Security middleware infrastructure for DICOM images in health information systems

Journal of Digital Imaging

Volumn 16, Issue 4, 2003, Pages 356-364

  Kallepalli, Vijay N V ^a,c   Ehikioya, Sylvanus A ^a   Camorlinga, Sergio ^a   Rueda, Jose A ^b  

^a UNIVERSITY OF MANITOBA   (Canada)

^b TRLabs   (Canada)

^c ST BONIFACE GENERAL HOSPITAL RESEARCH CENTRE   (Canada)

Author keywords

Access control; Confidentiality; DICOM; Health care; Infrastructure; Log maintenance; Middleware; PHIA; Policy management; Privacy; Security

Indexed keywords

DIAGNOSTIC RADIOGRAPHY; HOSPITALS; IMAGE PROCESSING; MIDDLEWARE; SAFETY FACTOR;

ACCESS CONTROL; CONFIDENTIALTY; DIGITAL IMAGING AND COMMUNICATION IN MEDICINE (DICOM); LOG MAINTENANCE; POLICY MANAGEMENT; PRIVACY;

HEALTH CARE;

ACCESS TO INFORMATION; ARTICLE; CANADA; CASE REPORT; COMPARATIVE STUDY; COMPUTER NETWORK; COMPUTER SECURITY; CONFIDENTIALITY; DATA BASE; HEALTH INSURANCE; HOSPITAL INFORMATION SYSTEM; HUMAN; LEGAL ASPECT; MEDICAL RECORD; PRACTICE GUIDELINE; SIGNAL PROCESSING; UNITED STATES;

ACCESS TO INFORMATION; CANADA; COMPUTER COMMUNICATION NETWORKS; COMPUTER SECURITY; CONFIDENTIALITY; DATABASE MANAGEMENT SYSTEMS; GUIDELINE ADHERENCE; HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT; HOSPITAL INFORMATION SYSTEMS; HUMANS; MEDICAL RECORDS SYSTEMS, COMPUTERIZED; RADIOLOGY INFORMATION SYSTEMS; SIGNAL PROCESSING, COMPUTER-ASSISTED; UNITED STATES;

EID: 2942737247     PISSN: 08971889     EISSN: None     Source Type: Journal    
DOI: 10.1007/s10278-003-1710-7     Document Type: Review

References (11)

1. The Personal Health Information Act, Regulation 245/97. The Manitoba Gazette Vol. 126 (50), December (1997). (URL: http://www.gov.mb.ca/health/phia/) .
2. Vazquez-Naya, JM, Loureiro, JP, Dorado, J de la Calle, et al: Necessary security mechanism in a PACS DICOM access system with Web technology. J Digit Imaging. (Special Issue on Inconsistency Management, Society of Computer Applications in Radiology) 15:107-111, 2002
3. A Guide to Understanding Discretionary Access Control. National Computer Security Center, NCSC-TG-01, Version-01, Fort George G. Meade, MD, June 1998
4. Lee TMP: Using mandatory integrity to enforce commercial security. Proceedings of IEEE Computer Society Symposium on Security and Privacy (Oakland, CA), May 1998, pp. 140-146
5. Ferraiolo D, Kuhn R: Role-based access control. proceedings of 15th NIST-NCSC National Computer Security Conference (Baltimore, MD), October 1992
6. Chandramouli R: A framework for multiple authorization types in healthcare application systems. Proceedings of 17th Annual Computer Security Applications Conference (New Orleans, LA), December 2001
7. Thomas RK: Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments. Proceedings of the 2nd ACM Workshop on Role-based Access Control (RBAC'97) (Fairfax, VA), November 1997. pp. 13-19
8. Zhang L, Ahn GJ, Chu BT: A role-based delegation framework for health care information system. Proceedings of 7th ACM Symposium on Access Control Models and Technologies (SACMAT'02) (Monterey, CA), June 2002
9. Reliable delivery for syslog. RFC 3195, November 2001. (URL: http://www.faqs.org/rfcs/rfc3195.html)
10. Axelsson S: Intrusion detection systems: a survey and taxonomy. Technical Report 99-15, Department of Computer Engineering, Chalmers University of Technology, SE41296 Göteborg, Sweden, March 2000
11. Digital Imaging and Communications in Medicine Standard, Security Profiles. Rosslyn, VA: National Electrical Manufactures Association. 2002