Towards secure Grid-enabled healthcare

Software - Practice and Experience

Volumn 35, Issue 9, 2005, Pages 857-871

  Power, D J ^a   Politou, E A ^a   Slaymaker, M A ^a   Simpson, A C ^a  

^a UNIVERSITY OF OXFORD   (United Kingdom)

Author keywords

Electronic healthcare; Grid computing; Security

Indexed keywords

COMPUTER ARCHITECTURE; CONSTRAINT THEORY; DATA PROCESSING; LAWS AND LEGISLATION; MIDDLEWARE; PROJECT MANAGEMENT; SECURITY OF DATA; SOFTWARE PROTOTYPING;

ELECTRONIC HEALTHCARE; GRID COMPUTING; LOGIAL ENTITY; VIRTUAL ORGANIZATION;

COMPUTER SOFTWARE;

EID: 22144465809     PISSN: 00380644     EISSN: None     Source Type: Journal    
DOI: 10.1002/spe.692     Document Type: Conference Paper

References (28)

1. Brady JM, Gavaghan DJ, Simpson AC, Mulet-Parada M, Highnam RP. e-DiaMoND: A grid-enabled federated database of annotated mammograms. Grid Computing: Making the Global Infrastructure a Reality, Berman F, Fox GC, Hey AJG (eds.). Wiley: New York, 2003; 923-943.
2. Slaymaker MA, Politou E, Power DJ, Lloyd S, Simpson AC. Security aspects of grid-enabled digital mammography. Methods of Information in Medicine (in press).
3. Data Protection Act. 1998. http://www.hmso.gov.uk/acts/acts1998/19980029. htm [5 May 2005].
4. Medical ethics and law: Confidentiality, data protection, Caldicott principles, computer use and patient records. 2003. http://www.addenbrookes.org. uk/advice/medethlaw/confidentiall.html [5 May 2005].
5. Amedolia SR, Brady JM, McClatchey R, Mulet-Parada M, Odeh M, Solomonides T. Mammogrid: Large-scale distributed mammogram analysis. Proceedings of the 18th Medical Informatics Conference (MIE 2003) (Studies in Health Technology and Informatics, vol. 95), St Malo, France, 2003; 194-199.
6. National Digital Mammography Archive, http://www.i3archive.com [5 May 2005].
7. Soutter J, Campos J, Hartswood M, Jirotka M, Procter R, Slack R, Taylor P. Grid-based mammography training. Hospital Radiologist 2003; 5(6).
8. Trust in Cyberspace. Computer Science and Telecommunications Board, Committee on Information Systems Trustworthiness. National Research Council, 1999, 352 pp.
9. Flechais I, Sasse MA, Hailes SMV. Bringing security home: A process for developing secure and usable systems. Proceedings of the ACM/SIGSAC New Security Paradigms Workshop, Ascona, Switzerland, August 2003. ACM Press: New York, 2003; 49-57.
10. Slaymaker MA, Politou E, Power DJ, Lloyd S, Simpson AC. e-DiaMoND: Risk analysis. Proceedings of HealthGrid'04, January 2004.
11. Humphrey M, Thompson M. Security implications of typical grid computing usage scenarios. Cluster Computing 2002; 5(3):257-264.
12. Globus Toolkit, http://www.globus.org/toolkit/ [5 May 2005].
13. Foster I, Kesselman C, Nick J, Tuecke S. The physiology of the grid: An open grid services architecture for distributed systems integration, 2002. http://www.globus.org/research/papers/ogsa.pdf [5 May 2005].
14. Open Grid Services Infrastructure (OGSI) version 1.0, June 2003. http://www-unix.globus.org/toolkit/draft-ggf-ogsi-gridservice-33.2003-06-27.pdf [5 May 2005].
15. OASIS WSRF TC, October 2004. http://www.oasis-open.org/committees/ tc_home.php?wg_abbrev=wsrf.
16. Open Grid Services Architecture - Data Access and Integration, OGSA-DAI, September 2004. http://www.ogsadai.org [5 May 2005].
17. Open Grid Services Architecture - Distributed Query Processor, OGSA-DQP, September 2004. http://www.ogsadai.org/dqp/ [5 May 2005].
18. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, April 2002. http://www.ietf.org/rfc/rfc3280.txt [5 May 2005].
19. Grid Security Infrastructure Documentation, October 2004. http://www-unix.globus.org/toolkit/docs/3.2/gsi/index.html [5 May 2005].
20. Kerberos: The Network Authentication Protocol, October 2004. http://web.mit.edu/kerberos/www/ [5 May 2005].
21. The SSL Protocol version 3.0, November 1996. http://www21.ocn.ne.jp/~k- west/SSLandTLS/draft302.txt [5 May 2005].
22. The TLS Protocol version 1.0, January 1999. http://www.ietf.org/rfc/ rfc2246.txt [5 May 2005].
23. Godik S, Moses T. EXtensible Access Control Markup Language (XACML) version 1.1, committee specification, August 2003. http://www.oasis-open.org [5 May 2005].
24. OASIS Security Services TC, October 2004. http://www.oasis-open.org/ committees/tc_home.php?wg_abbrev=security [5 May 2005].
25. Chadwick DW, Otenko A. RBAC policies in XML for X.509 based privilege management. Proceedings of the IFIP TCII 17th International Conference on Information Security (SEC2002): Security in the Information Society: Visions and Perspectives, Cairo, Egypt, May 2002. Kluwer Academic Publishers, 2002; 39-53.
26. Meyers M. RFC 2560 - X.509 Internet Public Key Infrastructure Online Certificate Status Protocol - OCSP, June 1999. http://www.faqs.org/rfcs/rfc2560. html [5 May 2005].
27. Date CJ. An Introduction to Database Systems (8th edn). Addison-Wesley: Reading, MA, 2004.
28. Power DJ, Slaymaker MA, Politou EA, Simpson AC. A secure wrapper for OGSA-DAI. European Grid Conference (EGC2005), submitted.