As smartphones and smartphone applications are widely used in a healthcare context (e.g., remote healthcare), these devices and applications may need to comply with the Health Insurance Portability and Accountability Act (HIPAA) of 1996. In other words, adequate safeguards to protect the user's sensitive information (e.g., personally identifiable information and/or medical history) are required to be enforced on such devices and applications. In this study, we forensically focus on the potential of recovering residual data from Android medical applications, with the objective of providing an initial risk assessment of such applications. Our findings (e.g., documentation of the artifacts) also contribute to a better understanding of the types and location of evidential artifacts that can, potentially, be recovered from these applications in a digital forensic investigation.
翻译:由于智能手机和智能手机应用在保健方面(例如远程保健)广泛使用,这些装置和应用可能需要遵守1996年《健康保险便携和问责法》(HIPAA),换句话说,在这类装置和应用方面,必须实施充分的保障措施,保护用户的敏感信息(例如个人可识别的信息和/或医疗史),在这项研究中,我们从法医学上侧重于从安卓医疗应用中回收剩余数据的潜力,目的是对这种应用进行初步风险评估,我们的调查结果(例如文物文件)也有助于更好地了解在数字法医调查中有可能从这些应用中回收的证据文物的类型和地点。