Trustworthiness in distributed electronic healthcare records - basis for shared care

Shared care is the common answer to the challenge for improving health system quality and efficiency. This development must be accompanied by implementing shared care information systems moving to extended electronic healthcare record systems which are distributed and have to be interoperable too. Comprehensive communication and co-operation between healthcare establishments is increasingly using the open Internet. Regarding the sensitivity of personal medical data due to legal, ethical, social and psychological implications, such communication and co-operation must be provided in a trustworthy way. The HARP project, launched and funded by the European Commission, specified and offered a solution for distributed, component-based, trustworthy applications based on Internet technology. Specifying and implementing enhanced trusted third party (ETTP) services, the HARP solutions concern secure authentication as well as authorisation of principals. By associating role profiles and security attributes to standard Web-based interactions, HARP provides an initial degree of ´automation´ in building certified secure medical Internet-based applications deploying established paradigms such as object orientation, component architecture, Secure Socket Layer (SSL) protocol, and XML standard. The solution has been demonstrated and evaluated in a clinical study environment.