nach oben

Journal of Imaging Informatics in Medicine

Erschienen in:

01.12.2003

Security Middleware Infrastructure for DICOM Images in Health Information Systems

verfasst von: Vijay N. V. Kallepalli, M.Sc., Sylvanus A. Ehikioya, Ph.D., Sergio Camorlinga, M.Sc., Jose A. Rueda, Ph.D.

Erschienen in: Journal of Imaging Informatics in Medicine | Ausgabe 4/2003

Einloggen, um Zugang zu erhalten

Abstract

In health care, it is mandatory to maintain the privacy and confidentiality of medical data. To achieve this, a fine-grained access control and an access log for accessing medical images are two important aspects that need to be considered in health care systems. Fine-grained access control provides access to medical data only to authorized persons based on priority, location, and content. A log captures each attempt to access medical data. This article describes an overall middleware infrastructure required for secure access to Digital Imaging and Communication in Medicine (DICOM) images, with an emphasis on access control and log maintenance. We introduce a hybrid access control model that combines the properties of two existing models. A trust relationship between hospitals is used to make the hybrid access control model scalable across hospitals. We also discuss events that have to be logged and where the log has to be maintained. A prototype of security middleware infrastructure is implemented.

The Personal Health Information Act, Regulation 245/97. The Manitoba Gazette Vol. 126 (50), December (1997). (URL: http://www.gov.mb.ca/health/phia/).

Vazquez-Naya, JM, Loureiro, JP, Dorado, J, et al. 2002Necessary security mechanism in a PACS DICOM access system with Web technology.J Digit Imaging. (Special Issue on Inconsistency Management, Society of Computer Applications in Radiology)15107111

A Guide to Understanding Discretionary Access Control. National Computer Security Center, NCSC-TG-01, Version-01, Fort George G. Meade, MD, June 1998

Lee TMP: Using mandatory integrity to enforce commercial security. Proceedings of IEEE Computer Society Symposium on Security and Privacy (Oakland, CA), May 1998, pp. 140-146

Ferraiolo D, Kuhn R: Role-based access control. proceedings of 15th NIST-NCSC National Computer Security Conference (Baltimore, MD), October 1992

Chandramouli R: A framework for multiple authorization types in healthcare application systems. Proceedings of 17th Annual Computer Security Applications Conference (New Orleans, LA), December 2001

Thomas RK: Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments. Proceedings of the 2nd ACM Workshop on Role-based Access Control (RBAC’97) (Fairfax, VA), November 1997, pp. 13-19

Zhang L, Ahn GJ, Chu BT: A role-based delegation framework for health care information system. Proceedings of 7th ACM Symposium on Access Control Models and Technologies (SACMAT’02) (Monterey, CA), June 2002

Reliable delivery for syslog. RFC 3195, November 2001. (URL: http://www.faqs.org/rfcs/rfc3195.html)

10.

Axelsson S: Intrusion detection systems: a survey and taxonomy. Technical Report 99-15, Department of Computer Engineering, Chalmers University of Technology, SE-41296 Göteborg, Sweden, March 2000

11.

Digital Imaging and Communications in Medicine2002Standard, Security Profiles.National Electrical Manufactures AssociationRosslyn, VA

Titel: Security Middleware Infrastructure for DICOM Images in Health Information Systems
verfasst von: Vijay N. V. Kallepalli, M.Sc.
Sylvanus A. Ehikioya, Ph.D.
Sergio Camorlinga, M.Sc.
Jose A. Rueda, Ph.D.
Publikationsdatum: 01.12.2003
Verlag: Springer-Verlag
Erschienen in: Journal of Imaging Informatics in Medicine / Ausgabe 4/2003
Print ISSN: 2948-2925
Elektronische ISSN: 2948-2933
DOI: https://doi.org/10.1007/s10278-003-1710-7

Neu im Fachgebiet Radiologie

18.04.2024 | Pädiatrische Notfallmedizin | Nachrichten

Update Radiologie

Bestellen Sie unseren Fach-Newsletter und bleiben Sie gut informiert.

Newsletter bestellen

Live-Webinar: Aktuelle Leitlinien bei Herz-Kreislauf-Erkrankungen

Springer Medizin

Security Middleware Infrastructure for DICOM Images in Health Information Systems

Abstract

Neu im Fachgebiet Radiologie

Fünf Dinge, die im Kindernotfall besser zu unterlassen sind

Wie toxische Männlichkeit der Gesundheit von Männern schadet

Studie bestätigt Potenzial von KI in der Radiologie

Quantitative Angiografie könnte IVUS-Alternative darstellen

Update Radiologie

Live-Webinar: Aktuelle Leitlinien bei Herz-Kreislauf-Erkrankungen

Springer Medizin

Abstract

Bitte loggen Sie sich ein, um Zugang zu diesem Inhalt zu erhalten

Weitere Artikel der Ausgabe 4/2003

Author-Title Index

Transition from Film to Electronic Media in the First-Year Medical School Gross Anatomy Lab

Medical Image Resource Center–making electronic teaching files from PACS

Multivariate Statistical Model for 3D Image Segmentation with Application to Medical Images

Automated Recognition of Lateral from PA Chest Radiographs: Saving Seconds in a PACS Environment

Evolution of the Digital Revolution: A Radiologist Perspective

Neu im Fachgebiet Radiologie

Fünf Dinge, die im Kindernotfall besser zu unterlassen sind

Wie toxische Männlichkeit der Gesundheit von Männern schadet

Studie bestätigt Potenzial von KI in der Radiologie

Quantitative Angiografie könnte IVUS-Alternative darstellen

Update Radiologie