Masys D R, Baker D B
University of California, San Diego (UCSD), USA.
Proc AMIA Symp. 1998:366-70.
The ubiquity and ease of use of the Web have made it an increasingly popular medium for communication of health-related information. Web interfaces to commercially available clinical information systems are now available or under development by most major vendors. To the extent that such interfaces involve the use of unprotected operating systems, they are vulnerable to security limitations of Web client software environments. The Patient Centered Access to Secure Systems Online (PCASSO) project extends the protections for person-identifiable health data on Web client computers. PCASSO uses several approaches, including physical protection of authentication information, execution containment, graphical displays, and monitoring the client system for intrusions and co-existing programs that may compromise security.
网络的普及性和易用性使其成为传播健康相关信息日益流行的媒介。大多数主要供应商现在都已推出或正在开发面向商业可用临床信息系统的网络接口。就此类接口涉及使用未受保护的操作系统而言,它们容易受到网络客户端软件环境安全限制的影响。在线患者安全访问系统(PCASSO)项目扩展了对网络客户端计算机上可识别个人身份的健康数据的保护。PCASSO采用了多种方法,包括对认证信息进行物理保护、执行隔离、图形显示以及监控客户端系统是否存在可能危及安全的入侵行为和共存程序。
