TY - JOUR AU - El Emam, Khaled AU - Moreau, Katherine AU - Jonker, Elizabeth PY - 2011 DA - 2011/02/11 TI -在临床试验中使用密码保护个人健康信息有多强?JO - J Med Internet Res SP - e18 VL - 13 IS - 1kw -隐私KW -安全KW -密码AB -背景:关于在临床研究中如何安全地管理个人健康信息的发现和声明是混合的。目的:本研究的目的是评估临床试验中用于转移和共享敏感文件的做法的安全性。方法:进行两项研究。首先,我们获得了在加拿大受监管的临床试验期间通过电子邮件传输的15个有密码保护的文件。商业密码恢复工具被用于这些文件试图破解他们的密码。其次,对20名研究协调员进行了采访,以了解临床试验中包含个人健康信息文件的文件共享实践。结果:我们能够破解93%的文件(14/15)的密码。在这些文件中,有13个文件包含数千个有关试验参与者敏感健康信息的记录。这些密码往往相对较弱,使用常见的地名、动物、汽车品牌和明显的数字序列。 Patient information is commonly shared by email in the context of query resolution. Files containing personal health information are shared by email and, by posting them on shared drives with common passwords, to facilitate collaboration. Conclusion: If files containing sensitive patient information must be transferred by email, mechanisms to encrypt them and to ensure that password strength is high are necessary. More sophisticated collaboration tools are required to allow file sharing without password sharing. We provide recommendations to implement these practices. SN - 1438-8871 UR - //www.mybigtv.com/2011/1/e18/ UR - https://doi.org/10.2196/jmir.1335 DO - 10.2196/jmir.1335 ID - info:doi/10.2196/jmir.1335 ER -