Choe Jun, Yoo Sun K
Graduate School of Biomedical Engineering, Yonsei University, Seoul, Republic of Korea.
Int J Med Inform. 2008 Apr;77(4):242-8. doi: 10.1016/j.ijmedinf.2007.06.001. Epub 2007 Aug 2.
Internet-based health-record management requires not only the provision of strong data protection to prevent privacy intrusion and unauthorized access, but also the introduction of a common healthcare-record format to allow cooperation using heterogeneous repositories held at various hospitals.
A secure multi-agent architecture is proposed for accessing healthcare information through the Internet from multiple heterogeneous repositories. The proposed system is organized into a four-tier architecture that consists of client applications, a central access-control system, local access-control systems, and hospital information systems. The eXtensible Markup Language (XML) and the role-based access-control (RBAC) system are combined for efficient repository management by providing methods for access-control, information exchange, user authentication, data integrity, and selective encryption.
A multi-agent architecture using XML and RBAC can interconnect heterogeneous repositories with different formats and different hospital policies, and allow them to communicate securely. The authorized client, having confirmed access privileges, can retrieve the requested healthcare data in an XML-based common data format with embedded confidentiality.
The proposed method for Internet-based exchange of patient data is particularly useful for cooperative healthcare and the creation of lifetime healthcare records.
基于互联网的健康记录管理不仅需要提供强大的数据保护以防止隐私侵犯和未经授权的访问,还需要引入一种通用的医疗记录格式,以便利用各医院持有的异构存储库进行合作。
提出了一种安全的多智能体架构,用于通过互联网从多个异构存储库访问医疗信息。所提出的系统被组织成一个四层架构,包括客户端应用程序、中央访问控制系统、本地访问控制系统和医院信息系统。可扩展标记语言(XML)和基于角色的访问控制(RBAC)系统相结合,通过提供访问控制、信息交换、用户认证、数据完整性和选择性加密的方法,实现高效的存储库管理。
使用XML和RBAC的多智能体架构可以将具有不同格式和不同医院政策的异构存储库互连起来,并允许它们进行安全通信。经过授权的客户端在确认访问权限后,可以以基于XML的通用数据格式检索请求的医疗数据,并嵌入保密性。
所提出的基于互联网的患者数据交换方法对于合作医疗和创建终身健康记录特别有用。
Zotero 插件