|
|
 |
|
|
Pages: 1
Setting Up UN & PW on medical site
(Click here to view the original thread with full colors/images)
Posted by: Tchap
Hello,
My name is Tina and I'm new to this site. I found it by doing a google search and so far, what I've seen is *very* impressive. Thank you for allowing me to be a part of your community and for letting me post the following question.
I need to create (update actually) a site that will use log in with user names and passwords. They will have to create a username and password (once) that they will have to remember in order to log into the site. If they forget what their U/N and/or P/W is it will kick them out after the 3rd attempt then I'll have to reset it for them. (the company wants me to maintain that part of it). I'm assuming (dangerous I know) that I'll have to use SSL and the site will have to come up with "https". ??
The interactive part will be for handling prescription refills only. Normally, heart meds, and the like.
Also, once they get into the site, they will have to fill out a form (each time) with their (first and last) name, D.O.B., Phone, email, name of prescription they are refilling, how many milligrams, how many times taken per day and a comment box. If none of these fields are filled out, it must kick them back to the (unfinished) page and alert them to what needs to be filled out (highlighted in red, for instance). Then of course a submit button.
Once it's correctly submitted, they should get a page saying "submission was successful" (or some such wording) and then the filled out page will go to a nurse located at the medical office.
This site must be totally secure in order to pass H.I.P.A. standards for the privacy act.
In signing up to be a member of Open Tech Support Community, the set up for username and password is pretty much what I'm looking for.
If anyone can help me out, point me in the right direction, or recommend a good book that will help me, I'd be most appreciative!
Thanks,
Tina
Posted by: Shalome
So what exactly is your question?
Are we to understand that you don't know anything about secure web development (or possibly web development at all) and are assigned to create a HIPAA-compliant web server and website?!?
If you've got to get this project done anytime soon, you may want to hire a subcontractor that specializes in HIPAA-compliant web servers and sites. It's not an easy "here's what you need to do, step 1, step 2, step 3" thing. There is far, far more involved than just setting up a username and password.
Posted by: zorg
Indeed, you will need to figure out how to use a database, setting it up managing etc, then using something like php (as this website does) to handle all your other queries, As far as I know a https account also has to be registered and that costs a small fortune as is. There is alot of work involved with this and would need alot of time studying. I would have to say, start reading up on sql, php for the basics.
Posted by: Tchap
Good morning, thank you for your reply.
Yes, I know web design, have owned my own business for several years. My question is on setting up a user name and password that visitors will have to create the first time they visit and use (as in they must remember their login infor) each time they use the system.
I guess I went a bit overboard on the info that I gave, was trying to give you the whole picture of what I need to do. I thought it might help in getting me pointed in the right direction. I realize "It's not an easy 'here's what you need to do, step 1, step 2, step 3' thing." I have a couple months to get this completed. How else does a person learn if they don't ask for help and resources. 
I have all the tools necessary for the secure site. The actual site is already built and being used, they just want to go interactive now. SSL and encryption is available for me to use through the company I use for all of my domains, etc.
Again, thank you for your reply.
Tina
Posted by: Tchap
Thank you for your reply. I'll get busy looking for info on sql & php! Thanks for pointing me in the direction I need to go.
Tina
Posted by: zorg
No problem, Im sure if you go to plces like
http://www.php.net/
http://www.phpbuilder.net/
http://www.iceteks.com/articles.php...ticle=php2&p=1&
http://burks.brighton.ac.uk/burks/l.../gisql/home.htm
http://www.webdevelopersnotes.com/t.../sql/index.php3
you will find some usefull info at least
These are basic tutorials, but especially with the php.net and phpbuilder.net you will be able to do searches for the functions you need to set up what you need. Have a loko at these just to get a basic principle of what you can do and what you will need server wise to get it al to work.
Posted by: Tchap
Thanks! I've also found a couple of books that I'm going to order too. Ya'll have been a great help. It's much appreciated!
Tina
 Quote:
|
Originally Posted by zorg
No problem, Im sure if you go to plces like
you will find some usefull info at least
These are basic tutorials, but especially with the php.net and phpbuilder.net you will be able to do searches for the functions you need to set up what you need. Have a loko at these just to get a basic principle of what you can do and what you will need server wise to get it al to work.
|
Posted by: Shalome
Web security standards and methods:
http://www.w3.org/Security/Faq/www-security-faq.html
http://www.openssl.org/
http://www.apache-ssl.org/
Security certificate authorities for SSL certs:
http://www.thawte.com/
http://www.entrust.com/
PHP-based secure user authentication tutorial:
http://www.pixel2life.com/forums/in...p?showtopic=967
mySQL database handling made simple:
http://www.phpmyadmin.net
some whitepapers on HIPAA privacy and security applied standards:
http://www.terradoncommunications.c...vices/hipaa.asp
http://www.hipaadvisory.com/
Posted by: Tchap
Thank you, Shalome! I'll be looking at these shortly!
Tina
|
|
|
|
|
