Presentation is loading. Please wait.

Presentation is loading. Please wait.

Interconnecting Autonomous Medical Domains Gritzalis, S.Gritzalis, S. ; Belsis, P. ; Katsikas, S.K. ; Univ. of the Aegean, Samos Belsis, P.Katsikas, S.K.

Published byBeatrice Dalton Modified over 8 years ago

Similar presentations

Presentation on theme: "Interconnecting Autonomous Medical Domains Gritzalis, S.Gritzalis, S. ; Belsis, P. ; Katsikas, S.K. ; Univ. of the Aegean, Samos Belsis, P.Katsikas, S.K."— Presentation transcript:

1 Interconnecting Autonomous Medical Domains Gritzalis, S.Gritzalis, S. ; Belsis, P. ; Katsikas, S.K. ; Univ. of the Aegean, Samos Belsis, P.Katsikas, S.K. Gritzalis, S.Belsis, P.Katsikas, S.K. This paper appears in: Engineering in Medicine and Biology Magazine, IEEE Issue Date : Sept.-Oct. 2007 Engineering in Medicine and Biology Magazine, IEEEEngineering in Medicine and Biology Magazine, IEEE

2 Access Control Models Group-oriented rather than individual-oriented access control makes the process more easily manageable role based access control (RBAC) model

3 Policy-Based Management XACML standardized and open, allowing extensions that enable interoperation between various platforms it is codified in XML, which tends to dominate as a codification standard and is operating-system independent it allows extensions so as to support the needs for a variety of environments it allows context-based authorization Policy enforcement point (PEP) grants access after receiving an appropriate message from the PDP Policy decision point (PDP) reasons over a specific access request after evaluating both the requestor ’ s credentials and the request according to the policy in force Policy information point (PIP) responsible for retrieving environmental attributes

4

5 Multidomain Access Control Enforcement Access to data should be regulated by specific generic guidelines, applicable for all the cooperating medical environments. Free. Enforcement points should be autonomous and should have freedom in managing their IT infrastructure. Dynamic. Healthcare units can join or leave at any time, increasing the complexity of the overall management. No centralized authorization architecture. Security policies can be defined locally Transparency. The procedures for accessing medical data, whether these are stored locally or in a remote domain, should be identical.

6

7 Interoperability Issues in Multidomain Environments Exchanging HL7 messages can be made through cost-effective channels such as the Internet Secure information transfer over networks is realized via the secure file transfer protocol (SFTP) All the inter-domain communications are encrypted using the secure sockets layer protocol

8 Virtual Ontology Networks In order to avoid irrelevant queries to a specific domain, we create an appropriate ontology that can be considered as a set of metadata and meta-knowledge that provides a set of concepts and terms to describe the information content of the specific domain Each request for specific medical information will be directed to an appropriate (in terms of stored medical content) domain

9

10 Conclusions and Future Directions Enabling multi-domain infrastructures to communicate and exchange medical information

Download ppt "Interconnecting Autonomous Medical Domains Gritzalis, S.Gritzalis, S. ; Belsis, P. ; Katsikas, S.K. ; Univ. of the Aegean, Samos Belsis, P.Katsikas, S.K."

Similar presentations

ROWLBAC – Representing Role Based Access Control in OWL

ROWLBAC – Representing Role Based Access Control in OWL
0 McLean, VA August 8, 2006 SOA, Semantics and Security.

0 McLean, VA August 8, 2006 SOA, Semantics and Security.
2 Introduction A central issue in supporting interoperability is achieving type compatibility. Type compatibility allows (a) entities developed by various.

2 Introduction A central issue in supporting interoperability is achieving type compatibility. Type compatibility allows (a) entities developed by various.
PASSPrivacy, Security and Access Services Don Jorgenson Introduction to Security and Privacy Educational Session HL7 WG Meeting- Sept. 2012.

PASSPrivacy, Security and Access Services Don Jorgenson Introduction to Security and Privacy Educational Session HL7 WG Meeting- Sept
NRL Security Architecture: A Web Services-Based Solution

NRL Security Architecture: A Web Services-Based Solution
High Performance Computing Course Notes 2007-2008 Grid Computing.

High Performance Computing Course Notes Grid Computing.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
A Successful RHIO Implementation

A Successful RHIO Implementation
A Versatile Storage System for Future Networking Architecture Prof. Xiaohua Jia City University of Hong Kong 1.

A Versatile Storage System for Future Networking Architecture Prof. Xiaohua Jia City University of Hong Kong 1.
Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.

Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.

David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.

Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.
Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.

Network Access Protection Platform Architecture Joseph Davies Technical writer Windows Networking and Device Technologies Microsoft Corporation.
1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.

1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.
JXTA P2P Platform Denny Chen Dai CMPT 771, Spring 08.

JXTA P2P Platform Denny Chen Dai CMPT 771, Spring 08.
11 DICOM Image Communication in Globus-Based Medical Grids Michal Vossberg, Thomas Tolxdorff, Associate Member, IEEE, and Dagmar Krefting Ting-Wei, Chen.

11 DICOM Image Communication in Globus-Based Medical Grids Michal Vossberg, Thomas Tolxdorff, Associate Member, IEEE, and Dagmar Krefting Ting-Wei, Chen.
Securing Web Services Using Semantic Web Technologies Brian Shields PhD Candidate, Department of Information Technology, National University of Ireland,

Securing Web Services Using Semantic Web Technologies Brian Shields PhD Candidate, Department of Information Technology, National University of Ireland,
A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.

A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.
Distributed Collaborations Using Network Mobile Agents Anand Tripathi, Tanvir Ahmed, Vineet Kakani and Shremattie Jaman Department of computer science.

Distributed Collaborations Using Network Mobile Agents Anand Tripathi, Tanvir Ahmed, Vineet Kakani and Shremattie Jaman Department of computer science.

Similar presentations

Ads by Google