T3 - Lecture Notes in Electrical Engineering

SP - 975

EP - 985

BT - Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019

A2 - Sengodan, Thangaprakash

A2 - Murugappan, M.

A2 - Misra, Sanjay

PB - Springer Science and Business Media Deutschland GmbH

T2 - 1st International Conference on Advances in Electrical and Computer Technologies, ICAECT 2019

Y2 - 26 April 2019 through 27 April 2019

ER -

Aneesh Kini U, Poornananda Bhat M, Ganiga R , Pai RM , Manohara Pai MM, Shiva Prasad HC. Detection and control of phishing attack in electronic medical record application. In Sengodan T, Murugappan M, Misra S, editors, Advances in Electrical and Computer Technologies - Select Proceedings of ICAECT 2019. Springer Science and Business Media Deutschland GmbH. 2020. p. 975-985. (Lecture Notes in Electrical Engineering). doi: 10.1007/978-981-15-5558-9_82

Detection and control of phishing attack in electronic medical record application

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this