Authorisation and access control for electronic health record systems

International Journal of Medical Informatics

Volumn 73, Issue 3, 2004, Pages 251-257

  Blobel, Bernd ^a  

^a OTTO VON GUERICKE UNIVERSITY   (Germany)

Author keywords

Access control; Authorisation; Electronic healthcare record; Enhanced TTP services; Privilege management; Role management; Security

Indexed keywords

COMPUTER PROGRAMMING LANGUAGES; DATA PRIVACY; HOSPITAL DATA PROCESSING; SECURITY OF DATA; XML;

ELECTRONIC HEALTH RECORD (EHR); HOSPITAL INFORMATION SYSTEMS;

HEALTH CARE;

DOCTOR PATIENT RELATION; ELECTRONICS; HEALTH CARE PERSONNEL; HEALTH CARE POLICY; HOSPITAL INFORMATION SYSTEM; HUMAN; INFORMED CONSENT; INTERNATIONAL STANDARD UNIT; MEDICAL INFORMATICS; MEDICAL RECORD; METHODOLOGY; MODEL; PRIORITY JOURNAL; REVIEW;

EID: 1842474926     PISSN: 13865056     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.ijmedinf.2003.11.018     Document Type: Article

References (15)

1. B. Blobel, M. Holena, Comparison, evaluation, and possible harmonisation of the HL7, DHE, and CORBA middleware, in: J. Dudeck, B. Blobel, W. Lordieck, T. Bürkle (Eds.), New technologies in hospital information systems, Series Studies in Health Technology and Informatics, vol. 89, IOS Press, Amsterdam, 1997, pp. 40-47.
2. ISO/IEC 10746-2, Information technology: open distributed processing - reference model. Part 2. Foundations.
3. W3C, XML Metadata Interchange: http://www.w3c.org.
4. B. Blobel, Analysis, design and implementation of secure and interoperable distributed health information systems, Series Studies in Health Technology and Informatics, vol. 89, IOS Press, Amsterdam, 2002.
5. OMG Inc, The CORBA Security Specification, Object Management Group Framingham Inc., 1997.
6. Blobel B., Roger-France F. A systematic approach for analysis and design of secure health information systems. Int. J. Med. Inform. 62(3):2001;51-78.
7. Blobel B. Application of the component paradigm for analysis and design of advanced health system architectures. Int. J. Med. Inform. 60(3):2000;281-301.
8. N. Damianou, N. Dulay, E. Lupu, M. Sloman, Ponder: a language for specifying security and management policies for distributed systems: the language specification, version 2.3, Imperial College Research Report DoC 2000-2001, 20 October 2000.
9. OMG Inc. Object Constraint Language Specification: http://www.omg.org.
10. OMG Inc. Resource access decision facility specification, version 1.0, April 2001: http://www.omg.org.
11. B. Hartmann, D.J. Flinn, K. Beznosov, Enterprise Security with EJB and CORBA, Wiley, New York, 2001.
12. K. Yamamoto, et al., The awareness of security issues among hospitals in Japan, in: Proceedings of the IMIA Workshop Caring for Health Information Safety, Security and Secrecy, Hemskerk, The Netherlands, 13-16 November 1993.
13. ISO DTS 17090 Health Informatics - Public Key Infrastructure, 2001.
14. HARP Consortium: http://www.ist-harp.org.
15. G. Neumann, M. Strembeck, A scenario-driven role engineering process for functional RBAC roles, in: Proceeding of the ACM Workshop on Role-Based Access Control, 2002.