Paper Info
Title
Workarounds to computer access in healthcare organizations: you want my password or a dead patient?
Abstract
Workarounds to computer access in healthcare are sufficiently common that they often go unnoticed. Clinicians focus on patient care, not cybersecurity. We argue and demonstrate that understanding workarounds to healthcare workers' computer access requires not only analyses of computer rules, but also interviews and observations with clinicians. In addition, we illustrate the value of shadowing clinicians and conducing focus groups to understand their motivations and tradeoffs for circumvention. Ethnographic investigation of the medical workplace emerges as a critical method of research because in the inevitable conflict between even well-intended people versus the machines, it's the people who are the more creative, flexible, and motivated. We conducted interviews and observations with hundreds of medical workers and with 19 cybersecurity experts, CIOs, CMIOs, CTO, and IT workers to obtain their perceptions of computer security. We also shadowed clinicians as they worked. We present dozens of ways workers ingeniously circumvent security rules. The clinicians we studied were not "black hat" hackers, but just professionals seeking to accomplish their work despite the security technologies and regulations.
Year
DOI
Venue
2015
10.3233/978-1-61499-488-6-215
Studies in Health Technology and Informatics
Keywords
Field
DocType
Workarounds,cyber security,computer access,workflow
Health care,Internet privacy,Workaround,Computer access,Knowledge management,Hacker,Password,Patient care,Medicine,Focus group
Conference
Volume
ISSN
Citations 
208
0926-9630
3
PageRank 
References 
Authors
0.40
7
4
Name
Order
Citations
PageRank
Ross Koppel17513.70
Sean W. Smith21240205.10
Jim Blythe370773.61
Vijay Kothari4124.00