Architecture of Secure Portable and Interoperable Electronic Health Records

  • Bernd Blobel
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 2330)


Electronic Health Records (EHR) are moving towards the core application of health information systems. Enabling informational interoperability of shared care environment including EHR, structure and function of components used have to follow open standards and publicly available specifications. This comprises includes also methods and tools applied. After shortly introducing general aspects of open interoperable component architectures, actual approaches for EHR systems are discussed distinguishing between the one-model and the dual-model paradigm. The emerging activities for a harmonised multi-model open EHR as well as its implementation are presented. Special attention is given to security requirements and solutions. Based on standardised Public Key Infrastructure (PKI) and security token such as Health Professional Cards (HPC), policy-defined application security services such as authorisation, access control, accountability, etc., of information recorded, stored and processed must be guaranteed. In that context, appropriate resource access decision services have to be established. As the European HARP project result, a component-based EHR architecture has been specified and demonstrated for enabling open, distributed, virtual, and portable EHR implementation with enforcing fine-grained security services by binding certificates to application components, by the way enforcing policies.


Electronic Health Record Electronic Patient Record Object Management Group Electronic Health Record System Electronic Health Record Data 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    T. Beale: An Interoperable Knowledge Methodology for Future-Proof Information Systems, 2001Google Scholar
  2. 2.
    B. Blobel: Application of the Component Paradigm for Analysis and Design of Advanced Health System Architectures. International Journal of Medical Informatics 60(3) (2000) 281–301.CrossRefGoogle Scholar
  3. 3.
    CEN ENV 13606 “Health Informatics-Electronic Healthcare Record Communication”, 1999Google Scholar
  4. 4.
    CEN TC 251 ENV 13729 “Health Informatics-Secure User Identification-Strong Authentication using Microprocessor Cards (SEC-ID/CARDS)”, 1999.Google Scholar
  5. 5.
    G-CPR Project:
  6. 6.
    GEHR Project:
  7. 7.
    The HARP Consortium:
  8. 8.
    Health Level Seven, Inc.:
  9. 9.
    ISO/IEC 10746-2 “Information Technology-Open Distributed Processing-Reference Model: Part 2: Foundations”.Google Scholar
  10. 10.
    ISO DTS 17090 “Public Key Infrastructure, Part 1-3”, 2001.Google Scholar
  11. 11.
    Object Management Group, Inc.: CORBA Specifications,
  12. 12.
    Object Management Group, Inc.: The CORBA Security Specification. Framingham: Object Management Group, Inc., 1995, 1997.Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2002

Authors and Affiliations

  • Bernd Blobel
    • 1
  1. 1.Medical Faculty, Institute of Biometry and Medical InformaticsOtto-von-Guericke University of MagdeburgMagdeburgGermany

Personalised recommendations