Defense Healthcare Information Assurance Program (DHIAP) Phase III
Abstract
This report covers activities and accomplishments of Phase Ill of the Defense Healthcare Information Assurance Program% (DHIAP) for the period 30 July 2001 to 30 July 2003. Phase Ill tasks include: Technical Management, Deploy OCTAVE, OCTAVE Tools, OCTAVE Comparative Analysis, and Biometric Authentication Prototype. The Deploy OCTAVE effort developed and delivered DoD-specific training in use of the OCTAVE Methodology for conducting risk assessments. OCTAVE Tools developed two forms of automated support for the DoD's use of OCTAVE-a PC-based OCTAVE Automated Tool (OAT) to guide site Medical Information Security Response Teams (MlSRTs) through execution of OCTAVE while capturing data and generating interim and final reports, and a Risk Database (RDB) for centralized capture and analysis of site-level OAT data. OCTAVE Comparative Analysis produced reports comparing the OCTAVE process and outputs to other MHS requirements, specifically to execution and results of DlTSCAP, requirements of the HlPAA Security/Privacy Standards, JCAHO requirements, and requirements of the NIST Best Practices for Information Security (NIST SP 800-30). The Biometric Authentication Prototype effort developed and piloted a server and workstation outfitted with biometric authentication technologies (fingerprint, face, iris, and voice) and reported on utility/desirability of various biometric authentication approaches in medical environments with diverse characteristics.
Document Details
- Document Type
- Technical Report
- Publication Date
- Oct 01, 2003
- Accession Number
- ADA419898
Entities
People
- Archie Andrews