Wiederhold G, Bilello M, Sarathy V, Qian X
Stanford University, CA, USA.
Proc AMIA Annu Fall Symp. 1996:120-4.
The TIHI (Trusted Interoperation of Healthcare Information) project addresses a security issue that arises when some information is being shared among collaborating enterprises, although not all enterprise information is sharable. It assumes that protection exists to prevent intrusion by adversaries through secure transmission and firewalls. The TIHI system design provides a gateway, owned by the enterprise security officer, to mediate queries and responses. The latter are typically transmitted via the Internet. The enterprise policy is determined by rules provided to the mediator. We show examples of typical rules. The problem and our solution, although developed in a healthcare context, is equally valid among collaborating enterprises.
医疗保健信息可信互操作性(TIHI)项目解决了一个安全问题,即当一些信息在合作企业之间共享时会出现的问题,尽管并非所有企业信息都可共享。该项目假定存在保护措施,通过安全传输和防火墙防止对手入侵。TIHI系统设计提供了一个由企业安全官员拥有的网关,用于调解查询和响应。后者通常通过互联网传输。企业政策由提供给调解器的规则决定。我们展示了典型规则的示例。尽管该问题及我们的解决方案是在医疗保健背景下开发的,但在合作企业中同样适用。
