• Home

  • Documents

  • Hassan Sharghigoorabi Interoperability and Security ...Diagnostic Imaging (DI) system records and...
1
Hassan Sharghigoorabi Kamran Sartipi {mohammadhassan.sharghigoorabi, Kamran.Sartipi}@uoit.ca Diagnostic Imaging (DI) system records and manages the patient’s medical images and relevant reports in digital formats, for the purpose of diagnosis and treatment of diseases, and medical science research. A modern distributed diagnostic imaging system includes Picture Archiving and Communication Systems (PACS), image viewers, and a large central repository (DI-r) that provides non-proprietary sharing of medical images among clinicians across geographically distributed hospitals or diagnostic centers. Picture Archiving and Communication System (PACS) Diagnostic Imaging System DCM4CHE: Open Source PACS Software Architecture Implementation Ø A complex system to digitize and store patient images acquired from imaging equipment (different modalities) Ø Transmit the images over a network Ø Display images and communicates reports for diagnosis or treatment Ø Legacy PACS are closed systems with no external interfaces Ø PACS vendors did not follow a common data scheme and workflow for communication Ø Multi-agent system for knowledge acquisition and decision making Ø Customizable PACS Agent to monitor and analyze the PACS statistics and user behavior Ø Incorporating IHE (Integrating the Healthcare Enterprise) profiles for XDS-I (Cross Enterprise Document Sharing for Images) protocols Ø Multi-level access control, using PACS Agents (local) and Middleware Agent (central) Ø OpenID for authentication and OAuth for authorization Ø Converting Trust-based access control to Secure access control based on central policy and distributed-behavior Dcm4che is a Java based open source application that provides web-based access to services for storing, querying, and retrieving any type of DICOM (Digital Imaging and Communications in Medicine) objects (images) and provides facilities to develop prototype PACS systems. Authentication Workflow Adapter: DICOM Message Parser OpenID provides a Single Sign-On (SSO) facility for authentication of PACS and DI-r users. DICOM standard is the backbone of modern medical imaging systems. DICOM controls the acquisition, recording, transferring, and interpretation of the workflow within an imaging system. DICOM needs a point to point connection and does not support any built in security. IHE XDS-I Profile Interoperability and Security Provisioning for Distributed Diagnostic Imaging Systems Challenges Proposed Approach Interoperability among legacy PACS systems and Diagnostic Imaging repositories (DI-r) is a challenging task, since a proprietary PACS system is a closed environment without adequate interfaces. In terms of security, currently a trusted model is used such that each local system takes care of controlling the access of local users to resources. A major disadvantage of the trusted model is the lack of federated capabilities to manage authentication, authorization and consistent policy rules for access control. We propose a secure “middleware” based on multi- agent technology, consisting of: data acquisition agents, administrative agents, central policy management, central policy repository, central metadata repository for images, as well as centralized authentication model and decentralized authorization model. The access control will be enforced by collaboration of centralized and distributed customizable agents. The proposed multi-agent architecture provides: system wide secure image sharing, federated identity management, agent customization, image caching, and local policy adjustment based on distributed user behavior. Security Features: General Features: Sequence of DICOM Messages Restrictions

Hassan Sharghigoorabi Interoperability and Security ...Diagnostic Imaging (DI) system records and manages the patient’s medical images and relevant reports in digital formats, for

  • Upload
    others

  • View
    1

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Hassan Sharghigoorabi Interoperability and Security ...Diagnostic Imaging (DI) system records and manages the patient’s medical images and relevant reports in digital formats, for

Hassan Sharghigoorabi Kamran Sartipi

{mohammadhassan.sharghigoorabi, Kamran.Sartipi}@uoit.ca

Diagnostic Imaging (DI) system records and manages the patient’s medical images and relevant reports in digital formats, for the purpose of diagnosis and treatment of diseases, and medical science research. A modern distributed diagnostic imaging system includes Picture Archiving and Communication Systems (PACS), image viewers, and a large central repository (DI-r) that provides non-proprietary sharing of medical images among clinicians across geographically distributed hospitals or diagnostic centers.

Picture Archiving and Communication System (PACS)

Diagnostic Imaging System

DCM4CHE: Open Source PACS Software

Architecture

Implementation

Ø A complex system to digitize and store patient images acquired from imaging equipment (different modalities)

Ø  Transmit the images over a network Ø Display images and communicates

reports for diagnosis or treatment

Ø  Legacy PACS are closed systems with

no external interfaces Ø PACS vendors did not follow a

common data scheme and workflow for communication

Ø Multi-agent system for knowledge

acquisition and decision making Ø  Customizable PACS Agent to

monitor and analyze the PACS statistics and user behavior

Ø  Incorporating IHE (Integrating the Healthcare Enterprise) profiles for XDS-I (Cross Enterprise Document Sharing for Images) protocols

Ø Multi-level access control, using PA C S A g e n t s ( l o c a l ) a n d Middleware Agent (central)

Ø OpenID for authentication and OAuth for authorization

Ø Converting Trust-based access control to Secure access control based on central policy and distributed-behavior

Dcm4che is a Java based open source application that provides web-based access to services for storing, querying, and retrieving any type of DICOM (Digital Imaging and Communications in Medicine) objects (images) and provides facilities to develop prototype PACS systems.

Authentication Workflow Adapter: DICOM Message Parser OpenID provides a Single Sign-On (SSO) facility for authentication of PACS and DI-r users.

DICOM standard is the backbone of modern medical imaging systems. DICOM controls the acquisition, recording, transferring, and interpretation of the workflow within an imaging system. DICOM needs a point to point connection and does not support any built in security.

IHE XDS-I Profile

Interoperability and Security Provisioning for Distributed Diagnostic Imaging Systems

Challenges

Proposed Approach

Interoperability among legacy PACS systems and Diagnostic Imaging repositories (DI-r) is a challenging task, since a proprietary PACS system is a closed environment without adequate interfaces. In terms of security, currently a trusted model is used such that each local system takes care of controlling the access of local users to resources. A major disadvantage of the trusted model is the lack of federated capabilities to manage authentication, authorization and consistent policy rules for access control.

We propose a secure “middleware” based on multi-agent technology, consisting of: data acquisition agents, administrative agents, central policy management, central policy repository, central metadata repository for images, as well as centralized authentication model and decentralized authorization model. The access control will be enforced by collaboration of centralized and distributed customizable agents. The proposed multi-agent architecture provides: system wide secure image sharing, federated identity management, agent customization, image caching, and local policy adjustment based on distributed user behavior.

Security Features:

General Features:

Sequence of DICOM Messages

Restrictions

HASSAN INSTITUTE OF MEDICAL SCIENCES, HASSAN - SUB COMMITTEES... · hassan institute of medical sciences, hassan (An Autonomous Institute under the Dept of Medical Education, Government

HASSAN INSTITUTE OF MEDICAL SCIENCES, HASSAN - SUB COMMITTEES... · hassan institute of medical sciences, hassan (An Autonomous Institute under the Dept of Medical Education, Government

Documents
to transform patient’s journey€¦ · eHealth innovator to transform patient’s journey Servier Group- Key figures eHealth innovator to transform patient’s journey • International

to transform patient’s journey€¦ · eHealth innovator to transform patient’s journey Servier Group- Key figures eHealth innovator to transform patient’s journey • International

Documents
A Patient’s Guide to Cardiac Surgery€¦ · A Patient’s Guide to Cardiac Surgery ... surgery.

A Patient’s Guide to Cardiac Surgery€¦ · A Patient’s Guide to Cardiac Surgery ... surgery.

Documents
New Patient’s Information

New Patient’s Information

Documents
Supporting every patient’s journey

Supporting every patient’s journey

Documents
blueKiwi Manages Talents 10_03_09

blueKiwi Manages Talents 10_03_09

Business
Imam hassan

Imam hassan

Education
Knocking on patient’s door

Knocking on patient’s door

Health & Medicine
Yahya Hassan »Yahya Hassan« - Ullstein Verlag · 2014-02-14 · Yahya Hassan »Yahya Hassan« Gedichte Inhalt: Kurzinformation zu Buch und Autor Langtext Dänische Pressestimmen

Yahya Hassan »Yahya Hassan« - Ullstein Verlag · 2014-02-14 · Yahya Hassan »Yahya Hassan« Gedichte Inhalt: Kurzinformation zu Buch und Autor Langtext Dänische Pressestimmen

Documents
 · Manages production process as creative ENB Engagement Producer ... manages performance and conducts an annual appraisal Manages freelance artists, creatives,

 · Manages production process as creative ENB Engagement Producer ... manages performance and conducts an annual appraisal Manages freelance artists, creatives,

Documents
Hassan Fathy

Hassan Fathy

Documents
Hassan Co operative milk Producers society union limited HASSAN

Hassan Co operative milk Producers society union limited HASSAN

Documents
Hassan Bashir

Hassan Bashir

Documents
Nazia hassan & Zohaib hassan

Nazia hassan & Zohaib hassan

Education
MANAGES HUMIDITY - Fabrica

MANAGES HUMIDITY - Fabrica

Documents
Patient’s Data

Patient’s Data

Documents
Asrol Hassan

Asrol Hassan

Documents
Euthanasia. Terms Voluntary Euthanasia (patient’s consent) Voluntary Euthanasia (patient’s consent) Involuntary euthanasia (no consent) Involuntary

Euthanasia. Terms Voluntary Euthanasia (patient’s consent) Voluntary Euthanasia (patient’s consent) Involuntary euthanasia (no consent) Involuntary

Documents
Patient’s Area

Patient’s Area

Documents
The Patient’s Checklist

The Patient’s Checklist

Documents
DOCUMENTATION OF PATIENT’S RECORD

DOCUMENTATION OF PATIENT’S RECORD

Documents
Hassan Beck97

Hassan Beck97

Documents
Youth manages country

Youth manages country

Education
BIOGRAFI INTELEKTUAL HASSAN HANAFI 2.1. Riwayat Hidup Hassan Hanafi Hassan Hanafi

BIOGRAFI INTELEKTUAL HASSAN HANAFI 2.1. Riwayat Hidup Hassan Hanafi Hassan Hanafi

Documents
Telepharmacy: A Patient’s Perspective

Telepharmacy: A Patient’s Perspective

Documents
Al Hassan Switchgear Manufacturing Co. LLC Al Hassan Power

Al Hassan Switchgear Manufacturing Co. LLC Al Hassan Power

Documents
ResearchBrief review of patient’s chart and radiographs; update patient’s history through conversation. If change in patient’s health that will affect treatment, dentist is consulted

ResearchBrief review of patient’s chart and radiographs; update patient’s history through conversation. If change in patient’s health that will affect treatment, dentist is consulted

Documents
A Patient’s Voice

A Patient’s Voice

Documents
Patient’s data.pptx

Patient’s data.pptx

Documents
Hassan Jonit

Hassan Jonit

Documents