Anda belum login :: 23 Nov 2024 03:42 WIB
Home
|
Logon
Hidden
»
Administration
»
Collection Detail
Detail
Access Control Requirements for Processing Electronic Health Records
Bibliografi
Author:
Alhaqbani, Bandar
;
Fidge, Colin
Bahasa:
(EN )
Penerbit:
Springer-Verlag Berlin Heidelberg
Tempat Terbit:
Heidelberg
Tahun Terbit:
2008
Jenis:
Papers/Makalah
Fulltext:
Access Control Requirements.pdf
(327.92KB;
0 download
)
Abstract
There is currently a strong focus worldwide on the potential of large-scale Electronic Health Record systems to cut costs and improve patient outcomes through increased efficiency. A number of countries are developing nationwide EHR systems to aggregate services currently provided by isolated Electronic Medical Record databases. However, such aggregation introduces new risks for patient privacy and data security, both by linking previously-separate pieces of information about an individual, and by creating single access points to a wide range of personal data. It is thus essential that new access control policies and mechanisms are devised for federated Electronic Health Record systems, to ensure not only that sensitive patient data is accessible by authorized personnel only, but also that it is available when needed in life-critical situations. Here we review the traditional security models for access control, Discretionary Access Control, Mandatory Access Control and Role-Based Access Control, and use a case study to demonstrate that no single one of them is sufficient in a federated healthcare environment. We then show how the required level of data security can be achieved through a judicious combination of all three mechanisms.
Opini Anda
Klik untuk menuliskan opini Anda tentang koleksi ini!
Lihat Sejarah Pengadaan
Konversi Metadata
Kembali
Process time: 0.234375 second(s)