Andreas Mattas K, Ioannis Mavridis K, George Pangalos I
Informatics Laboratory, Computers Division, Faculty of Technology, Aristotle University of Thessaloniki, 54006, Thessaloniki, Greece.
Stud Health Technol Inform. 2002;90:346-50.
The interconnection of information systems of different parties involved in healthcare applications leads to the need for information sharing across large-scale and highly distributed database systems. Applying appropriate access control policies in an effective and flexible way is a specific task for a number of local security officers that must operate according to a high-level access control administration system. The particular security requirements of healthcare information systems are reflected to the access control system, which must be flexible and dynamically adaptable to the daily activities. Decentralizing access control administration can be achieved in a uniform and consistent way when applying appropriate administrative rules and constraints. In this paper are presented the basic features of an access control administration model for interconnected information systems, as in the healthcare environment.
医疗保健应用中不同参与方的信息系统相互连接,这就产生了在大规模且高度分布式数据库系统之间共享信息的需求。以有效且灵活的方式应用适当的访问控制策略,对于一些必须依据高级访问控制管理系统进行操作的本地安全官员而言,是一项特定任务。医疗保健信息系统的特殊安全要求反映在访问控制系统中,该系统必须灵活且能动态适应日常活动。在应用适当的管理规则和约束时,可以以统一且一致的方式实现访问控制管理的分散化。本文介绍了如在医疗保健环境中互联信息系统的访问控制管理模型的基本特征。