Sciweavers

BPM
2007
Springer

Access Control Requirements for Processing Electronic Health Records

14 years 3 months ago
Access Control Requirements for Processing Electronic Health Records
There is currently a strong focus worldwide on the potential of large-scale Electronic Health Record systems to cut costs and improve patient outcomes through increased efficiency. A number of countries are developing nationwide EHR systems to aggregate services currently provided by isolated Electronic Medical Record databases. However, such aggregation introduces new risks for patient privacy and data security, both by linking previously-separate pieces of information about an individual, and by creating single access points to a wide range of personal data. It is thus essential that new access control policies and mechanisms are devised for federated Electronic Health Record systems, to ensure not only that sensitive patient data is accessible by authorized personnel only, but also that it is available when needed in life-critical situations. Here we review the traditional security models for access control, Discretionary Access Control, Mandatory Access Control and Role-Based Acces...
Bandar Alhaqbani, Colin J. Fidge
Added 12 Aug 2010
Updated 12 Aug 2010
Type Conference
Year 2007
Where BPM
Authors Bandar Alhaqbani, Colin J. Fidge
Comments (0)