Towards accountability for Electronic Patient Records
暂无分享,去创建一个
The electronic patient record (EPR) is a fundamental part of health information technology and its use is growing quickly. There is an urgent need to record and trust events related with healthcare procedures. Accountability is, therefore, essential but still very difficult to achieve in terms of information security. This paper suggests an accountability model suitable for healthcare environments and describes how the model can be efficiently realized using secure hardware. This approach can be applied across heterogeneous infrastructures providing a separation of duties between people, processes and organizations whilst ensuring the confidentiality and integrity of information.
[1] Sean W. Smith,et al. Practical server privacy with secure coprocessors , 2001, IBM Syst. J..
[2] Tim Benson,et al. Why general practitioners use computers and hospital doctors do not—Part 2: scalability , 2002, BMJ : British Medical Journal.
[3] Simon Shiu,et al. Encryption and key management in a SAN , 2002, First International IEEE Security in Storage Workshop, 2002. Proceedings..