Behavior-based access control for distributed healthcare systems
作者: Mohammad H. Yarmand , Kamran Sartipi , Douglas G. Down
关键词: Privilege level 、 Information technology 、 Data sharing 、 Privilege (computing) 、 Access control 、 External Data Representation 、 Computer science 、 Interoperability 、 Computer security 、 Computer access control
摘要: Sensitivity of clinical data and strict rules regarding sharing have caused privacy security to be critical requirements for using patient profiles in distributed healthcare systems. The amalgamation new information technology with traditional workflows has made the whole system vulnerable breaches. Standardization organizations are developing specifications satisfy required requirements. In this paper we present a novel access control model compliant standards based on framework designed service interoperability domain. proposed customizable captures dynamic behavior user determines rights accordingly.The is generic flexible sense that an engine dynamically receives effective parameters from subject user, identifies privilege level accessing different specialized components within engine. Standard representation formats ontologies used make compatible employs approach follow user's navigates among provide resource. A simulation environment implemented evaluate test model.
acm.org
sci-hub.se 参考文章(41)
Tim Benson, Clinical Document Architecture Health Informatics. pp. 145- 160 ,(2010) , 10.1007/978-1-84882-803-2_9
Ricardo Cruz-Correia, David W. Chadwick, Luis Antunes, Ana Ferreira, Access control: how can it improve patients' healthcare? Studies in health technology and informatics. ,vol. 127, pp. 65- 76 ,(2007)
Patrick C. K. Hung, Towards a Privacy Access Control Model for e-Healthcare Services. conference on privacy, security and trust. ,(2005)
Tine Verhanneman, Liesbeth Jaco, Bart De Win, Frank Piessens, Wouter Joosen, Adaptable Access Control Policies for Medical Information Systems Distributed Applications and Interoperable Systems. ,vol. 2893, pp. 133- 140 ,(2003) , 10.1007/978-3-540-40010-3_12
Alessandra Toninelli, Rebecca Montanari, Lalana Kagal, Ora Lassila, A semantic context-aware access control framework for secure collaborations in pervasive computing environments international semantic web conference. pp. 473- 486 ,(2006) , 10.1007/11926078_34
B. Blobel, Trustworthiness in distributed electronic healthcare records - basis for shared care annual computer security applications conference. pp. 433- 441 ,(2001) , 10.1109/ACSAC.2001.991560
Patricia Ann Potter, Anne Griffin Perry, Basic Nursing: Theory and Practice ,(1987)
Michael Hafner, Mukhtiar Memon, Muhammad Alam, Modeling and Enforcing Advanced Access Control Policies in Healthcare Systems with Sectet model driven engineering languages and systems. pp. 132- 144 ,(2008) , 10.1007/978-3-540-69073-3_15
R. Chandramouli, A framework for multiple authorization types in a healthcare application system annual computer security applications conference. pp. 137- 148 ,(2001) , 10.1109/ACSAC.2001.991530
Barbara Kozier, Techniques in Clinical Nursing ,(1989)