Title :
An Initial Model and a Discussion of Access Control in Patient Controlled Health Records
Author_Institution :
Dept. of Comput. & Inf. Sci., Norwegian Univ. of Sci. & Technol., Trondheim
Abstract :
Health information about a patient is usually kept local to the hospital or clinic where the patient was treated. Patient Controlled Health Records (PCHR) has been proposed as a means to collect all this information and make it available to the patient. In a PCHR the patient is in control and determines who gets access to his health information. In this paper we present a set of usage scenarios to explore the concept of a PCHR. From the scenarios we deduce a set of concerns of relevance when designing an access control model for a PCHR. Finally we outline an initial access control model for a PCHR.
Keywords :
authorisation; medical information systems; access control; patient controlled health record; patient treatment; Access control; Availability; Computer security; Context modeling; History; Hospitals; Information science; Information security; Medical services; Medical treatment;
Conference_Titel :
Availability, Reliability and Security, 2008. ARES 08. Third International Conference on
Conference_Location :
Barcelona
Print_ISBN :
978-0-7695-3102-1
DOI :
10.1109/ARES.2008.185
