Oversea incident report automatic and analysis

Lin, Char-Ming

01 October 2002

This thesis focuses develops an automatic incident report system which provides Whois search function, incident report handlers can proceed to Whois search without any other tools and time-consuming training. The incident report system transforms the incident report e-mail into database. The TWCERT/CC staffs can immediately analyze incident report data, and attack tendency. This thesis brings following contributions: A. Reduce human and time resources Organization uses the incident report system developed by this thesis can save the workload of staffs and help staffs efficiently handle incident reports. B. Effective make use of incident report information This research transforms e-mail message into database, uses database is more effective to calculate variety of statistic values. C. Speed up reaction time Processing the incident reports requires heavy human workload. Using automatic incident report system timely cope with incident report, can make organization speed up reaction time.

handing comrosmises

incident report

network security

Whois search

Network Security Analysis and Summary in Taiwan

Fang, Jia-Ching

30 July 2003

With the increasing reliance on the Internet and computers, threats also increase. More and more foundations, companies and tools of computer network security emerge to defense the Internet. To prevent the attacks form crackers, plenty of resources about network security were developed on the Internet and people can get the resource they want as long as they know where the professional network security information is. But from another point of view, too much information would become a great burden to general users on the Internet, because they have no idea what information is the most important. This make them confuse, and the only thing they can do is do nothing. They need summarized security information and the advise for his own system and services, instead of all system security information. In this research, we integrate the systems in TWCERT/CC and discover the most helpful information to those who access the Internet in Taiwan, such as, the most threatened vulnerabilities in Taiwan. The information is like the SANS TOP 20. The unity of the entire system in TWCERT/CC could give administrators more specific and summarized information and their prior job is to fix the most vulnerable holes according to the information offered. Key words: network security, critical Internet security vulnerabilities, incident report, SAS, Security Auditing System, TWCERT/CC

network security

Security Auditing System

incident report

SAS

TWCERT/CC

På SoL-sidan : Avvikelsehantering på fem vårdboenden i Uppsala kommun

Berggren, Marie

January 2010

En viktig del av den svenska välfärden är kommunens äldreomsorg för personer över 65 år, där Socialtjänstlagen ger rättighet till vårdboende och andra servicetjänster när det behövs. Kommunernas kommunaltjänst ska enligt Socialtjänstlagen vara av god kvalitet. Rapportering av avvikande händelser är en av hörnpelarna i arbetet med att förbättra kvalitet och säkerhet i vården. Avvikelserapportering bidrar till att undvika att negativa händelser upprepas, samt att rutiner förbättras för att höja kvalitet. Genom att ta tillvara möjligheterna med avvikelserapporter kan kvaliteten på vårdboenden förbättras och utvecklas. Denna studie visar på behovet av ytterligare fokus på arbetet med avvikelsehantering gällande omsorg.

Incident report

deviation report

quality management

care of old people

nursing home

Avvikelserapportering

avvikelsehantering

kvalitetsarbete

äldreomsorg

vårdboende

The evaluation of methods for the prospective patient safety hazard analysis of ward-based oxygen therapy

Durand, Marcus L.

January 2009

When even seemingly benign and routine processes fail in healthcare, people sometimes die. The profound effect on the patient’s families and the healthcare staff involved is clear (Vincent and Coulter, 2002), while further consequences are felt by the institution involved, both financially and by damage to reputation. The trend in healthcare for learning through experience of adverse events is no longer a viable philosophy (Department of Health,Sir Ian Carruthers OBE and Pauline Philip, 2006). In order to make progress towards preventative learning, three Prospective Hazard Analysis (PHA) methods used in other industries were evaluated for use in the area of ward based healthcare. Failure Modes and Effects Analysis (FMEA), Fault Tree Analysis (FTA) and Hazard and Operability Analysis (HAZOP) were compared to each other in terms of ease of use, information they provide and the manner in which it is presented. Their results were also compared to baseline data produced through empirical research. Oxygen Therapy was used in this research as an example of a common ward based therapy. The resulting analysis listed 186 hazards almost all of which could lead to death, especially if combined. FTA and FMEA provided better system coverage than HAZOP and identified more hazards than were contained in the initial hazard identification method common to both techniques. FMEA and HAZOP needed some modification before use, with HAZOP requiring the most extensive adjustment. FTA has a very useful graphical presentation and was the only method capable of displaying causal linkage, but required that hazards be translated into events for analysis. It was concluded that formal Prospective Hazard Analysis (PHA) was applicable to this area of healthcare and presented added value through a combination of detailed information on possible hazards and accurate risk assessment based on a combination of expert opinion and empirical data. This provides a mechanism for evidence based identification of hazard barriers and safeguards as well as a method for formal communication of results at any stage of an analysis. It may further provide a very valuable vehicle for documented learning through prospective analysis incorporating feedback from previous experience and adverse incidents. The clear definition of systems and processes that form part of these methods provides a valuable opportunity for learning and the enduring capture and dissemination of tacit knowledge that can be continually updated and used for the formulation of strategies for safety and quality improvement.

615.5