Security for People with Mental Illness in Telehealth Systems: A Proposal
It tackles security design for telehealth systems to improve usability for people with mental illness, but it is incremental as it builds on existing regulatory frameworks like HIPAA.
The paper addresses the lack of attention to security needs for people with any mental illness (AMI) in telehealth systems, proposing priority security properties and a design process to make security accessible and usable for this group.
A mental health crisis is looming large, and needs to be addressed. But across age groups, even just in the United States, more than 50% of people with any mental illness (AMI) did not seek or receive any service or treatment. The proliferation of telehealth and telepsychiatry tools and systems can help address this crisis, but outside of traditional regulatory aspects on privacy, e.g. Health Insurance Portability and Accountability Act (HIPPA), there does not seem to be enough attention on the security needs, concerns, or user experience of people with AMI using those telehealth systems. In this text, I try to explore some priority security properties for telehealth systems used by people with AMI for mental heath services (MHS). I will also suggest some key steps in a proposed process for designing and building security mechanisms into such systems, so that security is accessible and usable to patients with AMI, and these systems can achieve their goals of ameliorate this mental health crisis.