Identity Management and Audit Trail Support for Privacy Protection in E-Health Networks

Identity Management and Audit Trail Support for Privacy Protection in E-Health Networks

Liam Peyton, Jun Hu
DOI: 10.4018/978-1-4666-2770-3.ch056
(Individual Chapters)
No Current Special Offers


E-health networks can enable integrated healthcare services and data interoperability in the form of electronic health records accessible via Internet technology. Efficiency and quality of care can be improved for example by: streamlining administrative processes involving prescriptions and insurance payments; providing remote access to specialists through telemedicine; or correlating data from clinics, pharmacies and emergency rooms to detect potential adverse events. However, a major requirement to enable adoption of e-health networks is the ability to address issues around security, privacy and trust in a systematic manner. In particular, privacy legislation, regulatory guidelines, and organizational policies require that a framework for privacy protection must be established. Federated identity management can be used to systematically protect patient and health care provider identities in a single sign on framework that controls access to patient data, but an audit trail and reporting mechanism is needed in order to ensure and validate compliance. In this chapter, the authors use example e-health scenarios to analyze the legal, business and technical issues that need to be addressed.
Chapter Preview


A number of researchers have investigated collaborative on-line medical consultation. CoMed (Sung et al., 2000) is a desktop conferencing application, which allows interactive real-time cooperation among several medical experts. A Web-based medical collaboration environment in the context of the regional healthcare network of Crete is described in (Tsiknakis et al, 2002) that provides integrated services for virtual workspaces, annotations, e-mail, and on-line collaboration. The development of a provincial telemedicine center in China is described in (Xiaomin et al, 2002). A web-based system to provide tele-consultation for severe acute respiratory syndrome (SARS) patients in Shanghai Infection Hospital and Xinhua Hospital is described in (Zhang et al, 2005). A summary of legal issues related to telemedicine is given in (White, 2002).

Complete Chapter List

Search this Book: