Description: Regulatory Compliance Software Engineering
Aaron Massey, Georgia Tech
Laws and regulations safeguard citizens� security and privacy. For example, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) governs the security and privacy of electronic health records (EHR) systems. HIPAA violations can result in millions of dollars in penalties for non-compliance. Ensuring EHR systems are legally compliant is challenging for software engineers because the laws and regulations governing EHR systems are written by policymakers with little to no understanding of software engineering. This presentation introduces the field of Regulatory Compliance Software Engineering and discusses a particular research concern within that field: How can we help software engineers seeking to assess whether security and privacy requirements for EHR systems are legally compliant?
Aaron Massey is a Postdoctoral Fellow at Georgia Tech's School of Interactive Computing and the Associate Directory of ThePrivacyPlace.org. His research interests include computer security, privacy, and regulatory compliance software engineering. Aaron earned the MS and PhD degrees in Computer Science from North Carolina State University and a BS in Computer Engineering from Purdue University. He is a recipient of a Google Policy Fellowship and the Walter H. Wilkinson Research Ethics Fellowship. He is a member of the ACM, IEEE, IAPP, and the USACM Public Policy Council. (Visit: www.cerias.purude.edu)
For More Information please visit : - http://www.cerias.purdue.edu/
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.