Affiliation:
1. University of Ottawa, Canada
Abstract
E-health networks can enable integrated healthcare services and data interoperability in the form of electronic health records accessible via Internet technology. Efficiency and quality of care can be improved for example by: streamlining administrative processes involving prescriptions and insurance payments; providing remote access to specialists through telemedicine; or correlating data from clinics, pharmacies and emergency rooms to detect potential adverse events. However, a major requirement to enable adoption of e-health networks is the ability to address issues around security, privacy and trust in a systematic manner. In particular, privacy legislation, regulatory guidelines, and organizational policies require that a framework for privacy protection must be established. Federated identity management can be used to systematically protect patient and health care provider identities in a single sign on framework that controls access to patient data, but an audit trail and reporting mechanism is needed in order to ensure and validate compliance. In this chapter, the authors use example e-health scenarios to analyze the legal, business and technical issues that need to be addressed.
Reference36 articles.
1. P3. (2002). The Platform for Privacy Preferences 1.0 Specification. World Wide Web Consortium Recommendation. Accessed 2009/12 http://www.w3.org/TR/P3P/.
2. Aarts, R., & Madsen, P. (Eds.). (2006). Liberty ID-WSF Interaction Service Specification, Ver. 2.0. Liberty Alliance Project. New Jersey. Accessed 2009/12 http://www.projectliberty.org/resource_center/specifications/liberty_alliance_id_wsf_2_0_specifications.
3. Alsaleh, M., & Adams, C. (2006). Enhancing Consumer Privacy in the Liberty Alliance Identity Federation and Web Services Frameworks. Proceedings of the 6th Workshop on Privacy Enhancing Technologies (PET 2006). Cambridge, United Kingdom.
4. Andrews, J. H., & Zhang, Y. (2000). Broad-spectrum studies of log file analysis, Proceedings of the 2000 International Conference on Software Engineering. Limerick, Ireland.
5. Chen, X., Zhang, J., Wu, D., & Han, R. (2005). HIPPA’s compliant Auditing System for Medical Imaging System. Proceedings of the 2005 IEEE Engineering in Medicine and Biology 27th Annual Conference. Shanghai, China.