Title: 42ND ANNUAL 2008 IEEE INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY, PROCEEDINGS Search for Conference Proceedings Publications

Pages: 47-+

42nd Annual IEEE International Carnahan Conference on Security Technology

Prague, CZECH REPUBLIC, OCT 13-16, 2008

ISI Web of Knowledge - 30 Citations

Scopus - 7 Citations

FOS: Engineering and technology > Mechanical engineering

Authenticus ID: P-004-5GP

DOI: 10.1109/ccst.2008.4751275

Abstract (EN): The Electronic Medical Record (EMR) allows for the distributed collection and searching of healthcare information. However, it usually does not integrate easily into healthcare professionals' daily workflows. Barriers to its acceptance include costs such as time and effort, but also relational and educational issues. Access controls are likely to increase the barrier to acceptance, since their design and implementation are very complex and thus costly. Three literature reviews were performed in order to gain insight to this problem. The two reviews regarding access control implementation (A and B) showed that the definition of an access control policy was ACP(A)=29% and ACP(B)=58%, and the participation of end users in its development within Information Systems (IS) was UPD(A)=0% and UPD(B)=0%. The review regarding evaluation methods (Review C) showed that most chosen methods were not appropriate for the evaluation that needed to be performed (CMI(C)=44%) and that the ISs were difficult to use (SDU(C)=22%) and did not simplify the workflow environment for which they were implemented (CWD(C)=19%). The goal of this paper is to propose that future access control systems for EMR should monitor healthcare professionals' attitudes, opinions and experiences through the use of comprehensive evaluation methods to improve the acceptance of EMR.

Language: English

Type (Professor's evaluation): Scientific

Contact: amlaf@med.up.pt; rcorreia@med.up.pt; D.W.Chadwick@kent.ac.uk; lfa@ncc.up.pt

No. of pages: 3