Objective: to describe the key concepts and elements used to implement a comprehensive access management system to a distributed, component-based healthcare information system.
Methods: the a priori access is based on an institution-wide policy for access rights coupled to proximity process for the granting of such rights. Access rights are explicit and externalized from the information systems components. A posteriori control is based on a centralized, exhaustive journal of accesses to all components coupled to a decentralized verification process for suspicious accesses.
Results: the system has been operational for three years, initially used for the access to the computerized patient record components, and now extending to all the components of the hospital information system. The same architecture will be used for the development of the trans-institutional community health information network.