Security Aspects of Grid-based Digital Mammography

M. A. Slaymaker; E. Politou; D. J. Power; S. Lloyd; A. C. Simpson

doi:10.1055/s-0038-1633948

Methods of Information in Medicine, Table of Contents

Methods Inf Med 2005; 44(02): 207-210
DOI: 10.1055/s-0038-1633948

Original Article

Schattauer GmbH

Security Aspects of Grid-based Digital Mammography

Authors

M. A. Slaymaker

¹Oxford University Computing Laboratory, Oxford, UK
E. Politou

¹Oxford University Computing Laboratory, Oxford, UK
D. J. Power

¹Oxford University Computing Laboratory, Oxford, UK
S. Lloyd

¹Oxford University Computing Laboratory, Oxford, UK
A. C. Simpson

¹Oxford University Computing Laboratory, Oxford, UK

Abstract

Summary

Objectives: The principal aim of the eDiaMoND project is to develop a prototype Grid infrastructure to support the needs of the breast care community. The prototype system is but one major deliverable of the project; the other is a blueprint document that describes how a system such as eDiaMoND might be deployed throughout the United Kingdom to support the NHS Breast Screening Programme. A key consideration of both the prototype and the blueprint is security. In this paper we address some of the generic security issues faced by projects such as eDiaMoND. We also indicate how these problems are being overcome within our project.

Methods: In order to fully understand the security issues faced by the project a review of current initiatives within the NHS was performed. The work of the NHS Information Authority was found to be particularly significant. Also reviewed was BS7799, the British Standard for the deployment of security systems and processes. Finally, modelling of the proposed prototype was performed using methods proposed by the e-Science Security Task Force, in particular the method proposed by Flechais and Sasse.

Results and Conclusions: It is felt that the issues of security surrounding the eDiaMoND project are sufficiently generic that the eHealth community can consider and criticise the work described. It is hoped that this will enable the eHealth community to move forwards with a common agenda.

Keywords

Digital mammography - computer security - grid computing - e-science

Full Text

References

References
1 NHS Breast Screening Programme Website. (http://www.cancerscreening.nhs.uk/breastscreen/index.html).
2 Geldman A. NHS staff: the issue explained. Society Guardian. Wednesday June 26, 2002. (http://society.guardian.co.uk/NHSstaff/story/0,7991,460023,00.html).
3 Brady JM, Gavaghan DJ, Simpson AC, Highnam RP, Mulet-Parada M. eDiaMoND: A grid-enabled federated database of annotated mammograms. In Grid Computing: Making the Global Infrastructure a Reality. Wiley: 2002: 923-43.
4 The Risks Digest: Forum On Risks To The Public In: Computers And Related Systems. http://catless.ncl.ac.uk/Risks/.
5 Flechais I, Sasse MA. Developing Secure and Usable Software. In Proceedings of OT. 2003. (March 30-April 2, 2003).
6 Foster I, Kesselman C, Tsudik G, Tuecke S. A security architecture for computational Grids. In: Proceedings of the 5th ACM conference on Computer and Communication Security.