摘要

We describe a design solution for the problem of changing policies regarding information management in the health care environment. Frequent policy modification regarding security, privacy and workflow through institutional re-organization and policy revision occur at multiple levels of administration, which can leave the health care information users with non-compliant systems (such as electronic medical records) and procedures which are expensive and difficult to update. Our solution is a medical information messaging infrastructure designed to respond flexibly to changes in information policy. Instead of embedding fixed policy into static application code, our architecture provides configurable policy rules as part of the communications framework. This entails two critical components: the dynamic router, which routes messages according to the policy rules, and the medical context header, which attaches policy-relevant information to all communication messages. All information applications are automatically compliant with policy, since it is enforced at the communications level of the system.

  • 出版日期2010