A consortium of nine companies in the healthcare industry, including hospital-chain HCA Inc., are banding together to create a set of security practices to better protect the information in electronic medical records. The security standards are expected to be finalized by the end of 2008.