Open and Trusted Information Systems/Health Informatics Access Control (OTHIS/HIAC)

Liu, V., Franco, L., Caelli, W., May, L. and Sahama, T.

    Information.and Communications Technologies globally are moving towards Service Oriented Architectures and Web Services. The healthcare environment is rapidly moving to the use of Service Oriented Architecture/Web Services systems interconnected via this global open Internet. Such moves present major challenges where these structures are not based on highly trusted operating systems. This paper argues the need of a radical re-think of access control in the contemporary healthcare environment in light of modern information system structures, legislative and regulatory requirements, and security operation demands in Health Information Systems. This paper proposes the Open and Trusted Health Information Systems (OTHIS), a viable solution including override capability to the provision of appropriate levels of secure access control for the protection of sensitive health data.
Cite as: Liu, V., Franco, L., Caelli, W., May, L. and Sahama, T. (2009). Open and Trusted Information Systems/Health Informatics Access Control (OTHIS/HIAC). In Proc. Seventh Australasian Information Security Conference (AISC 2009), Wellington, New Zealand. CRPIT, 98. Brankovic, L. and Susilo, W., Eds. ACS. 99-108.
pdf (from crpit.com) pdf (local if available) BibTeX EndNote GS