Healthcare teams over the Internet: Programming a certificate-based approach

International Journal of Medical Informatics

Volumn 70, Issue 2-3, 2003, Pages 161-171

  Georgiadis, Christos K ^a   Mavridis, Ioannis K ^a   Pangalos, George I ^a  

^a ARISTOTLE UNIVERSITY OF THESSALONIKI   (Greece)

Author keywords

Access control systems; Digital certificates; Health information systems; Healthcare teams; Information systems security; Internet

Indexed keywords

INTERNET; PATIENT TREATMENT;

DOCTORS;

HEALTH CARE;

ARTICLE; COMPUTER MODEL; COMPUTER PROGRAM; COMPUTER SECURITY; HEALTH CARE ACCESS; HYBRID COMPUTER; INTERNET; MEDICAL INFORMATICS; MEDICAL INFORMATION; PATIENT CARE; PRIORITY JOURNAL;

EID: 0043067949     PISSN: 13865056     EISSN: None     Source Type: Journal    
DOI: 10.1016/S1386-5056(03)00031-5     Document Type: Article

References (14)

1. Katsikas S.K. Health care management and information systems security: awareness, training or education. Int. J. Med. Informatics. 60:2000;129-135.
2. Department of Health and Human Services (USA), The HCFA Internet Communications Security and Appropriate Use Policy and Guidelines, Health Care Financing Administration, Office of Information Services, Security and Standards Group, February 1999, http://www.hcfa.gov/security/isecplcy.htm.
3. ITU-T Recommendation X.509. Information Technology: Open Systems Interconnection - The Directory: Public Key and Attribute Certificate Frameworks, 2000, ISO/IEC 9594-8:2001.
4. I. Mavridis, C.K. Georgiadis, G. Pangalos, M. Khair, Using Digital Certificates for Access Control in Clinical Intranet Applications, book edition of J. Technol. Health Care, vol. 8, Nos. 3, 4 (2000), ISSN 0928-7329, IOS Press, pp. 173-174.
5. R.K. Thomas, Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments, in: Proceedings of the Second ACM Workshop on Role-Based Access Control (RBAC 97), Fairfax, VA, USA, 6-7 November, 1997, pp. 13-19.
6. C.K. Georgiadis, I. Mavridis, G. Pangalos, R.K. Thomas, Flexible team-based access control using contexts, in: Proceedings of the Sixth ACM Symposium on Access Control Models and Technologies (SACMAT 2001), Chantilly, VA, USA, May 2001, pp. 21-27.
7. C.K. Georgiadis, I. Mavridis, G. Pangalos, Implementing Context and Team Based Access Control in Healthcare Intranets, International Journal of Health Care Engineering "Technology and Health Care" (book edition), vol. 9, Number 6 (2001), ISSN 0928-7329, IOS Press, Special Issue: Abstracts of the Sixth World Congress on the Internet in Medicine (MEDNET 2001), Udine, Italy, December 2001.
8. The Computer-based Patient Record Institute. Description of the Computer-Based Patient Record (CPR) and Computer-Based Patient Record System. Prepared by the CPRI Work Group on CPR Description (WDES). http://www.cpri.org/resource/docs/hldd.html; May 1995.
9. J. Grimson, W. Grimson, W. Hasselbring, The System Integration (SI) Challenge in Health Care, Communications of the ACM. June 2000, vol. 43, No. 6, pp. 49-55.
10. C.K. Georgiadis, I. Mavridis, G. Pangalos, Context and role based hybrid access control for collaborative environments, in: Proceedings of the Fifth Nordic Workshop on Secure IT Systems-Encouraging Co-operation (NORDSEC 2000), Reykjavik, Iceland, 12-13 October 2000, pp. 225-238.
11. R. Sandhu, D. Ferraiolo, R. Kuhn, The NIST model for role-based access control: towards a unified standard, in: Proceedings of the Fifth ACM Workshop on Role-Based Access Control (RBAC 2000), Technical University of Berlin, Berlin, Germany, 26-28 July 2000, pp. 47-63.
12. I. Mavridis, G. Pangalos, M. Khair, eMEDAC: role-based access control supporting discretionary and mandatory features, in: Proceedings of 13th IFIP WG 11.3 Working Conference on Database Security, Seattle, WA, USA, 25-28 July 1999, pp. 55-63.
13. Sandhu R. Role-Based Access Control, Advances in Computers. 46:1998;Academic Press.
14. W. Johnston, S. Mudumbai, M. Thompson, Authorization and attribute certificates for widely distributed access control, in: Proceedings of IEEE Seventh International Workshop on Enabling Technologies: Infrastructures for Collaborative Enterprises (WETICE '98), Stanford, USA, 1998.