Access control administration in healthcare applications.

The interconnection of information systems of different parties involved in healthcare applications leads to the need for information sharing across large-scale and highly distributed database systems. Applying appropriate access control policies in an effective and flexible way is a specific task for a number of local security officers that must operate according to a high-level access control administration system. The particular security requirements of healthcare information systems are reflected to the access control system, which must be flexible and dynamically adaptable to the daily activities. Decentralizing access control administration can be achieved in a uniform and consistent way when applying appropriate administrative rules and constraints. In this paper are presented the basic features of an access control administration model for interconnected information systems, as in the healthcare environment.