Implementation of a single sign-on system between practice, research and learning systems

Simple item page
dc.contributor.authorPurkayastha, Saptarshi
dc.contributor.authorGichoya, Judy W.
dc.contributor.authorAddepally, Siva Abhishek
dc.contributor.departmentBioHealth Informatics, School of Informatics and Computingen_US
dc.date.accessioned2022-10-10T11:14:06Z
dc.date.available2022-10-10T11:14:06Z
dc.date.issued2017-03-29
dc.description.abstractBackground: Multiple specialized electronic medical systems are utilized in the health enterprise. Each of these systems has their own user management, authentication and authorization process, which makes it a complex web for navigation and use without a coherent process workflow. Users often have to remember multiple passwords, login/logout between systems that disrupt their clinical workflow. Challenges exist in managing permissions for various cadres of health care providers. Objectives: This case report describes our experience of implementing a single sign-on system, used between an electronic medical records system and a learning management system at a large academic institution with an informatics department responsible for student education and a medical school affiliated with a hospital system caring for patients and conducting research. Methods: At our institution, we use OpenMRS for research registry tracking of interventional radiology patients as well as to provide access to medical records to students studying health informatics. To provide authentication across different users of the system with different permissions, we developed a Central Authentication Service (CAS) module for OpenMRS, released under the Mozilla Public License and deployed it for single sign-on across the academic enterprise. The module has been in implementation since August 2015 to present, and we assessed usability of the registry and education system before and after implementation of the CAS module. 54 students and 3 researchers were interviewed. Results: The module authenticates users with appropriate privileges in the medical records system, providing secure access with minimal disruption to their workflow. No passwords requests were sent and users reported ease of use, with streamlined workflow. Conclusions: The project demonstrates that enterprise-wide single sign-on systems should be used in healthcare to reduce complexity like "password hell", improve usability and user navigation. We plan to extend this to work with other systems used in the health care enterprise.en_US
dc.eprint.versionFinal published versionen_US
dc.identifier.citationPurkayastha S, Gichoya JW, Addepally SA. Implementation of a single sign-on system between practice, research and learning systems. Appl Clin Inform. 2017;8(1):306-312. Published 2017 Mar 29. doi:10.4338/ACI-2016-10-CR-0171en_US
dc.identifier.urihttps://hdl.handle.net/1805/30274
dc.language.isoen_USen_US
dc.publisherThiemeen_US
dc.relation.isversionof10.4338/ACI-2016-10-CR-0171en_US
dc.relation.journalApplied Clinical Informaticsen_US
dc.rightsPublisher Policyen_US
dc.sourcePMCen_US
dc.subjectCentral Authentication Systemen_US
dc.subjectIntegrated information systemsen_US
dc.subjectSecurity Assertion Markup Languageen_US
dc.subjectElectronic health recordsen_US
dc.subjectSingle sign-onen_US
dc.titleImplementation of a single sign-on system between practice, research and learning systemsen_US
dc.typeArticleen_US
ul.alternative.fulltexthttps://www.ncbi.nlm.nih.gov/pmc/articles/PMC5373772/en_US
Files
Original bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
Purkayastha2017Implementation-PMC.pdf
Size:
1.25 MB
Format:
Adobe Portable Document Format
Description:
Download
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.99 KB
Format:
Item-specific license agreed upon to submission
Description:
Download
Collections
Open Access Policy Articles
Department of Biomedical Engineering and Informatics Works
Saptarshi Purkayastha