Integration of Clinical Workflows with Privacy Policies on a Common Semantic Domain Jan Werner, Bradley Malin, Yonghwan Lee, Akos Ledeczi, Janos Sztipanovits.

Slides:

Advertisements

Similar presentations

Composable Metamodeling Environment Akos Ledeczi Institute for Software Integrated Systems Vanderbilt University

Advertisements

A Model-Integrated, Guideline-Driven, Clinical Decision-Support System Janos L. Mathe, Andras Nadas, Janos Sztipanovits November 11, 2010 INSTITUTE FOR.

OASIS Reference Model for Service Oriented Architecture 1.0

Privacy and Contextual Integrity: Framework and Applications Adam Barth, Anupam Datta, John C. Mitchell (Stanford), and Helen Nissenbaum (NYU) TRUST Winter.

©Ian Sommerville 2006Software Engineering, 8th edition. Chapter 8 Slide 1 System models.

Chess Review May 10, 2004 Berkeley, CA Metamodeling Infrastructure for Model-Integrated Computing Matthew J. Emerson, Kai Chen, Andrew D. Dixon, Janos.

Institute For Software Integrated Systems Vanderbilt University Applications of Model Integrated Computing to The Synchronous Language Signal Ethan Jackson.

CUMC IRB Investigator Meeting November 9, 2004 Research Use of Stored Data and Tissues.

Adaptable Architecture for Meta- Programmable Modeling Tools Matt Emerson Advisor: Janos Sztipanovits The Core Layer The.

Chess Review May 11, 2005 Berkeley, CA Formal Semantics of Metamodeling Frameworks Ethan Jackson ISIS, Vanderbilt University Semantic Anchoring Infrastructure.

Using the Vanderbilt Generic Modeling Environment (GME) to Address SOA QoS Sumant Tambe Graduate Intern, Applied Research, Telcordia Technologies Inc.

Web Service Architecture Part I- Overview and Models (based on W3C Working Group Note Frank.

A novel approach to modeling Zvezdan Protić, Tom Verhoeff, Mark van den Brand.

Initial slides for Layered Service Architecture

THE NEXT STEP IN WEB SERVICES By Francisco Curbera,… Memtimin MAHMUT 2012.

1 Secure Distributed Objects for Grid Applications Laurent Baduel, Arnaud Contes, Denis Caromel OASIS team ProActive

A Model-Integrated Approach to Implementing Individualized Patient Care Plans Based on Guideline-Driven Clinical Decision Support and Process Management.

Chapter 4 System Models A description of the various models that can be used to specify software systems.

1 CSE 2102 CSE 2102 Ph.D. Proposal A Process Framework For Ontology Modeling, Design, And Development Realized By Extending OWL and ODM Candidate: Rishi.

1 A pattern language for security models Eduardo B. Fernandez and Rouyi Pan Presented by Liping Cai 03/15/2006.

Li Xiong CS573 Data Privacy and Security Healthcare privacy and security: Genomic data privacy.

Co-design Environment for Secure Embedded Systems Matt Eby, Janos L. Mathe, Jan Werner, Gabor Karsai, Sandeep Neema, Janos Sztipanovits, Yuan Xue Institute.

L SERVICE DELIVERY Pharmacy Public Health Provider Interoperability Services Data Interchange Legacy System Adapters Simulator Health Service Bus Infrastructure.

UDM An Infrastructure for Implementing Domain-Specific Modeling Languages Endre Magyari, Arpad Bakay, Andras Lang, Tamas Paka, Attila Vizhanyo, Aditya.

1 Ontology-based Semantic Annotatoin of Process Template for Reuse Yun Lin, Darijus Strasunskas Depart. Of Computer and Information Science Norwegian Univ.

TRUST Review, April 2, 2008 Experimental Platform for Model-Integrated Clinical Information Systems Janos Mathe ‡, Jan Werner ‡, Yonghwan Lee ‡, Akos Ledeczi.

Chapter Two ( Data Model) Objectives Introduction to Data Models What are the Data Models Why they are important Learn how to design a DBMS.

Chapter 7 System models.

Web Services Based on SOA: Concepts, Technology, Design by Thomas Erl MIS 181.9: Service Oriented Architecture 2 nd Semester,

Copyright © 2009 by The McGraw-Hill Companies, Inc. All Rights Reserved. McGraw-Hill Chapter 6 The Privacy and Security of Electronic Health Information.

Sommerville 2004,Mejia-Alvarez 2009Software Engineering, 7th edition. Chapter 8 Slide 1 System models.

Slide title In CAPITALS 50 pt Slide subtitle 32 pt Model based development for the RUNES component middleware platform Gabor Batori

An Ontological Framework for Web Service Processes By Claus Pahl and Ronan Barrett.

Architectural Patterns Support Lecture. Software Architecture l Architecture is OVERLOADED System architecture Application architecture l Architecture.

Dr. Bhavani Thuraisingham August 2006 Building Trustworthy Semantic Webs Unit #1: Introduction to The Semantic Web.

INRIA - LaBRICharles Consel Jan-06 1 Domain-Specific Software Engineering Charles Consel Phoenix Research Group LaBRI /INRIA-Futurs January 2006.

Secure Systems Research Group - FAU SW Development methodology using patterns and model checking 8/13/2009 Maha B Abbey PhD Candidate.

Institute for Software Integrated Systems Vanderbilt University DARPA ASC PI Meeting May 26-28, 1999 Adaptive Model-Integrated Computing Akos Ledeczi.

Toward a Semantic Anchoring Infrastructure for Domain-Specific Modeling Languages Kai Chen Janos Sztipanovits Sandeep Neema Matthew Emerson Sherif Abdelwahed.

TRUST : Team for Research in Ubiquitous Secure Technology National Science Foundation Site Visit February 24-26, 2009 │Berkeley, California Health Infrastructures.

Integrating a Federated Healthcare Data Query Platform With Electronic IRB Information Systems Shan He IPHIE 2010.

Identity Proofing, Signatures, & Encryption in Direct esMD Author of Record Workgroup John Hall Coordinator, Direct Project June 13, 2012.

Future Work  Formal specification of modeling language semantic is key issue  Reliance on well-established formal models of computation (i.e. finite.

Modul 4 Struktur Informasi Mata Kuliah Preservasi Informasi Digital.

Open Tool Integration Framework Gabor Karsai Institute for Software-Integrated Systems PO.Box 1829B Vanderbilt University Nashville, TN 37235, USA.

16/11/ Semantic Web Services Language Requirements Presenter: Emilia Cimpian

TRUST 2 nd Year Site Visit, March 19 th, 2007 TRUST Knowledge Transfer EMR Project Vanderbilt (Sztipanovits, Karsai, Ledeczi, Xue) Stanford (Mitchell,

HIPAA HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT.

Institute for Software Integrated Systems Vanderbilt University Towards a Paradigm for Activity Modeling SMC2000 WP-2.9: Modeling & Control – Hybrid Systems.

© Drexel University Software Engineering Research Group (SERG) 1 The OASIS SOA Reference Model Brian Mitchell.

Modeling Uncertain and Imprecise Information in Process Modeling with UML Jing XIAO LATTIS, INSA-Toulouse, France 14th International.

Helping the Cause of Medical Device Interoperability Through Standards- based Test Tools DoC/NIST John J. Garguilo January 25,

Rule Engine for executing and deploying the SAGE-based Guidelines Jeong Ah Kim', Sun Tae Kim 2 ' Computer Education Department, Kwandong University, KOREA.

 Copyright 2005 Digital Enterprise Research Institute. All rights reserved. SOA-RM Overview and relation with SEE Adrian Mocan

XML and Distributed Applications By Quddus Chong Presentation for CS551 – Fall 2001.

MDD-Kurs / MDA Cortex Brainware Consulting & Training GmbH Copyright © 2007 Cortex Brainware GmbH Bild 1Ver.: 1.0 How does intelligent functionality implemented.

eHealth Standards and Profiles in Action for Europe and Beyond

Efficient and secure transborder exchange of patient data

Chapter 2 Database Environment.

Web Ontology Language for Service (OWL-S)

Chapter 2 Database Environment.

The Extensible Tool-chain for Evaluation of Architectural Models

Chapter 2 Database Environment Pearson Education © 2009.

Chapter 2 Database Environment.

2. An overview of SDMX (What is SDMX? Part I)

OOPSLA Workshop on Domain-Specific Modeling Tools Workgroup

Chapter 2 Database Environment Pearson Education © 2009.

Graphical Modeling of INFOD applications

Chapter 2 Database Environment Pearson Education © 2009.

Presentation transcript:

Integration of Clinical Workflows with Privacy Policies on a Common Semantic Domain Jan Werner, Bradley Malin, Yonghwan Lee, Akos Ledeczi, Janos Sztipanovits Institute for Software Integrated System Vanderbilt University, Nashville, TN TRUST Autumn 2008 Conference Nashville, Tennessee

Motivation Design of the medical workflows requires careful analysis of workflow utility and privacy Privacy and security policies have to be interpreted in the context of the workflow Common semantic domain is required to represent workflow goals and privacy requirements

Model Based Design for Clinical Workflows Metamodel of a workflow language Description of the modeling abstractions eg. Messages, Services and Composition Rules Definition of a workflow domain Model of a workflow Representation of message exchange patterns, definition of services and messages in a clinical setting eg. Data Provider Service, Medical Record Message Definition of communication protocol Messages in runtime environment Service invocations and replies with requested data eg. Patient record of ‘John Doe’ Instance of communication pattern ModelMessage exchange not in db yet 0 1 John Doe Metamodel Describes

Example Privacy Policies Privacy Policy used in this presentation: – A covered entity may send protected health information to a business partner for de-identification purposes, only if there exists a contractual agreement between the communicating entities.

Design of a simple workflow language

Model of a workflow Workflow model Data provider sends the sensitive data for de-identification. De-identified data is finally stored in local database Privacy Policy Covered Entity sends the Protected Health Information for de-identification to Business Associate and receives back the de-identified data A covered entity may send protected health information to a business partner for de-identification purposes only if there exists a contractual agreement between the communicating entities.

Integration using Structural Semantics Approach How to formally represent a domain? A domain D is given by – An alphabet Σ – A set of n-ary function symbols Υ – A set of model realizations – A set of constraints C such that – D = (Σ, Υ, R Υ, C) Constraints are given as proofs

Model transformation and interpretation message('message_id ’). service('de-identification _id '). receivemessage('receivemessage_id '). receivemessage('receivemessage_id ','message_id ','de-identification_id '). workflowmodel('workflow_id '). sendmessage('sendmessage_id '). contains('sendmessage_id ','workflow_id '). (…) canconn('receivemessage',X,Y) :- message(X), service(Y). malform(receivemessage(N,X,Y)):- receivemessage(N,X,Y), \+canconn('receivemessage',X,Y) cancontain(X,Y) :- sendmessage(X), workflowmodel(Y). malform(purpose(Y,V)) :- purpose(Y,V), purpose(Y,W), (V \== W). malform(purpose(Y,V)) :- purpose(Y,V), \+entityconnection(Y). (…) Meta level Model level GMEHorn domain

Translation of the workflow metamodel canconn('receivemessage',X,Y) :- message(X), service(Y). malform(receivemessage(N,X,Y)):- receivemessage(N,X,Y), \+canconn('receivemessage',X,Y) cancontain(X,Y) :- sendmessage(X), workflowmodel(Y). malform(purpose(Y,V)) :- purpose(Y,V), purpose(Y,W), (V \== W). malform(purpose(Y,V)) :- entityconnection(Y,V), \+message(Y). Representation of the metamodel using Prolog terms.

Model transformation and interpretation message('message_id ’). service('de-identification _id '). receivemessage('receivemessage_id '). receivemessage('receivemessage_id ','message_id ','de- identification_id '). workflowmodel('workflow_id '). sendmessage('sendmessage_id '). contains('sendmessage_id ','workflow_id '). (…) canconn('receivemessage',X,Y) :- message(X), service(Y). malform(receivemessage(N,X,Y)):- receivemessage(N,X,Y), \+canconn('receivemessage',X,Y) cancontain(X,Y) :- sendmessage(X), workflowmodel(Y). malform(purpose(Y,V)) :- purpose(Y,V), purpose(Y,W), (V \== W). malform(purpose(Y,V)) :- purpose(Y,V), \+entityconnection(Y). (…) Meta level Model level GMEHorn domain

Verification of model wellformedness no_entity_mapping(S,R) :- R = entitymapping(_,S,_), \+entitymapping(X,S,_). malform(service(S),R) :- service(S), no_entity_mapping(S,R). Additional constraints Services have to be mapped to the organizations Malformed model

Additional constraints Services have to be mapped to the organizations Verification of model wellformedness Malformed model no_entity_mapping(S,R) :- R = entitymapping(_,S,_), \+entitymapping(X,S,_). malform(service(S),R) :- service(S), no_entity_mapping(S,R).

Privacy policy as model constraint no_entity_connection(E1,E2,R) :- R = entityconnection(_,E1,E2), (E1\==E2), \+ entityconnection(X,E1,E2). malform(message(M),R) :- message(M), sendmessage(MF,S1,M), receivemessage(MF2,M,S2), entitymapping(EM1,S1,E1), entitymapping(EM2,S2,E2), no_entity_connection(E1,E2,R). Additional constraints – privacy policy Covered entity(E1) may send protected health information (M) to business partner (E2) for de- identification only if there exist partner link (EntityConnection) between the entity (E1) and business partner (E2) Malformed model

Privacy policy as model constraint no_entity_mapping(S,R) :- R = entitymapping(_,S,_), \+entitymapping(X,S,_). malform(service(S),R) :- service(S), no_entity_mapping(S,R). no_entity_connection(E1,E2,R) :- R = entityconnection(_,E1,E2), (E1\==E2), \+ entityconnection(X,E1,E2). malform(message(M),R) :- message(M), sendmessage(MF,S1,M), receivemessage(MF2,M,S2), entitymapping(EM1,S1,E1), entitymapping(EM2,S2,E2), no_entity_connection(E1,E2,R). Additional constraints Wellformed model

Results Framework that unifies description of workflows and policies on common semantic domain Prolog Based tool for verification of the models integrated in GME modeling environment Demonstration during the poster session