Skip to main content
SpringerLink
Log in

A Life-Cycle Based Authorisation Expert Database System

  • Conference paper
  • First Online:
Artificial Intelligence in Medicine (AIMDM 1999)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 1620))

  • 969 Accesses

Abstract

Authorisation is a compulsory function in information systems that contain patient data. The proposed authorisation model is a refinement of a role-based content-dependent authorisation model. The access permissions are inferred from authorisation rules based on the role of the health care consultant, the association of the consultant with the patient, the security level and the state of the information object within the life-cycle. The design of the system is based on a three-level access control, and a combination of the existing information system with an expert database system.

The author is indebted to P. Verpalen, coauthor of a previous paper, and to B.E. Voeten and H.M. Blanken, University of Twente, Enschede, The Netherlands, for their valuable contribution.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Bertino, E., Weigand, H.: An approach to authorization modeling in object-oriented database systems. Data & Knowledge Engineering 12(1994) 1–29

    Article  Google Scholar 

  2. Date, C.J., Darwen, H.: Relational Database Writings 1989–1991. Addison-Wesley (1992)

    Google Scholar 

  3. Dick, R.S., Steen, E.B., editors: The Computer-Based Patient record: An Essential Technology for Health Care. Institute of Medicine, National Academy Press (1991)

    Google Scholar 

  4. Khair, M., Pangalos, G., Andria, F., Bozios, L.: Implementing security on a proto-type hospital database. In Pappas, C. et al., editors: Medical Informatics Europe 97, IOS Press (1997) 176–180

    Google Scholar 

  5. Missiko, M., Wiederhold, G.: Towards a unified approach for expert and database systems. In Kerschberg, L. editor: Expert Database Systems, Benjamin Cummings (1986) 383–399

    Google Scholar 

  6. Vassilacopoulos, G., Peppes, D. A front end authorization mechanism for hospital information systems. Medical Informatics 21 (1996) 93–103

    Article  Google Scholar 

  7. Verpalen, P., O, Y.-L.: Definable confidentiality of information in patient records. In Harnu, A., editor: Proceedings of the 8th European Health Record Conference, NVMA (1995) 311–318

    Google Scholar 

  8. Voeten, B.E.: Content-dependent authorisation for a patient hospital information system. Master’s thesis, University of Twente, The Netherlands (1996)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. University Medical Centre, Utrecht, The Netherlands

    Ying-Lie O

Authors
  1. Ying-Lie O
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Austrian Research Institute for Artificial Intelligence, Schottengasse 3, A-1010, Vienna, Austria

    Werner Horn

  2. Department of Medicine and Computer Science, Stanford University, 251 Campus Drive, Stanford, CA, 94305-5479, USA

    Yuval Shahar

  3. Department of Medicine Karolinska Institutet, Huddinge University Hospital, Sweden

    Greger Lindberg

  4. Department of Medical Informatics and Image Analysis, Aalborg University, Fredrik Bajers Vej 7D, DK-9000, Aalborg, Denmark

    Steen Andreassen

  5. School of Public Policy, University College London, 29/30 Tavistock Square, London, WC1H 9EZ, UK

    Jeremy Wyatt

Rights and permissions

Reprints and permissions

Copyright information

© 1999 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

O, YL. (1999). A Life-Cycle Based Authorisation Expert Database System. In: Horn, W., Shahar, Y., Lindberg, G., Andreassen, S., Wyatt, J. (eds) Artificial Intelligence in Medicine. AIMDM 1999. Lecture Notes in Computer Science(), vol 1620. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-48720-4_16

Download citation

  • DOI: https://doi.org/10.1007/3-540-48720-4_16

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-66162-7

  • Online ISBN: 978-3-540-48720-3

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation