Applying MDA and UML in the Development of a Healthcare System

The UK National Health Service (NHS) is supported by an established and diverse set of systems. These systems are being enhanced to support widespread storage and distribution of electronic patient records. Naturally, the security and privacy of patient data is paramount, and a sophisticated set of access control and registry capabilities is required to ensure that only authorised persons have access to patient data. This describes how MDA and UML were used to: Model the new access control capabilities in the form of an executable UML model, allowing rapid stakeholder feedback and resulting in a tested, fully executable specification to form the basis of a procurement contract; Specify the capabilities of existing key components, and proposed bought-in components, to facilitate system integration; Enable automated code generation onto the wide variety of platforms in use within the NHS.