Developing a security protocol for a distributed decision support system in a healthcare environment

Liang Xiao, Paul Lewis, Alex Gibb
2008 Proceedings of the 13th international conference on Software engineering - ICSE '08  
In this paper, we describe the unique security issues involved in healthcare domains. These have been addressed to the needs of the HealthAgents project. In the proposed approach, several levels of security have been provided in accordance with Software Engineering principles, ethical regulations for healthcare data, as well as the security requirements usually raised from the distributed clinical settings. The result is the production of a secure and maintainable Multi-Agent System that
more » ... secure communication, uniform home site authentication, and customised resource access authorisation. A security policy rule scheme has been designed for agent interaction modelling. This separates the functional and non-functional (security) requirements but let security policy constraints integrate into the running of the agents via a unified role notion. Each user/agent can play a function role only when its assigned social rights roles permit the access to resources of various types and geographical locations, as specified in the function role behaviour. The approach is illustrated using a comprehensive secure access case.
doi:10.1145/1368088.1368184 dblp:conf/icse/XiaoLG08 fatcat:5kzqmsnbofbz3mjjeohkyiaofy