recommended reading

Software upgrade knocks out Defense health record system

Tom Grill/Getty Images

The Military Health System shut down the AHLTA clinical data repository -- which stores 9.7 million electronic records for active-duty and retired military personnel and their families -- after experiencing problems with a commercial software package that manages data storage, a top MHS official told Nextgov.

This shutdown, in turn, forced military clinicians to use the AHLTA -- or Armed Forces Health Longitudinal Technology Application -- electronic health record system in "local mode," without access to the main record database.

The AHLTA repository was taken offline at 8:26 a.m. EST on Tuesday and was restored at 6 p.m. the same day, according to Mary Ann Rockey, MHS program executive officer for Joint Medical Information Systems.

Rockey said the CDR was taken offline "in order to correct a problem with a version upgrade to storage services that was loaded over the weekend," which included Monday, the Martin Luther King federal holiday. She did not identify the commercial software package.

In her emailed statement, Rockey said the commercial storage software package was "part of a series of upgrades that will enhance AHLTA data storage speed and capacity of the CDR. Several software and hardware components have already been successfully deployed to production without any problems and have improved AHLTA operational availability, speed, usability and capacity."

She added, "our analysis determined the root cause [of the shutdown] was a new version of commercial software that was installed with the AHLTA upgrade. The commercial software causing the problem has been rolled back to a previous version while the vendor addresses the issue to prevent future disruptions."

AHLTA supports 77,000 clinical users in 63 military hospitals, 413 clinics, 15 deployed hospitals and 63 Navy ships. Rockey said MHS health care providers continued to see patients during the outage and to document care while AHLTA was in local mode, though certain provider-specific features and functions were not available.

She said all the service chief information officers were informed of the outage within 30 minutes. Roger Baker, CIO of the Veterans Affairs Department, told Nextgov that he must personally inform VA Secretary Eric Shinseki if the Veterans Health Information Systems and Technology Architecture (VistA) electronic health record system, which serves more than 6 million patients, experiences an outage lasting two hours.

A source familiar with AHLTA, who declined to be identified, said the daylong outage revealed that MHS has poor or nonexistent contingency operations plans in case of an AHLTA failure. This source said MHS should have a backup data center in case of a failure to the primary data center. Baker said VA has backup systems to ensure continued operations of VistA.

Threatwatch Alert

Thousands of cyber attacks occur each day

See the latest threats

JOIN THE DISCUSSION

Close [ x ] More from Nextgov
 
 

Thank you for subscribing to newsletters from Nextgov.com.
We think these reports might interest you:

  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

    Download
  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

    Download
  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

    Download
  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

    Download
  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

    Download
  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security

    Download

When you download a report, your information may be shared with the underwriters of that document.