A Workflow-Based Access Control Framework for e-Health Applications

Russello, Giovanni; Dong, Changyu; Dulay, Naranker

doi:10.1109/waina.2008.131

Cited by 26 publications

(16 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Likewise, if the access control mechanism is too loose then protection of information and resource cannot be guaranteed. Therefore a precise access control mechanism is required that is able to deal with the level of unpredictability of typical healthcare application [16].…”

Section: Discussionmentioning

confidence: 99%

A web service approach for integrating e-Health Data in a low bandwidth environment

Ndume

Nkansah-Gyekye

2014

Proceedings of the 2nd Pan African International Conference on Science, Computing and Telecommunications (PACT 2014)

View full text Add to dashboard Cite

Section: Discussionmentioning

confidence: 99%

A web service approach for integrating e-Health Data in a low bandwidth environment

Ndume

Nkansah-Gyekye

2014

Proceedings of the 2nd Pan African International Conference on Science, Computing and Telecommunications (PACT 2014)

View full text Add to dashboard Cite

“…Any subject in this role would be allowed the permissions associated with this role . Furthermore, RBAC does not consider healthcare provider workflow (Russello et al, 2008) nor separate task from role. Various types of tasks with different access control characteristics are dealt with in the same manner (Oh and Park, 2003).…”

Section: Role-based Access Control (Rbac)mentioning

confidence: 99%

“…Such models and extensions have been employed in specific applications to manage information access in a controlled environment. Nevertheless, few studies have addressed the issue of managing information access within the context of team collaboration (Thomas, 1997;Georgiadis et al, 2001;Alotaiby and Chen, 2004) and workflow (Le et al, 2012;Russello et al, 2008). This study, proposes an access control model that is secure, flexible, easy to manage, and supports cooperative engagements.…”

Section: Introductionmentioning

confidence: 99%

Towards an Access Control Model for Collaborative Healthcare Systems

Abomhara

Køien

2016

Proceedings of the 9th International Joint Conference on Biomedical Engineering Systems and Technologies

View full text Add to dashboard Cite

In this study, an access control model for collaborative healthcare systems is proposed. Collaboration requirements, patient data confidentiality and the need for flexible access for healthcare providers through the actual work they must fulfill as part of their duties are carefully addressed. The main goal is to provide an access control model that strikes a balance between collaboration and safeguarding sensitive patient information.

show abstract

“…In this context, work in the area of access control enforcement in workflow management [34] [35] and Model-Driven Security [36][37], though important, suffer from enforcing security policies only at run-time and not during the workflow formation.…”

Section: Related Workmentioning

confidence: 99%

A privacy-aware access control model for distributed network monitoring

Papagiannakopoulou

Koukovini

Lioudakis

et al. 2013

Computers & Electrical Engineering

View full text Add to dashboard Cite

Despite the usefulness of network monitoring for the operation, maintenance, control and protection of communication networks, as well as law enforcement, network monitoring activities are surrounded by serious privacy implications. Their inherent leakage-proneness is harshened due to the increasing complexity of the monitoring procedures and infrastructures, that may include multiple traffic observation points, distributed mitigation mechanisms and even inter-operator cooperation. However, current approaches present limitations in effectively addressing such privacy issues, as they have not been designed for meeting the particular requirements of distributed network monitoring and conceptualising the corresponding functionalities and infrastructures; additionally, they are not suitable for highly dynamic and distributed environments and for automating privacy-awareness. In this paper, we introduce a new access control model that aims at addressing these concerns; it is conceived on the basis of data protection legislation, as well as distributed network monitoring. The proposed approach provides rich expressiveness, captures all the underlying concepts along with their associations and enables the specification of contextual authorisation policies and * Corresponding author.Email address: epapag@icbnet.ntua.gr (Eugenia I. Papagiannakopoulou) ⋆ This is a revised and expanded version of a paper that appeared in the proceedings of the 4th MITACS Workshop on Foundations & Practice of Security, Paris, France, May 2011, pp. 208-217 [44]. Computers & Electrical Engineering 2011 June 7, 2012 expressive separation and binding of duty constraints. Finally, two key innovations of our work consist in the ability to define access control rules in any possible level of abstraction and in enabling a verification procedure which results in inherently privacy-aware workflows, thus minimising run-time reasoning overheads and fostering the realisation of the Privacy by Design vision. Preprint submitted to Elsevier

show abstract

A Workflow-Based Access Control Framework for e-Health Applications

Cited by 26 publications

References 26 publications

A web service approach for integrating e-Health Data in a low bandwidth environment

A web service approach for integrating e-Health Data in a low bandwidth environment

Towards an Access Control Model for Collaborative Healthcare Systems

A privacy-aware access control model for distributed network monitoring

Contact Info

Product

Resources

About