Trust Negotiation for Authentication and Authorization in Healthcare Information Systems

Annual International Conference of the IEEE Engineering in Medicine and Biology - Proceedings

Volumn 2, Issue , 2003, Pages 1406-1409

  Vawdrey, David K ^a   Sundelin, Tore L ^a   Searaons, Kent E ^a   Knutson, Charles D ^a  

^a 3361 TMCB   (United States)

Author keywords

Access Control; Authentication; Security; Surrogate Trust Negotiation; Trust Negotiation

Indexed keywords

ACCESS CONTROL; AUTHENTICATION; SECURITY; SURROGATE TRUST NEGOTIATION; TRUST NEGOTIATION;

ALLERGIES; COST EFFECTIVENESS; ELECTRONIC MEDICAL EQUIPMENT; INFORMATION MANAGEMENT; INTERNET; MOBILE COMPUTING; PATIENT MONITORING; SECURITY OF DATA; WIRELESS TELECOMMUNICATION SYSTEMS;

HEALTH;

EID: 1542361507     PISSN: 05891019     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (20)

1. D. M. Rind, I. S. Kohane, P. Szolovits, C. Safran, H. C. Chueh, and G. O. Barnett, "Maintaining the confidentiality of medical records shared over the Internet and the World Wide Web," Ann. Int. Med., vol. 127, no. 2, pp. 138-141, July 1997.
2. I. S. Kohane, P. Greenspun, J. Fackler, C. Cimino, and P. Szolovits, "Building national electronic medical record systems via the World Wide Web," JAMIA, vol. 3, no. 3, pp. 191-207, 1996.
3. J. van der Lei, "Closing the loop between clinical practice, research, and education: The potential of electronic patient records," Meth. Inf. Med., vol. 41, no. 1, pp. 51-54, 2002.
4. R. C. Barrows, Jr. and P. D. Clayton, "Privacy, confidentiality, and electronic medical records," JAMIA, vol. 3, no. 2, pp. 139-148, 1996.
5. NetMotion Wireless, Inc., "HIPAA security for wireless networks," White Paper, 2001. [Online]. Available: http://www.netmotionwireless.com/assets/netmotion_security_hipaa.pdf
6. R. Schoenberg and C. Safran, "Internet based repository of medical records that retains patient confidentiality," BMJ, vol. 321, pp. 1199-1203, Nov. 2000.
7. "Information for health: A strategy for building the national health information infrastructure," National Committee on Vital and Health Statistics, Tech. Rep., Dec. 2001.
8. R. S. Dick, E. B. Steen, and D. E. Detmer, The computer-based patient record: An essential technology for health care. Washington, DC: National Academy Press, 1997.
9. J. van Wingerde, J. Schindler, P. Kilbridge, P. Szolovits, and C. Safran, "Using HL7 and the World Wide Web for unifying patient data from remote databases," in Proc. American Medical Informatics Association Annu. Fall Symposium, J. J. Cimino, Ed., 1996, pp. 643-647.
10. A. Dwivedi, R. K. Bali, M. A. Belsis, R. N. G. Naguib, P. Every, and N. S. Nassar, "Towards a practical healthcare information security model for healthcare institutions," in Proc. 4th Conf. Information Technology Applications in Biomedicine (ITAB'03), Birmingham, UK, pp. 114-117.
11. T. C. Rindfleisch, "Privacy, information technology, and health care," Comm. ACM, vol. 40, no. 8, pp. 92-100, 1997.
12. T. Huston, "Security issues for implementation of e-medical records," Comm. ACM, vol. 44, no. 9, pp. 89-94, 2001.
13. K. D. Mandl, P. Szolovits, and I. S. Kohane, "Public standards and patient control: How to keep electronic medical records accessible but private," BMJ, vol. 322, pp. 283-287, Feb. 2001.
14. R. Coffey, J. Ball, M. Johantgen, A. Elixhauser, P. Purcell, and R. Andrews, "The case for national health data standards," Health Affairs, vol. 16, no. 5, pp. 58-72, 1997.
15. H. M. Chao, S. H. Twu, and C. M. Hsu, "A secure identification access control scheme for accessing healthcare information systems," in Proc. 4th Conf. Information Technology Applications in Biomedicine (ITAB'03), Birmingham, UK, pp. 122-125.
16. W. H. Winsborough, K. E. Seamons, and V. E. Jones, "Automated Trust Negotiation," in Proc. DARPA Information Survivability Conference and Exposition, Hilton Head, SC, Jan. 2000.
17. M. Winslett, T. Yu, K. E. Seamons, A. Hess, J. Jacobson, R. Jarvis, B. Smith, and L. Yu, "Negotiating trust on the Web," IEEE Internet Comput., vol. 6, no. 6, pp. 30-37, Nov./Dec. 2002.
18. Mobile Healthcare Alliance (MoHCA), "Are there HIPPA recommendations regarding patient data transfer over wireless networks?" White Paper, 2002.
19. T. Sundelin, A. Hess, J. Holt, R. Bradshaw, K. E. Seamons, and C. D. Knutson, "Surrogate trust negotiation: Authentication and authorization in dynamic mobile networks," unpublished.
20. M. A. Epstein, M. S. Pasieka, W. P. Lord, S. T. Wong, and N. J. Mankovich, "Security for the digital information age of medicine: Issues, applications, and implementation," J. Dig. Imag., vol. 11, no. 1, pp. 33-44, Feb. 1998.