Title: Framework and prototype for a secure XML-based electronic health records system

Authors: Robert Steele, William Gardner, Darius Chandra, Tharam S. Dillon

Addresses: Faculty of Information Technology, University of Technology, Sydney, P.O. Box 123, Broadway, NSW 2007, Australia. ' Faculty of Information Technology, University of Technology, Sydney, P.O. Box 123, Broadway, NSW 2007, Australia. ' Faculty of Information Technology, University of Technology, Sydney, P.O. Box 123, Broadway, NSW 2007, Australia. ' Faculty of Information Technology, University of Technology, Sydney, P.O. Box 123, Broadway, NSW 2007, Australia

Abstract: Security of personal medical information has always been a challenge for the advancement of Electronic Health Records (EHRs) initiatives. eXtensible Markup Language (XML), is rapidly becoming the key standard for data representation and transportation. The widespread use of XML and the prospect of its use in the Electronic Health (e-health) domain highlights the need for flexible access control models for XML data and documents. This paper presents a declarative access control model for XML data repositories that utilises an expressive XML role control model. The operational semantics of this model are illustrated by Xplorer, a user interface generation engine which supports search-browse-navigate activities on XML repositories.

Keywords: electronic health records; EHRs; access control; data confidentiality; eXtensible markup language; XML; electronic healthcare; e-health; personal health records; security measures; auto-generate user interface; web application; semi-structured data; medical information.

DOI: 10.1504/IJEH.2007.013098

International Journal of Electronic Healthcare, 2007 Vol.3 No.2, pp.151 - 174

Published online: 07 Apr 2007 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article