Loading...
|
Please use this identifier to cite or link to this item:
https://nccur.lib.nccu.edu.tw/handle/140.119/29682
|
Title: | 可動態調整的電子病歷存取控管機制 A Dynamically Configurable Access Control Mechanism for Electronic Medical Records |
Authors: | 許原瑞 Hsu,Yuan Jui |
Contributors: | 陳恭 Chen, Kung 許原瑞 Hsu,Yuan Jui |
Keywords: | 剖面導向 可動態調整 Aspect Oriented Programming Dynamically Configurable |
Date: | 2006 |
Issue Date: | 2009-09-11 16:03:22 (UTC+8) |
Abstract: | 在醫療系統中,存取控管是電子病歷安全防護的核心。針對這樣的議題,我們實驗室已經有設計出一種安全的架構,利用最新的程式開發技術,剖面導向程式設計為基礎,設計出一種宣告式電子病歷安全控管的方法。這樣的設計讓安全管理者可以有系統化的控制整個系統的安全存取。但是這樣的架構下,安全規則的變動必須經過好幾道複雜的手續,造成使用上彈性不足。
本研究針對這樣的架構提出幾種改進的方式,使安全規則更動更具有彈性。主要分為兩方面,第一,針對安全規則的變數,設計可以彈性更動的方式,不需要為了更動變數而重複整個安全控管規則產生流程。第二,利用動態載入的功能,提出可以由外部Java程式寫好安全控管規則,在執行時候將該規則載入來判斷,如此對於複雜的安全控管規則也有修改的彈性。希望藉由這樣彈性的設計使我們設計的安全控管架構更能符合實際使用的需求。 Maintaining proper access control to Electronic Medical Records (EMR) is essential to protecting patients’ privacy. However, the fine-grained and dynamic nature of access control rules for EMR has imposed great challenges on the healthcare information system developers. This thesis presents a dynamically configurable access control mechanism for Web-based EMR systems.It is an enhancement of a previous work in which static aspects are employed to enforce fine-grained access control for EMR. Specifically, we provide two additional kinds of dynamic adjustment mechanism to enhance the static access control aspects, namely dynamic parameters and dynamic constraints. If the scope of dynamic changes is small, dynamic parameters can realize the required changes. Otherwise, dynamic constraints can be used to support replacement of the access control enforcing code while allowing the EMR application running as usual. Consequently, system administrators have a fine range of choices with different trade-offs between flexibility and performance, namely fully static aspects, parameterized aspects using dynamic parameters and fully dynamic aspects using dynamic constraints. We have built a Web-based EMR prototype implementation using AspectJ to demonstrate our approach. |
Reference: | [1] TMT(Taiwan Electronic Medical Record Template) http://emr.doh.gov.tw/introduce/introduce.html [2] H. Ossher And P. Tarr. 2001 Using multidimension separation of concerns to shape evolving software,Communications of the ACM, vol. 44, no. 10 43-50. [3] LUO Guang-chun,WANG Yan-hua,LU Xian-liang,et al.2003 A novel Web application frame developed by MVC[J].ACM SIGSOFT Software Engineering Notes,28(2): 1-3. [4] Apache Struts http://struts.apache.org/ [5] Pascal Fradet,Mario Sudholt. AOP: towards a generic frameworkusing program transformation and analysis [6] Wim Vanderperren, Davy Suvee, Bart Verheecke, Maria Agustina Cibran, Viviane Jonckers .2005. Adaptive Programming in JAsCo. Communications of the ACM [7] Gregor Kiczales1, Erik Hilsdale2, Jim Hugunin2, Mik Kersten2,Jeffrey Palm2 and William G. Griswold3 .2004.An Overview of AspectJ [8] Apache Velocity Project http://velocity.apache.org/ [9] Sheng Liang,Gilad Bracha.1998.Dynamic class loading in the Java virtual machine [10] Tai-Wei Lin.2002.Java Architecture for XML Binding http://java.sun.com/developer/technicalArticles/WebServices/jaxb/ [11] K. Chen, and C.H. Huang. A Practical Aspect Framework for Enforcing Fine-GrainedAccess Control in Web Application. First Information Security Practice and Experience Conference. [12] Yuan-Chun Chang. Using Aspects to Implement Adaptable Access Control for Electronic Medical Records |
Description: | 碩士 國立政治大學 資訊科學學系 93971010 95 |
Source URI: | http://thesis.lib.nccu.edu.tw/record/#G0093971010 |
Data Type: | thesis |
Appears in Collections: | [資訊科學系] 學位論文
|
Files in This Item:
File |
Size | Format | |
index.html | 0Kb | HTML2 | 469 | View/Open |
|
All items in 政大典藏 are protected by copyright, with all rights reserved.
|