Skip to main content
Proceedings of the Annual Symposium on Computer Application in Medical Care logoLink to Proceedings of the Annual Symposium on Computer Application in Medical Care
. 1992:283–286.

Network information security in a phase III Integrated Academic Information Management System (IAIMS).

S Shea 1, S Sengupta 1, A Crosswell 1, P D Clayton 1
PMCID: PMC2248133  PMID: 1336414

Abstract

The developing Integrated Academic Information System (IAIMS) at Columbia-Presbyterian Medical Center provides data sharing links between two separate corporate entities, namely Columbia University Medical School and The Presbyterian Hospital, using a network-based architecture. Multiple database servers with heterogeneous user authentication protocols are linked to this network. "One-stop information shopping" implies one log-on procedure per session, not separate log-on and log-off procedures for each server or application used during a session. These circumstances provide challenges at the policy and technical levels to data security at the network level and insuring smooth information access for end users of these network-based services. Five activities being conducted as part of our security project are described: (1) policy development; (2) an authentication server for the network; (3) Kerberos as a tool for providing mutual authentication, encryption, and time stamping of authentication messages; (4) a prototype interface using Kerberos services to authenticate users accessing a network database server; and (5) a Kerberized electronic signature.

Full text

PDF
285

Articles from Proceedings of the Annual Symposium on Computer Application in Medical Care are provided here courtesy of American Medical Informatics Association

RESOURCES