Security of patient and study data associated with DICOM images when transferred using compact disc media

Fintan J McEvoy¹, Eiliv Svalastoga

Affiliations

PMID: 17710493
PMCID: PMC3043670
DOI: 10.1007/s10278-007-9068-x

Security of patient and study data associated with DICOM images when transferred using compact disc media

Fintan J McEvoy et al. J Digit Imaging. 2009 Mar.

. 2009 Mar;22(1):65-70.

doi: 10.1007/s10278-007-9068-x. Epub 2007 Aug 21.

Authors

Fintan J McEvoy¹, Eiliv Svalastoga

Affiliation

¹ Department of Small Animal Clinical Sciences, Faculty of Life Sciences, Frederiksberg Campus, University of Copenhagen, Copenhagen, Denmark. fme@life.ku.dk

PMID: 17710493
PMCID: PMC3043670
DOI: 10.1007/s10278-007-9068-x

Abstract

The transmission of patient and imaging data between imaging centers and other interested individuals is increasingly achieved by means of compact disc digital media (CD). These CDs typically contain, in addition to the patient images, a DICOM reader and information about the origin of the data. While equipment manufacturers attach disclaimers to these discs and specify the intended use of such media, they are often the only practical means of transmitting data for small medical, dental, or veterinary medical centers. Images transmitted by these means are used for clinical diagnosis. This has lead to a heavy reliance on the integrity of the data. This report describes attempts to alter significant patient and study data on CD media and their outcome. The results show that data files are extremely vulnerable to alteration, and alterations are not detectable without detailed analysis of file structure. No alterations to the DICOM readers were required to achieve this; changes were applied only to the data files. CDs with altered data can be readily prepared, and from the point of view of individuals viewing the images, function identically to the original manufacturer's CD. Such media should be considered unsafe where there is a potential for financial or other gain to be had from altering the data, and the copy cannot be cross-checked with the original data.

PubMed Disclaimer

Figures

**Fig. 1**
Screen capture showing detail of the DICOM tag editor in DicomWorks. Changes to the fields “Patient name”, “Patient ID”, “Study Date” and “institution” have been completed.

**Fig. 2**
Screen capture of the image display window provided with the Agfa DICOM viewer. The image shows the thorax of a dog. Altered fields are seen in the upper menu bar and superimposed on the image. The accession number superimposed on the image marked “ACCESS#” differed from the number in the menu bar. The source of the number in each location differs and data at both locations were altered.

**Fig. 3**
Screen capture from the opening dialog of the eFilm™ Lite™ software used by Fuji. The data in the list field is taken from the altered “dicom.dir” file made by DicomWorks”. The user selects the study, and by mouse clicking, opens the (altered) images in the usual fashion.

See this image and copyright information in PMC

Comment in

Certifying digital images.
McEvoy F, Svalastoga E, McEvoy B. McEvoy F, et al. Vet Rec. 2009 Mar 7;164(10):312. doi: 10.1136/vr.164.10.312. Vet Rec. 2009. PMID: 19270329 No abstract available.

Cited by

Anatomical Context Protects Deep Learning from Adversarial Perturbations in Medical Imaging.
Li Y, Zhang H, Bermudez C, Chen Y, Landman BA, Vorobeychik Y. Li Y, et al. Neurocomputing (Amst). 2020 Feb 28;379:370-378. doi: 10.1016/j.neucom.2019.10.085. Epub 2019 Oct 31. Neurocomputing (Amst). 2020. PMID: 32863583 Free PMC article.
Impact of cross-enterprise data sharing on portable media with decentralised upload of DICOM data into PACS.
Aryanto KY, van de Wetering R, Broekema A, van Ooijen PM, Oudkerk M. Aryanto KY, et al. Insights Imaging. 2014 Feb;5(1):157-64. doi: 10.1007/s13244-013-0296-y. Epub 2013 Nov 17. Insights Imaging. 2014. PMID: 24243497 Free PMC article.
Lossless watermarking for verifying the integrity of medical images with tamper localization.
Guo X, Zhuang TG. Guo X, et al. J Digit Imaging. 2009 Dec;22(6):620-8. doi: 10.1007/s10278-008-9120-5. Epub 2008 May 13. J Digit Imaging. 2009. PMID: 18473141 Free PMC article.
Secured telemedicine using region-based watermarking with tamper localization.
Al-Haj A, Amer A. Al-Haj A, et al. J Digit Imaging. 2014 Dec;27(6):737-50. doi: 10.1007/s10278-014-9709-9. J Digit Imaging. 2014. PMID: 24874408 Free PMC article.
Digital DICOM in Dentistry.
Burgess J. Burgess J. Open Dent J. 2015 Jul 31;9:330-6. doi: 10.2174/1874210601509010330. eCollection 2015. Open Dent J. 2015. PMID: 26464603 Free PMC article.

See all "Cited by" articles

References

1. Engelmann U, Schroeter A, Schwab M, Eisenmann U, Vetter M, Lorenz K, et al. Borderless teleradiology with CHILI. J Med Internet Res. 1999;1(2):E8. doi: 10.2196/jmir.1.2.e8. - DOI - PMC - PubMed
1. Bernarding J, Thiel A, Decker I, Grzesik A, Wolf KJ, Tolxdorff T. Prototype of a JAVA/DICOM image server with integrated findings and data security. Stud Health Technol Inform. 2000;77:865–869. - PubMed
1. Bernarding J, Thiel A, Grzesik A. A JAVA-based DICOM server with integration of clinical findings and DICOM-conform data encryption. Int J Med Inform. 2001;64(2–3):429–438. doi: 10.1016/S1386-5056(01)00213-1. - DOI - PubMed
1. Schutze B, Kroll M, Filler TJ. A solution to add digital signatures to medical images according to the DICOM standard: embedded systems. Rofo. 2005;177(1):124–129. - PubMed
1. Ooijen PM, Roosjen R, Blecourt MJ, Dam R, Broekema A, Oudkerk M. Evaluation of the use of CD-ROM upload into the PACS or institutional web server. J Digit Imaging. 2006;19(Suppl 1):72–77. doi: 10.1007/s10278-006-0932-x. - DOI - PMC - PubMed

MeSH terms

Actions
Actions
Actions
Actions
Actions
Actions
Actions

LinkOut - more resources

Full Text Sources
Other Literature Sources
- The Lens - Patent Citations Database

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

Security of patient and study data associated with DICOM images when transferred using compact disc media

Affiliation

Security of patient and study data associated with DICOM images when transferred using compact disc media

Authors

Affiliation

Abstract

Figures

Comment in

Similar articles

Cited by

References

MeSH terms

LinkOut - more resources

Full Text Sources

Other Literature Sources