Using a privilege management infrastructure for secure web-based e-health applications

  • Authors:

  • B. Blobel;P. Hoepner;R. Joop;S. Karnouskos;G. Kleinhuis;G. Stassinopoulos

  • Affiliations:

  • Otto-von-Guericke University of Magdeburg, Medical Faculty, Institute of Biometry and Medical Informatics, Leipziger Strasse 44, 39120 Magdeburg, Germany;Fraunhofer Institute FOKUS, Kaiserin-Augusta-Allee 31, 10589 Berlin, Germany;Fraunhofer Institute FOKUS, Kaiserin-Augusta-Allee 31, 10589 Berlin, Germany;Fraunhofer Institute FOKUS, Kaiserin-Augusta-Allee 31, 10589 Berlin, Germany;KPN Research Groningen, P.O.15000, 9700 CD Groningen, Netherlands;NTUA, Heroon Polytechniou 9, Zographou, 15773 Athens, Greece

  • Venue:
  • Computer Communications
  • Year:
  • 2003

Quantified Score

Hi-index 0.24

Visualization

Abstract

Within the European HARP project, the HARP Cross Security Platform (HCSP) has been specified to design and to implement trustworthy distributed applications for health over the open Internet enabling both communication and application security services. Certified servlets composed and attributed according to the user's authorisation create certified and signed XML messages. From those messages, user-role-related applets are generated. The HCSP consists of a client environment, web server, an application server, as well as a database server and an archive server. The needed Privilege Management Infrastructure (PMI) has been established by an Attribute Authority and a policy server. The HCSP components are distributed installed over all countries involved. The role-based authorization has been defined according to the policy deploying the user's attribute certificates. The HARP solution has been practically implemented for a Clinical Study demonstrator.