A Semantically Rich Knowledge Graph to Automate HIPAA Regulations for Cloud Health IT Services

Thumbnail Image

Files

1071.pdf (531.22 KB)

Links to Files

https://ieeexplore.ieee.org/document/9463546

Permanent Link

http://hdl.handle.net/11603/22336
 https://doi.org/10.1109/BigDataSecurityHPSCIDS52275.2021.00013

Collections

UMBC Information Systems Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

https://orcid.org/0000-0002-6354-1686

Date

2021-05-15

Type of Work

conference papers and proceedings
preprints
Text

Department

Program

Citation of Original Publication

D. -y. Kim and K. P. Joshi, "A Semantically Rich Knowledge Graph to Automate HIPAA Regulations for Cloud Health IT Services," 2021 7th IEEE Intl Conference on Big Data Security on Cloud (BigDataSecurity), IEEE Intl Conference on High Performance and Smart Computing, (HPSC) and IEEE Intl Conference on Intelligent Data and Security (IDS), 2021, pp. 7-12, doi: 10.1109/BigDataSecurityHPSCIDS52275.2021.00013.

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
© 2021 IEEE.  Personal use of this material is permitted.  Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

Subjects

UMBC Ebiquity Research Group

Abstract

As healthcare organizations adopt cloud-based services to manage their patient data, compliance with the rules and policies of the Health Insurance Portability and Accountability Act (HIPAA) regulation becomes increasingly complex. At present, HIPAA rules are available only in large textual format and require significant human effort to implement in the Health IT systems. Moreover, every change in the regulation, like the recent relaxation in telehealth policy due to the COVID-19 pandemic, has to be manually implemented in the IT system. We have developed a semantically rich Knowledge graph, using Semantic Web technologies to represent HIPAA rules in a machine-processable format. This will significantly help in automatically reasoning of HIPAA policies. In this paper, we describe our design along with the results of our study of the current status of research on HIPAA ontology. We have validated our design against use cases defined by the US Department of Health and Human Services (HHS). This knowledge graph can be integrated with existing healthcare systems to provide automated compliance with HIPAA policies.