Ver ítem 

Mostrar el registro sencillo del ítem

Ponencia

Opened Access
A Practical Experience Applying Security Audit Techniques in an Industrial e-Health System Which Uses an Open Source ERP

dc.creatorGómez, Juliánes
dc.creatorOlivero González, Miguel Ángeles
dc.creatorGarcía García, Julián Albertoes
dc.creatorEscalona Cuaresma, María Josées
dc.date.accessioned2022-07-11T08:25:42Z
dc.date.available2022-07-11T08:25:42Z
dc.date.issued2021
dc.identifier.citationGómez, J., Olivero González, M.Á., García García, J.A. y Escalona Cuaresma, M.J. (2021). A Practical Experience Applying Security Audit Techniques in an Industrial e-Health System Which Uses an Open Source ERP. En WEBIST 2021: 17th International Conference on Web Information Systems and Technologies (482-489), Celebración Virtual: SciTePress.
dc.identifier.isbn978-989-758-536-4es
dc.identifier.issn2184-3252es
dc.identifier.urihttps://hdl.handle.net/11441/135190
dc.description.abstractHealthcare institutions is an ever-innovative field, in which modernization is moving forward taking giant steps. This modernization, so called “digitization”, brings up some concerns that should be carefully consid ered. Currently, the most sensible concerning in this field is the management of Electronic Health Record and patients’ data privacy. Health-related data in healthcare systems are under strict regulations, such as the EU’s General Data Protection Regulation (GDPR), whose non-compliance imposes huge penalties and fines. Cy bersecurity in healthcare plays an important role at protecting these sensitive data, which are highly valuable for criminals. Security experts follow already existing security frameworks to orchestrate the security assess ment process, so that the auditing process is as complete and as organized as possible. This study extends the lifecycle of a security assessment framework and conducts an exploitation and vulnerabilities’ analysis on an actual industrial scenario. The results of this security audit shows that even if the system is heavily fortified, there can be still some vulnerabilities.es
dc.description.sponsorshipMinisterio de Ciencia, Innovación y Universidades PID2019-105455GB-C31es
dc.description.sponsorshipJunta de Andalucía US-1251532es
dc.formatapplication/pdfes
dc.format.extent8es
dc.language.isoenges
dc.publisherSciTePresses
dc.relation.ispartofWEBIST 2021: 17th International Conference on Web Information Systems and Technologies (2021), pp. 482-489.
dc.rightsAttribution-NonCommercial-NoDerivatives 4.0 Internacional*
dc.rights.urihttp://creativecommons.org/licenses/by-nc-nd/4.0/*
dc.subjectAudites
dc.subjectCybersecurityes
dc.subjectOdooes
dc.subjectHealthcarees
dc.subjectPentestes
dc.subjectPentestinges
dc.subjectSecurityes
dc.titleA Practical Experience Applying Security Audit Techniques in an Industrial e-Health System Which Uses an Open Source ERPes
dc.typeinfo:eu-repo/semantics/conferenceObjectes
dcterms.identifierhttps://ror.org/03yxnpp24
dc.type.versioninfo:eu-repo/semantics/publishedVersiones
dc.rights.accessRightsinfo:eu-repo/semantics/openAccesses
dc.contributor.affiliationUniversidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticoses
dc.relation.projectIDPID2019-105455GB-C31es
dc.relation.projectIDUS-1251532es
dc.relation.publisherversionhttps://www.scitepress.org/Link.aspx?doi=10.5220/0010714500003058es
dc.identifier.doi10.5220/0010714500003058es
dc.contributor.groupUniversidad de Sevilla. TIC021: Engineering and Science for Software Systemses
dc.publication.initialPage482es
dc.publication.endPage489es
dc.eventtitleWEBIST 2021: 17th International Conference on Web Information Systems and Technologieses
dc.eventinstitutionCelebración Virtuales
dc.relation.publicationplaceSetúbal, Portugales
dc.contributor.funderMinisterio de Ciencia, Innovación y Universidades (MICINN). Españaes
dc.contributor.funderJunta de Andalucíaes

FicherosTamañoFormatoVerDescripción
107145.pdf397.7KbIcon   [PDF] Ver/Abrir  

Este registro aparece en las siguientes colecciones

Mostrar el registro sencillo del ítem

Attribution-NonCommercial-NoDerivatives 4.0 Internacional
Excepto si se señala otra cosa, la licencia del ítem se describe como: Attribution-NonCommercial-NoDerivatives 4.0 Internacional