Security, Privacy, and Confidentiality in Electronic Prescribing Systems: A Review Study

Reyhane Norouzi Aval, Seyyedeh Fatemeh Mousavi Baigi, Masoumeh Sarbaz, Khalil Kimiafar



Introduction: The use of electronic prescribing has identified as a strategically important policy to improve health care. Therefore, the purpose of this study was to review the issues related to security, privacy and privacy of electronic copying systems.

Material and Methods: A comprehensive review of studies were conducted that published in English, free access to the full text of the article and without time limitation, by searching for keywords in keywords, title and abstract of studies in valid scientific databases Web of Science, Scopus, PubMed and Embase in June 4, 2021. Two researchers reviewed the title and content of searched studies independently. 137 related studies found and finally 25 main articles selected.

Results: In general, the results of the study showed that in some countries, there are still no minimum requirements and standards for these systems; But the use of security and privacy protocols has been used in various ways. However, according to other studies, most patients and physicians are concerned about the privacy and security of medical data in the context of these systems. In general, security in an electronic healthcare system includes the seven main components of user authentication, patient confidentiality, licensing issues, scalability, integrity, non-denial, and confidentiality of information sent, processed, and stored.

Conclusion: In this study, different protocols were classified into 7 main components. Although there are different protocols to ensure security, privacy and confidentiality issues; But the lack of international security requirements poses a major challenge to the adoption of electronic transcription systems. Given that the majority of patients and physicians were concerned about the issues of privacy and security of medical data, it is necessary for policy makers and managers in this area to pay attention to these issues before implementing these systems and provide a safe environment for implementing these systems. Provide patient privacy.


Electronic Copywriting; Privacy; Confidentiality; Security


Bhatia T, Verma A. Cryptanalysis and improvement of certificateless proxy signcryption scheme for e-prescription system in mobile cloud computing. Annals of Telecommunications. 2017; 72(9): 563-76.

Aldughayfiq B, Sampalli S. Digital health in physicians' and pharmacists' office: A comparative study of e-prescription systems' architecture and digital security in eight countries. OMICS. 2021; 25(2): 102-22. PMID: 32931378 DOI: 10.1089/omi.2020.0085

Bourka A, Kaliontzoglou A, Polemi D, Georgoulas A, Sklavos P. Enriching healthcare applications with cryptographic mechanisms and XML-based security services. Technol Health Care. 2003; 11(1): 61-76. PMID: 12590159

Mundy D, Chadwick DW. Security issues in the electronic transmission of prescriptions. Med Inform Internet Med. 2003; 28(4): 253-77. PMID: 14668129 DOI: 10.1080/14639230310001621675

Data Protection Act [Internet]. 1998 [cited: 1 Dec 2021]. Available from:

Kierkegaard P. E-prescription across Europe. Health and Technology. 2013; 3(3): 205-19.

Gall W, Aly AF, Sojer R, Spahni S, Ammenwerth E. The national e-medication approaches in Germany, Switzerland and Austria: A structured comparison. Int J Med Inform. 2016; 93: 14-25. PMID: 27435943 DOI: 10.1016/j.ijmedinf.2016.05.009

Hsu CL, Lu CF. A security and privacy preserving e-prescription system based on smart cards. J Med Syst. 2012; 36(6): 3637-47. PMID: 22407399 DOI: 10.1007/s10916-012-9838-y

Hamze M, Peyrard F, Conchon E. An improvement of NFC-SEC with signed exchanges for an e-prescription-based application. In: Memmi G, Blanke U (eds). Mobile computing, applications, and services. Lecture notes of the institute for computer sciences, social informatics and telecommunications engineering, vol 130. Springer, Cham; 2014.

Ullah I, Amin N, Almogren A, Khan MA, Uddin MI, Hua Q. A lightweight and secured certificate-based proxy signcryption (CB-PS) scheme for e-prescription systems. IEEE Access. 2020; 8: 199197-212.

Ross J, Pinkas D, Pope N. Electronic signature policies. RFC 3125, The Internet Society; 2001.

Steinschaden T, Petersson G, Åstrand B. Physicians' attitudes towards eprescribing: A comparative web survey in Austria and Sweden. Inform Prim Care. 2009; 17(4): 241-8. PMID: 20359402 DOI: 10.14236/jhi.v17i4.743

Niinimà J, Savolainen M, Forsström JJ. Methodology for security development of an electronic prescription system. Proc AMIA Symp. 1998; 245-9. PMID: 9929219 PMCID: PMC2232178

Report on the review of patient-identifiable information [Internet]. 1997 [cited: 1 Dec 2021]. Available from:

Blobel B, Bleumer G, Muller A, Flikkenschild E, Ottes F. Current security issues faced by health care establishments. In: The ISHTAR Consortium (ed). Studies in Health Technology and Informatics. Vol 66. IOS Press; 2001.

Sizer R. Information technology security evaluation criteria. Computer Bulletin. 1986; 1993: 5.

Porterfield A, Engelbert K, Coustasse A. Electronic prescribing: Improving the efficiency and accuracy of prescribing in the ambulatory care setting. Perspect Health Inf Manag. 2014; 11(Spring): 1g. PMID: 24808808

Schiff G, Seoane-Vazquez E, Wright A. Incorporating indications into medication ordering: Time to enter the age of reason. N Engl J Med. 2016; 375(4): 306-9. PMID: 27464201 DOI: 10.1056/NEJMp1603964

Spil TA, Cellucci LW. Electronic health records across the nations. Health Policy and Technology. 2015; 4(2): 89-90.

Gіder Ö, Ocak S, Top M. Evaluation of electronic prescription implications in Turkey: An investigation of the perceptions of physicians. Worldviews Evid Based Nurs. 2015; 12(2): 88-97. PMID: 25773862 DOI: 10.1111/wvn.12082

Garada M, McLachlan AJ, Schiff GD, Lehnbom EC. What do Australian consumers, pharmacists and prescribers think about documenting indications on prescriptions and dispensed medicines labels? A qualitative study. BMC Health Serv Res. 2017; 17(1): 734. PMID: 29141618 DOI: 10.1186/s12913-017-2704-3

Lapane KL, Waring ME, Dubé C, Schneider KL. E-prescribing and patient safety: Results from a mixed method study. Am J Pharm Benefits. 2011; 3(2): e24-34. PMID: 24179595

Zheng Y, editor Digital signcryption or how to achieve cost (signature & encryption)≪ cost (signature)+ cost (encryption). Annual International Cryptology Conference. Springer; 1997.

Tamizhselvan C, Vijayalakshmi V. An energy efficient secure distributed naming service for IoT. International Journal of Advanced Studies of Scientific Research. 2018; 3(8): 1-5.

Yang Y, Han X, Bao F, Deng RH. A smart-card-enabled privacy preserving e-prescription system. IEEE Trans Inf Technol Biomed. 2004; 8(1): 47-58. PMID: 15055801 DOI: 10.1109/titb.2004.824731

Li P, Nelson SD, Malin BA, Chen Y. DMMS: A decentralized blockchain ledger for the management of medication histories. Blockchain Healthc Today. 2019; 2: 38. PMID: 32524086 DOI: 10.30953/bhty.v2.38



  • There are currently no refbacks.