{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,20]],"date-time":"2026-02-20T06:25:17Z","timestamp":1771568717540,"version":"3.50.1"},"reference-count":16,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2007,4,1]],"date-time":"2007-04-01T00:00:00Z","timestamp":1175385600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["SIGBED Rev."],"published-print":{"date-parts":[[2007,4]]},"abstract":"<jats:p>Clinical information systems (CIS) significantly influence the quality and efficiency of health care delivery. However, CIS are complex environments that integrate information technologies, human stakeholders, and patient-specific data. Given the sensitivity of patient data, federal regulations require healthcare providers to adopt policy, as well as technology, protections for patient data. Ad hoc system design and implementation of CIS can cause unforeseen and unintended privacy and security breaches. The introduction of model-based design techniques combined with the development of high-level modeling abstractions and analysis methods provide a mechanism to investigate these concerns by conceptually simplifying CIS without losing expressive power. This work introduces the Model-based Design Environment for Clinical Information Systems (MODECIS) - a graphical design environment that assists CIS architects in formalizing CIS systems as well-defined services. MODECIS leverages Service-Oriented Architectures to create realistic system models at an abstract level. By modeling CIS using abstractions, we enable the analysis of legacy architectures, as well as the design and simulation of, future CIS. We present the feasibility of MODECIS via modeling certain functions, such as the authentication process of the MyHealth@Vanderbilt patient portal.<\/jats:p>","DOI":"10.1145\/1295464.1295467","type":"journal-article","created":{"date-parts":[[2007,10,19]],"date-time":"2007-10-19T16:11:36Z","timestamp":1192810296000},"page":"5-9","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":4,"title":["Towards the security and privacy analysis of patient portals"],"prefix":"10.1145","volume":"4","author":[{"given":"Janos L.","family":"Mathe","sequence":"first","affiliation":[{"name":"Institute for Software Integrated Systems, Vanderbilt University, Nashville, TN"}]},{"given":"Sean","family":"Duncavage","sequence":"additional","affiliation":[{"name":"Institute for Software Integrated Systems, Vanderbilt University, Nashville, TN"}]},{"given":"Jan","family":"Werner","sequence":"additional","affiliation":[{"name":"Institute for Software Integrated Systems, Vanderbilt University, Nashville, TN"}]},{"given":"Bradley A.","family":"Malin","sequence":"additional","affiliation":[{"name":"Department of Biomedical Informatics, Vanderbilt University, Nashville, TN"}]},{"given":"Akos","family":"Ledeczi","sequence":"additional","affiliation":[{"name":"Institute for Software Integrated Systems, Vanderbilt University, Nashville, TN"}]},{"given":"Janos","family":"Sztipanovits","sequence":"additional","affiliation":[{"name":"Institute for Software Integrated Systems, Vanderbilt University, Nashville, TN"}]}],"member":"320","published-online":{"date-parts":[[2007,4]]},"reference":[{"key":"e_1_2_1_1_1","unstructured":"{1} Davies NM. Healthcare Information and Management Systems Society: The ROI of EMR-EHR: Productivity Soars Hospitals Save Time and Yes Money. HIMSS Journal. 2006.  {1} Davies NM. Healthcare Information and Management Systems Society: The ROI of EMR-EHR: Productivity Soars Hospitals Save Time and Yes Money. HIMSS Journal . 2006."},{"key":"e_1_2_1_2_1","volume-title":"Federal Register","author":"S.","year":"2002"},{"key":"e_1_2_1_3_1","volume-title":"Federal Register","author":"S.","year":"2003"},{"key":"e_1_2_1_4_1","doi-asserted-by":"crossref","unstructured":"{4} Masys D Baker D Butros A Cowles KE. Giving patients access to their medical records: the PCASSO experience J Am Med Inform Assoc. 2002; 9(2): 181-91.  {4} Masys D Baker D Butros A Cowles KE. Giving patients access to their medical records: the PCASSO experience J Am Med Inform Assoc. 2002; 9(2): 181-91.","DOI":"10.1197\/jamia.M1005"},{"key":"e_1_2_1_5_1","unstructured":"{5} A. Yanchuk A. Ivanyukovich M. Marchese: \"Towards a Mathematical Foundation for Service-Oriented Applications Design\" http:\/\/www.science.unitn.it\/~marchese\/pdf\/Towards_SOAD_ JoS_06.pdf  {5} A. Yanchuk A. Ivanyukovich M. Marchese: \"Towards a Mathematical Foundation for Service-Oriented Applications Design\" http:\/\/www.science.unitn.it\/~marchese\/pdf\/Towards_SOAD_ JoS_06.pdf"},{"key":"e_1_2_1_6_1","unstructured":"{6} B. Portier: \"SOA terminology overview Part 1: Service architecture governance and business terms\" http:\/\/www-128.ibm.com\/developerworks\/library\/ws-soa-term1\/index.html  {6} B. Portier: \"SOA terminology overview Part 1: Service architecture governance and business terms\" http:\/\/www-128.ibm.com\/developerworks\/library\/ws-soa-term1\/index.html"},{"key":"e_1_2_1_7_1","unstructured":"{7} B. Portier: \"SOA terminology overview Part 2: Development processes models and assets\" http:\/\/www-128.ibm.com\/developerworks\/library\/ws-soa-term2\/index.html  {7} B. Portier: \"SOA terminology overview Part 2: Development processes models and assets\" http:\/\/www-128.ibm.com\/developerworks\/library\/ws-soa-term2\/index.html"},{"key":"e_1_2_1_8_1","unstructured":"{8} OASIS: \"Web Services Business Process Execution Language (WSBPEL) TC\" http:\/\/www.oasis-open.org\/committees\/tc_home.php?wg_abbrev=wsbpel  {8} OASIS: \"Web Services Business Process Execution Language (WSBPEL) TC\" http:\/\/www.oasis-open.org\/committees\/tc_home.php?wg_abbrev=wsbpel"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/JPROC.2002.805824"},{"key":"e_1_2_1_10_1","doi-asserted-by":"crossref","unstructured":"{10} Kawamoto K Lobach D. Proposal for fulfilling strategic objectives of the U.S. roadmap for national action on decision support through a service-oriented architecture leveraging HL7 services. J Am Med Inform Assoc. 2007; 14: 146-55.  {10} Kawamoto K Lobach D. Proposal for fulfilling strategic objectives of the U.S. roadmap for national action on decision support through a service-oriented architecture leveraging HL7 services. J Am Med Inform Assoc. 2007; 14: 146-55.","DOI":"10.1197\/jamia.M2298"},{"key":"e_1_2_1_11_1","unstructured":"{11} R. Hamadi B. Benatallah: \"A Petri Net-based Model for Web Service Composition\" http:\/\/crpit.com\/confpapers\/CRPITV17Hamadi.pdf   {11} R. Hamadi B. Benatallah: \"A Petri Net-based Model for Web Service Composition\" http:\/\/crpit.com\/confpapers\/CRPITV17Hamadi.pdf"},{"key":"e_1_2_1_12_1","unstructured":"{12} F. van Breugel M. Koshkina: \"Models and Verification of BPEL\" http:\/\/www.cse.yorku.ca\/~franck\/research\/drafts\/tutorial.pdf  {12} F. van Breugel M. Koshkina: \"Models and Verification of BPEL\" http:\/\/www.cse.yorku.ca\/~franck\/research\/drafts\/tutorial.pdf"},{"key":"e_1_2_1_13_1","unstructured":"{13} Oracle BPEL Process Manager http:\/\/www.oracle.com\/technology\/products\/ias\/bpel\/index.ht ml  {13} Oracle BPEL Process Manager http:\/\/www.oracle.com\/technology\/products\/ias\/bpel\/index.ht ml"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2006.84"},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.jbi.2004.04.005"},{"issue":"11","key":"e_1_2_1_16_1","first-page":"1296","article-title":"On the use of graph transformation in the formal specification of model interpreters","volume":"9","author":"Karsai G.","year":"2003","journal-title":"Journal of Universal Computer Science"}],"container-title":["ACM SIGBED Review"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1295464.1295467","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T15:14:08Z","timestamp":1750259648000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1295464.1295467"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007,4]]},"references-count":16,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2007,4]]}},"alternative-id":["10.1145\/1295464.1295467"],"URL":"https:\/\/doi.org\/10.1145\/1295464.1295467","relation":{},"ISSN":["1551-3688"],"issn-type":[{"value":"1551-3688","type":"electronic"}],"subject":[],"published":{"date-parts":[[2007,4]]},"assertion":[{"value":"2007-04-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}