Wave's auditable multi-user collaboration turns out to be well-suited for health records, as long as patients don't mind a bit less privacy.
Google Wave, envisioned as a reinvention of e-mail, is not likely to replace e-mail anytime soon. But Google may have found a use for its real-time communications platform beyond puzzling people.
Wave it seems is good for your health records. That's what some Google engineers intend to argue at USENIX HealthSec '10, part of the 19th USENIX Security Symposium, which runs from August 11-13, 2010.
In a paper to be presented at the conference, Google engineers Shirley Gaw and Umesh Shankar observe that aggregating health records from multiple sources, and merging that data in a way that maintains coherence and attribution while supporting the capacity to make corrections, isn't easy.
Current standards for medical health records -- Continuity of Care Record (CCR) and Continuity of Care Document (CCD) -- aren't intended as living documents, the co-authors claim. They're snapshots of clinical data, often without information that describes how changes in a patient's health should be interpreted over time.
"CCR and CCD are byproducts of walled gardens of care, where all inputs to the system came from the inside and were made by users authenticating to the same system," write Gaw and Shankar. "They do not match the more dynamic, messy, and distributed nature of aggregation---but this is precisely what end users, patients, actually want. And unfortunately this issue is not solved by the technology sector’s currently used protocols, such as REST-style (Google Health) and Database-style (Microsoft HealthVault) APIs in use."
"It's built from the ground up to collate multiple sources into a coherent whole," the co-authors state.
The Google Wave federation protocol, the open source code that allows Wave servers from different organizations to interoperate, is designed to present sequential updates from multiple sources in a format suitable for distributed medical record keeping.
Distributed medical records are useful because they allow providers and patients to correct medical errors. At the same time, democratized access represents a potential source of liability for health care organizations if it's not clear how a patent's record got changed.
Gaw and Shankar argue that basing a distributed health records system on the Wave federation protocol provides the audit trail and controls necessary to make such a system work.
There's a price to adopting this approach however: privacy.
Gaw and Shankar argue that increased transparency, with providers being able to edit and see each other's data -- the patient's entire history -- is not a bug but a feature. They suggest health care providers offering second opinions or follow-up examinations could update earlier diagnoses, which presumably would contribute to a better clinical outcome.
As for fears that greater health record transparency -- which could also be phrased "diminished health record privacy" -- might enable insurance companies to discriminate against certain patients, Gaw and Shankar conclude such concerns have been "mitigated by the recent health reform bill."
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
IT Strategies to Conquer the CloudChances are your organization is adopting cloud computing in one way or another -- or in multiple ways. Understanding the skills you need and how cloud affects IT operations and networking will help you adapt.