Skip to main content
SpringerLink
Log in

Designing Privacy-Aware Personal Health Record Systems

  • Conference paper
Advances in Conceptual Modeling – Challenges and Opportunities (ER 2008)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 5232))

Included in the following conference series:

Abstract

Implementation of Personal Health Record (PHR) systems involves multiple stakeholders with different interpretations and expectations; more importantly it involves changes in the custody of data, patient privacy, and consent management. In PHR analysis we need to answer questions such as: Who is the provider of PHR? Who has access to the patient data and why? And how the system can empower the patient? And how can the patient privacy be managed. This paper exploits techniques from Goal and Agent-oriented Requirements Engineering and proposes a methodological framework for dealing with concerns surrounding PHR systems. The framework is illustrated through an example that emphasizes the privacy aspects of PHRs.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Tang, P.C., Lansky, D.: The missing link: bridging the patient-provider health information gap. Health Aff. 24, 1290–1295 (2005)

    Article  Google Scholar 

  2. Halamka, J.D., Mandl, K.D., Tang, P.C.: Early Experiences with Personal Health Records. J. Am. Med. Inform. Assoc. 15(1), 1–7 (2008)

    Article  Google Scholar 

  3. HIPAA., Act of 1996 (accessed, May 2008), http://aspe.hhs.gov/admnsimp/pl104191.htm

  4. PIPEDA., (accessed, May 2008), http://www.privcom.gc.ca/legislation/02_06_01_e.asp

  5. Bresciani, P., Giorgini, P., Giunchiglia, F., Mylopoulos, J., Perini, A.: Tropos: An Agent-Oriented Software Development Methodology, vol. 8(3), pp. 203–236 (2004)

    Google Scholar 

  6. Giorgini, P., Massacci, F., Mylopoulous, J., Zannone, N.: Requirements Engineering meets Trust Management. In: Jensen, C., Poslad, S., Dimitrakos, T. (eds.) iTrust 2004. LNCS, vol. 2995, pp. 176–190. Springer, Heidelberg (2004)

    Google Scholar 

  7. Chung, L., Nixon, B., Yu, E., Mylopoulos, J.: Non-Functional Requirements in Software Engineering. Kluwer Academic Publishers, Dordrecht (2000)

    Book  MATH  Google Scholar 

  8. Markle Foundation: Connecting for Health. Connecting Americans to their healthcare. Final rep. of the wg on policies for electronic information sharing. NY Markle Found (2004)

    Google Scholar 

  9. Jones, C.: Patterns of software failure and Success. Thomson (1996)

    Google Scholar 

  10. Hickey, A., Davis, A.: The role of Requirement Elicitation technique in Achieving Software Quality. In: Req. Eng. WS: Foundation for Software Quality (REFSQ) (2002)

    Google Scholar 

  11. Yu, E.: Towards Modelling and reasoning Support for Early-Phase Requirements Engineering. In: Proc. RE 1997-3rd Int. Symp. on RE, Annapolis, pp. 226–235 (1997)

    Google Scholar 

  12. Samavi, R., Yu, E., Topaloglou, T.: Strategic Reasoning about Business Models: a Conceptual Modelling approach. J. Info. Sys. & E-Business Manag. (2008)

    Google Scholar 

  13. Liu, L., Yu, E.: Designing Information Systems in Social Context: A Goal and Scenario Modelling Approach. J. Information Systems 29(2), 187–203 (2002)

    Article  Google Scholar 

  14. van Lamsweerde, A.: Goal-Oriented Requirements Engineering: A Guided Tour. Invited minitutorial. In: Proc. RE 2001, Int. Joint Conf. on RE, Toronto, pp. 249–263. IEEE, Los Alamitos (2001)

    Google Scholar 

  15. PRIME: Privacy and Identity Management for Europe (accessed, May 2008), https://www.prime-project.eu/

  16. Karjoth, G., Schunter, M.: A Privacy Policy Model for Enterprises. In: Proc. Of CSFW 2002, pp. 271–281. IEEE Press, Los Alamitos (2002)

    Google Scholar 

  17. Giorgini, P., Massacci, F., Zannone, N.: Security and Trust Requirements Engineering. In: Aldini, A., Gorrieri, R., Martinelli, F. (eds.) FOSAD 2005. LNCS, vol. 3655, pp. 237–272. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  18. Giorgini, P., Massacci, F., Mylopoulous, J., Zannone, N.: Modelling Security Requirements Through Ownership, Permission and Delegation. In: Proc. of the 13th IEEE Requirements Engineering Conference (RE 2005) (2005)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. University of Toronto, 5 King’s College Road, Toronto, Ontario, M5S3G8, Canada

    Reza Samavi & Thodoros Topaloglou

Authors
  1. Reza Samavi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Thodoros Topaloglou
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. College of Information Science and Technology, Drexel University, USA

    Il-Yeol Song

  2. Dep. of Information Technologies & Systems - Escuela Superior de Informática, University of Castilla-La Mancha, Alarcos Research Group- Institute of Information Technologies & Systems, Ciudad Real, Spain

    Mario Piattini

  3. School of Engineering and Information Technology, Deakin University, 221 Burwood Highway, Vic, 3125, Australia

    Yi-Ping Phoebe Chen

  4. Clausthal University of Technology, Julius-Albert-Str. 4, 38678, Clausthal-Zellerfeld, Germany

    Sven Hartmann

  5. Dipartimento di Elettronica, Informatica e Sistemistica, Alma Mater Studiorum – Università di Bologna, P.O. Box, Italy

    Fabio Grandi

  6. Department of Software and Computing Systems, University of Alicante, Spain

    Juan Trujillo

  7. Department of Information Science and Media Studies, University of Bergen, Fosswinckelsgate 6, 5007, Bergen, Norway

    Andreas L. Opdahl

  8. Istituto di Ricerche sulla Popolazione e Politiche Sociali, CNR, Via Nizza 128, 00198, Roma, Italy

    Fernando Ferri  & Patrizia Grifoni  & 

  9. IRPPS-CNR, Rome, Italy

    Maria Chiara Caschera

  10. Universit Paris1 Panthon Sorbonne, CRI, 90 Rue de Tolbiac, 75013, Paris

    Colette Rolland

  11. Portland State University, USA; Indiana University, USA University of British Columbia, Canada; Hill-Rom Company, USA University of British Columbia, Canada; Deloitte Consulting, P.O. Box, USA

    Carson Woo

  12. Centre de Recherche en Informatique, Université Paris 1 Panthéon-Sorbonne, 90 rue de Tolbiac, 75013, Paris

    Camille Salinesi

  13. Université Libre de Bruxelles, Belgium

    Esteban Zimányi

  14. Naval Academy Research Institute, Brest Naval, France

    Christophe Claramunt

  15. Technische Universiteit Eindhoven, PO Box 513, NL-5600 MB, Eindhoven, The Netherlands

    Flavius Frasincar

  16. Technische Universiteit Eindhoven, P.O. Box 513, NL 5600 MB, Eindhoven, The Netherlands

    Geert-Jan Houben

  17. IMRU-FUNDP, University of Namur, Namur, Belgium

    Philippe Thiran

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Samavi, R., Topaloglou, T. (2008). Designing Privacy-Aware Personal Health Record Systems. In: Song, IY., et al. Advances in Conceptual Modeling – Challenges and Opportunities. ER 2008. Lecture Notes in Computer Science, vol 5232. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-87991-6_3

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-87991-6_3

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-87990-9

  • Online ISBN: 978-3-540-87991-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation