Abstract
The integration and evolution of existing Systems represents one of the most urgent priorities of health care information Systems in order to allow the whole organisation to meet the increasing clinical organisational and managerial needs. The ENV 12967-1 ‘Healthcare Information Systems Architecture’ standard defines an architectural approach based on a middleware of business-specific common services, enabling all parts of the local and geographical system to rely on a common information heritage of patient, clinical, administrative and managerial data.
Thanks to the availability of industrial products conforming to the standard, the effectiveness and the validity of this approach is now extensively used in the production and commercial environment. Industrial collaborations have been also established, based on the development and distribution of integratable and complementary components of a common, open healthcare-information system, based on the common DHE middleware.
After an overview on the key aspects of the HISA architecture, this paper discusses the positioning of the authorisation and security aspects in the overall architectural framework and presents the specific features implemented in the industrial DHE middleware.