Modeling the cybersecurity of hospitals in natural and man-made hazards

Xilei Zhao, Ian Miers, Matthew Green, Judith Mitrani-Reiser

Research output: Contribution to journalArticlepeer-review

2 Scopus citations


Hospital cybersecurity has become a growing concern with an increasing number of cyberattacks against hospitals and health care facilities. We aim to tackle this issue by developing a model to capture the vulnerabilities of cyber capabilities of hospitals during hazards and proposing novel techniques to address the vulnerabilities. In this paper, we propose a novel technique, called self-protecting electronic medical records (EMRs), to provide Medical Records Services in hospitals with higher cyber capabilities against communications failure and cyber terrorism. We use fault tree analysis, a top–down deductive risk assessment tool, to analyze the failure mechanism of Medical Records Services in hospitals with and without using the self-protecting EMR technique against hazards. This work provides a refined understanding of the interactions between cyberinfrastructure and hospital functioning in natural and man-made hazards, and contributes to preventing cascading failures in hospital functionality and enhancing resilience of health care systems and communities.

Original languageEnglish (US)
Pages (from-to)36-49
Number of pages14
JournalSustainable and Resilient Infrastructure
Issue number1
StatePublished - Jan 2 2019


  • Emergency preparedness
  • cyberinfrastructure
  • cybersecurity
  • electronic medical records
  • fault tree analysis

ASJC Scopus subject areas

  • Civil and Structural Engineering
  • Geography, Planning and Development
  • Building and Construction
  • Safety, Risk, Reliability and Quality


Dive into the research topics of 'Modeling the cybersecurity of hospitals in natural and man-made hazards'. Together they form a unique fingerprint.

Cite this