Kallepalli Vijay N V, Ehikioya Sylvanus A, Camorlinga Sergio, Rueda Jose A
Department of Computer Science, University of Manitoba, 561 Machray Hall, Winnipeg, Manitoba R3T 2N2, Canada.
J Digit Imaging. 2003 Dec;16(4):356-64. doi: 10.1007/s10278-003-1710-7. Epub 2004 Jan 30.
In health care, it is mandatory to maintain the privacy and confidentiality of medical data. To achieve this, a fine-grained access control and an access log for accessing medical images are two important aspects that need to be considered in health care systems. Fine-grained access control provides access to medical data only to authorized persons based on priority, location, and content. A log captures each attempt to access medical data. This article describes an overall middleware infrastructure required for secure access to Digital Imaging and Communication in Medicine (DICOM) images, with an emphasis on access control and log maintenance. We introduce a hybrid access control model that combines the properties of two existing models. A trust relationship between hospitals is used to make the hybrid access control model scalable across hospitals. We also discuss events that have to be logged and where the log has to be maintained. A prototype of security middleware infrastructure is implemented.
在医疗保健领域,必须维护医疗数据的隐私和保密性。为实现这一点,细粒度访问控制和医疗图像访问日志是医疗保健系统中需要考虑的两个重要方面。细粒度访问控制仅根据优先级、位置和内容向授权人员提供对医疗数据的访问权限。日志记录每次访问医疗数据的尝试。本文描述了安全访问医学数字成像和通信(DICOM)图像所需的整体中间件基础设施,重点是访问控制和日志维护。我们引入了一种混合访问控制模型,该模型结合了两个现有模型的属性。医院之间的信任关系用于使混合访问控制模型在各医院之间具有可扩展性。我们还讨论了必须记录的事件以及日志的存储位置。实现了安全中间件基础设施的原型。
