Relationship-Based Access Control for an Open-Source Medical Records System.

Inspired by the access control models of social network systems, Relationship-Based Access Control (ReBAC) was recently proposed as a general-purpose access control paradigm for application domains in ... In this work, we demonstrate for the first time that Re-BAC can be incorporated into a production-scale medical records system, OpenMRS, with backward compatibility to the legacy RBAC mechanism. ... Acknowledgments This work is supported in part by an NSERC Discovery Grant (RGPIN-2014-06611) and a Canada Research Chair (950-229712). ...

doi:10.1145/2752952.2752962 dblp:conf/sacmat/RizviFCS15 fatcat:tlxigazkkrcl5deo2ryhgobq54

Indivo (formerly PING) is an open source, open standards PCHR with an open application programming interface (API). ... Indivo allows the ready integration of diverse sources of medical data under a patient's control through the use of standards-based communication protocols and APIs for connecting PCHRs to existing and ... Acknowledgements This work was supported by grants P01 CD000260-01 and 1 R01 CDC 000065-01 from the Centers for Disease Control and Prevention and contract N01-LM-3-3515 from the National Library of Medicine ...

doi:10.1186/1472-6947-7-25 pmid:17850667 pmcid:PMC2048946 fatcat:3i6rbqksubbodfzfqrjyhejziq

DOAJ

of medical concepts, assertions and/or relationships from clinical texts. ... Delivering timely, friendly and secure access to functional, accurate, up-to-date and sustainable personal health records is a significant challenging task for supporting self-managed healthcare. ... Indeed, the burden on system developers and end users can be reduced thanks to the widespread adoption of open-source frameworks. ...

doi:10.1055/s-0038-1639442 fatcat:abldijr4hnegjbg7yksrobotby

We present a novel, centralized, attribute-based authorization mechanism that uses Attribute Based Encryption (ABE) and allows for delegated secure access of patient records. ... This creates a significant overhead for the patient who must authorize every access of their health record. ... ACKNOWLEDGMENTS This work was conducted using the Protege resource, which is supported by grant GM10331601 from the National Institute of General Medical Sciences of the United States National Institutes ...

doi:10.1109/tsc.2019.2917438 fatcat:ddn7lo6wjfhspf5dmunwloorga

Because MyOSCAR is a free and open-source software (FOSS) product, the software source code is available for peer review and customization. ... of the 1500 physicians (covering about 2.5 million patients) across Canada currently using the EHR Open Source Clinical Application Resource system. ...

pmid:23946017 pmcid:PMC3743686 fatcat:on5ekds77bdrtpqps2wrrh6rem

Open Access

A patient's medical records are generally fragmented across multiple treatment sites, posing an obstacle to clinical care, research, and public health efforts. 1 Electronic medical records and the internet ... Already, alarming trends are apparent as proprietary online medical record systems are developed and deployed. ... Using an open messaging standard such as HL7 allows different health applications, such as a laboratory system and a record system, to "talk" to each other. ...

doi:10.1136/bmj.322.7281.283 pmid:11157533 pmcid:PMC1119527 fatcat:y7fcdqin5racji6i37ds7277wq

This suggests a need for template-based, adaptable frameworks that enable scientists, clinicians, and educators to create their own custom information systems. ... This article identifies the informatics requirements for such a framework and describes the architecture and implementation of a prototype open source toolkit that begins to meet those requirements: the ... The system provides access control over data at an arbitrarily fine granularity. ...

doi:10.1197/jamia.m1138 pmid:12386108 pmcid:PMC349374 fatcat:7inndi7g3rfkncn6aqsfmvv7wy

Therefore, establishment of an open source EHR system capable of modifications according to the national requirements seems to be inevitable in Iran. ... The present study identifies the impact of application of open source software in developing national electronic health record in Iran. ... Acknowledgment This study was part of a PhD thesis supported by Iran University of Medical Sciences. The authors declare that there is no conflict of interests. ...

pmid:26060634 pmcid:PMC4441929 fatcat:kv4zf7sk3naxxgf6sov6ygx3ee

DOAJ

CCS CONCEPTS • Behavioral Analysis for Access and Usage Control → A posteriori log analysis. ... The a posteriori access control mode consists in monitoring actions performed by users, to detect possible violations of the security policy and to apply sanctions or reparations. ... Ontop is an open-source Ontology-Based Data Access (OBDA) system that maps data sources to ontologies representing the domain of interest, and through which querying these relational data sources is possible ...

doi:10.1145/3339252.3340104 dblp:conf/IEEEares/DernaikaCCR19 fatcat:x2gbgruj5fa2dcsmxd2zspstfm

A discussion of some open research issues pertaining to context-sensitive access control to data resources is provided, including several real-world case studies. ... Our goal is not only to control context-sensitive access to data resources in the cloud, but also to move the execution of an application logic from the cloud-level to an intermediary-level where necessary ... or type (the daily medical records, the medical history), the sensitivity (the critical or emergency medical record, the private medical records), the location. • Action: Action-specific attributes describe ...

doi:10.3390/s20092464 pmid:32349242 fatcat:77owmk23lbej5aqyllwkcmoxt4

DOAJ

It also overviews the hardware and open-source software solutions selected for the MyCare Card implementation. Index Terms-health care, patient care, personal health record, GUI, Python. ... However, in some cases patients might not be able to communicate this information, and in most countries, including the UK an on-line integrated patient record system has not been adopted. ... The tab-panel opened in the main window is the current medication records editor. ...

doi:10.1109/iembs.2010.5626004 pmid:21095764 fatcat:54v2fi56tjdixpddkjzitwek5e

Current access control mechanisms of the hospital information system can hardly identify the real access intention of system users. ... To reduce unnecessary access of patient information by hospital staff, this paper proposes a Knowledge-Constrained Role-Based Access Control (KC-RBAC) model in which a variety of medical domain knowledge ... Except for the aforementioned basic knowledge, the main knowledge sources in medical information systems are the knowledge contained in the patients medical records corresponding to the knowledge bases ...

doi:10.1109/jbhi.2017.2696573 pmid:28436908 fatcat:m6lbco3ebvhiho4pmjt34nkxfy

Few of these are widely deployed and few are fully integrated into ambulatory or hospital-based electronic record systems. ... We present three case studies-MyChart at Palo Alto Medical Foundation, PatientSite at Beth Israel Deaconess Medical Center, and Indivo at Children's Hospital Boston. ... In 2003, the Canadian Research Council used the Indivo open source codebase to interface with an open source electronic health record and pharmacy information systems. ...

doi:10.1197/jamia.m2562 pmid:17947615 pmcid:PMC2274878 fatcat:uhlya57dkzhjrlderyatqaihei

In addition, it improves the efficiency and control of medical environment paradigm and health services. ... In particular, it provides further secure data exchange method aiming access guarantee, consistent data format and system modularity. ... And the resources of the FHIR are available at any time as an open source. ...

doi:10.21742/ijarbms.2019.3.2.05 fatcat:r6qb6t3e6rg37pcyrpxcpji5oe

Connect as a security service in cloud-based medical imaging systems," Abstract. The evolution of cloud computing is driving the next generation of medical imaging systems. ... We introduce OpenID Connect as an authentication and authorization service in cloud-based diagnostic imaging (DI) systems, and propose enhancements that allow for incorporating this technology within distributed ... This research was funded by an ORF grant for the project "Secure Intelligent Content Delivery System for Timely Delivery of Large Data Sets in a Regional/National Electronic Health Record." ...

doi:10.1117/1.jmi.3.2.026501 pmid:27340682 pmcid:PMC4910182 fatcat:zr6ptqjbubdiplte3zxgckn5rm

Relationship-Based Access Control for an Open-Source Medical Records System

Preserved Fulltext

Indivo: a personally controlled health record for health information exchange and communication

Preserved Fulltext

Knowledge Representation and Management: Towards Patient Health Self-management

Preserved Fulltext

Delegated Authorization Framework for EHR Services using Attribute Based Encryption

Preserved Fulltext

Revolutionizing patient control of health information

Preserved Fulltext

Public standards and patients' control: how to keep electronic medical records accessible but private Commentary: Open approaches to electronic patient records Commentary: A patient's viewpoint

Preserved Fulltext

WIRM An Open Source Toolkit for Building Biomedical Web Applications

Preserved Fulltext

Towards the Application of Open Source Software in Developing National Electronic Health Record-Narrative Review Article

Preserved Fulltext

Semantic Mediation for A Posteriori Log Analysis

Preserved Fulltext

A Survey of Context-Aware Access Control Mechanisms for Cloud and Fog Networks: Taxonomy and Open Research Issues

Preserved Fulltext

Development of a personal electronic health record card in the United Kingdom

Preserved Fulltext

A Knowledge-Constrained Access Control Model for Protecting Patient Privacy in Hospital Information Systems

Preserved Fulltext

Early Experiences with Personal Health Records

Preserved Fulltext

Blockchain-based Framework for Medical Data Management

Preserved Fulltext

OpenID Connect as a security service in cloud-based medical imaging systems

Preserved Fulltext