Security, privacy, identity and patient consent management across healthcare enterprices in integrated healthcare enterprices (IHE) cross enterprise document sharing (XDS) affinity domain

Download
2007
Namlı, Tuncay
Integrated Healthcare Enterprise (IHE) is an initiative by industry and healthcare professionals to improve knowledge sharing and interoperability between healthcare related enterprises. IHE publishes Integration Profiles on several Healthcare Fields to define how systems can use existing standards and technologies to execute a specific use case in healthcare. Cross Enterprise Document Sharing (XDS) is such a profile which defines the way of sharing Electronic Health Records (EHR) between healthcare enterprises. In this thesis, IHE Cross Enterprise User Authentication, IHE Node Authentication and Audit Trail, IHE Basic Patient Privacy Consent profiles are implemented based on the IHE XDSimplementation by National Institute of Standards, USA. Furthermore, some of the unspecified issues related with these profiles are clarified and new techniques are offered for their implementations. One of the contribution of the thesis is to use OASIS Extensible Access Control Markup Language (XACML) to define patient consent policies and manage access control. Other technologies and standards that are used in the implementation are as follows; OASIS Security Assertion Markup Language (SAML), XML Signature, Mutual Transport Layer Security (TLS), RFC 3195 Reliable Delivery for Syslog, RFC 3881 Security Audit and Access Accountability Message XML Data Definitions.

Suggestions

An analysis of the maincritical factors that affect the acceptance of technology in hospital management systems
Peker, Can; Özkan Yıldırım, Sevgi; Department of Information Systems (2010)
The purpose of this study is to develop a methodology by extending the Technology Acceptance Model (Davis, 1989) in order to contribute the acceptance of Hospital Management Systems in hospitals. The study also aims to extend the TAM by adding external variables. Thereby the relationships between perceived usefulness, perceived ease of use and external TAM factors and how these relationships will affect the behavioral intention to use the technology will be determined. In this study quantitative research me...
An automated tool for information security management system
Erkan, Ahmet; Arifoğlu, Ali; Department of Information Systems (2006)
This thesis focuses on automation of processes of Information Security Management System. In accordance with two International Standards, ISO/IEC 27001:2005 and ISO/IEC 17799:2005, to automate the activities required for a documented ISMS as much as possible helps organizations. Some of the well known tools in this scope are analyzed and a comparative study on them including “InfoSec Toolkit”, which is developed for this purpose in the thesis scope, is given. “InfoSec Toolkit” is based on ISO/IEC 27001:2005...
Collaborative Business Process Support in eHealth: Integrating IHE Profiles Through ebXML Business Process Specification Language
Doğaç, Asuman; Kabak, Yildiray; Namli, Tuncay; Okcan, Alper (Institute of Electrical and Electronics Engineers (IEEE), 2008-11-01)
Integrating healthcare enterprise (IHE) specifies integration profiles describing selected real world use cases to facilitate the interoperability of healthcare information resources. While realizing a complex real-world scenario, IHE profiles are combined by grouping the related IHE actors. Grouping IHE actors implies that the associated business processes (IHE profiles) that the actors are involved must be combined, that is, the choreography of the resulting collaborative business process must be determin...
A Systematic Literature Review on Health Recommender Systems
Sezgin, Emre; Özkan Yıldırım, Sevgi (2013-11-23)
Health Information Systems are becoming an important platform for healthcare services. In this context, Health Recommender Systems (HRS) are presented as complementary tools in decision making processes in health care services. Health Recommender Systems increase usability of technologies and reduce information overload in processes. In this paper, a literature review was conducted by following a review procedure. Major approaches in HRS were outlined and findings were discussed. The paper presented current...
Face detection in active robot vision
Önder, Murat; Halıcı, Uğur; Department of Electrical and Electronics Engineering (2004)
The main task in this thesis is to design a robot vision system with face detection and tracking capability. Hence there are two main works in the thesis: Firstly, the detection of the face on an image that is taken from the camera on the robot must be achieved. Hence this is a serious real time image processing task and time constraints are very important because of this reason. A processing rate of 1 frame/second is tried to be achieved and hence a fast face detection algorithm had to be used. The Eigenfa...
Citation Formats
T. Namlı, “Security, privacy, identity and patient consent management across healthcare enterprices in integrated healthcare enterprices (IHE) cross enterprise document sharing (XDS) affinity domain,” M.S. - Master of Science, Middle East Technical University, 2007.