HMM: HIPAA Modeling Method for Modeling Security in e-Health

Constructing secured health-care information systems requires collecting relevant information concerning the security safeguards and the ways to set them up. This information is the base for defining the targeted security system. In order to facilitate this knowledge gathering process, we propose throughout this paper, HMM (HIPAA -Health Insurance Portability and Accountability Act- Modeling Method) especially set-up so as to guide the interview process with healthcare security experts and computer engineers and grasp their know-how as well as their security needs. Based on UML (Unified Modeling Language) notation, HMM aims at transforming the HIPAA security requirements into models in order to define the process of the implementation of security policies, and therefore help the development teams to take into account the security aspect when setting-up e-Health systems.