Behavior-Based Access Control for Distributed Healthcare Environment

June 17-June 19

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CBMS.2008.14

2008 21st IEEE International Symposiu ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Mohammad H. Yarmand Articles by Kamran Sartipi Articles by Douglas G. Down

	ASCII Text	x
	Mohammad H. Yarmand, Kamran Sartipi, Douglas G. Down, "Behavior-Based Access Control for Distributed Healthcare Environment," Computer-Based Medical Systems, IEEE Symposium on, pp. 126-131, 2008 21st IEEE International Symposium on Computer-Based Medical Systems, 2008.

	BibTex	x
	@article{ 10.1109/CBMS.2008.14, author = {Mohammad H. Yarmand and Kamran Sartipi and Douglas G. Down}, title = {Behavior-Based Access Control for Distributed Healthcare Environment}, journal ={Computer-Based Medical Systems, IEEE Symposium on}, volume = {0}, year = {2008}, issn = {1063-7125}, pages = {126-131}, doi = {http://doi.ieeecomputersociety.org/10.1109/CBMS.2008.14}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer-Based Medical Systems, IEEE Symposium on TI - Behavior-Based Access Control for Distributed Healthcare Environment SN - 1063-7125 SP126 EP131 A1 - Mohammad H. Yarmand, A1 - Kamran Sartipi, A1 - Douglas G. Down, PY - 2008 KW - Security KW - Context Aware Access Control KW - Behavior KW - HL7 KW - Patient Data VL - 0 JA - Computer-Based Medical Systems, IEEE Symposium on ER -

Mohammad H. Yarmand

Kamran Sartipi

Douglas G. Down

Privacy and security are critical requirements for using patient profiles in distributed healthcare environments. The amalgamation of new information technology with traditional healthcare workflows for sharing patient profiles has made the entire system vulnerable to security and privacy breaches. In this paper we present a novel access control model based on a framework designed for data and service interoperability in the healthcare domain. The proposed model for customizable access control captures the dynamic behavior of the user and determines access rights accordingly. The model is generic and flexible in the sense that an access control engine dynamically receives security effective factors from the subject user, and identifies the privilege level in accessing clinical data using different specialized components within the engine. Standard data representation formats are used to make the model compatible with different healthcare environments. The access control engine uses a flow-based approach to follow the user's behavior. The proposed model is supported by a real world case study.

Index Terms:

Security, Context Aware Access Control, Behavior, HL7, Patient Data

Citation:

Mohammad H. Yarmand, Kamran Sartipi, Douglas G. Down, "Behavior-Based Access Control for Distributed Healthcare Environment," cbms, pp.126-131, 2008 21st IEEE International Symposium on Computer-Based Medical Systems, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.