Kowalski S
Department of Computer and Systems Sciences, Stockholm University, Sweden.
Int J Biomed Comput. 1994 Feb;35 Suppl:129-38.
The paper starts off by first briefly discussing the necessary ethical, legal and administrative/management controls that are required before the mechanisms of accountability controls can be implemented in automated clinical patient record systems. After these social aspects are discussed the technical aspects of the ALS are outlined. The security concepts of the ECMA framework are reviewed and used to explain the technical design of the ALS. A walk-through of the server in a typical patient record transaction is used to explain the operations of the server. The paper concludes with a general discussion of the usefulness of accountability mechanisms in making security in health care information work in practice.
本文开篇首先简要讨论了在自动化临床患者记录系统中实施问责控制机制之前所需的必要伦理、法律及行政/管理控制。在讨论完这些社会层面的内容后,概述了自动化生命支持系统(ALS)的技术层面。回顾了欧洲计算机制造商协会(ECMA)框架的安全概念,并用以解释ALS的技术设计。通过一个典型患者记录交易中服务器的运行过程来解释服务器的操作。本文最后对问责机制在使医疗保健信息安全在实际中发挥作用方面的有用性进行了总体讨论。
