Reconciling IHE-ATNA profile with a posteriori contextual access and usage control policy in healthcare environment

Azkia, Hanieh; Cuppens-Boulahia, Nora; Cuppens, Frédéric; Coatrieux, Gouenou

doi:10.1109/isias.2010.5604060

Cited by 5 publications

(6 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the healthcare domain, [22] outlined the needed architecture to apply audit-based access control in electronic health record systems, and discussed the advantages and limitations of their proposal. Other efforts in the medical domain were [5] and [7]. These works provided a solution to perform an a posteriori analysis of security rules using ontologies, and adopted the ATNA standard as a log format [6].…”

Section: State Of the Artmentioning

confidence: 99%

Semantic Mediation for A Posteriori Log Analysis

Dernaika

Cuppens-Boulahia

Cuppens

et al. 2019

Proceedings of the 14th International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

The a posteriori access control mode consists in monitoring actions performed by users, to detect possible violations of the security policy and to apply sanctions or reparations. In general, logs are among the first data sources that information security specialists consult for forensics when they suspect that something went wrong. One difficult challenge we face when analyzing logs, is the multiple log file formats. However, normalizing logs in one format needs a lot of processing especially because log files usually contain a high volume of data. Our study proposes then to tackle this problem, by leaving the different log formats as they are, and retrieving information from logs by querying them. A semantic mediator makes it possible to inter-operate various sources of information without modifying their internal functioning. It can be responsible for locating data sources, to transmit queries to each source, or from one source to another, to retrieve the queries responses and possibly send them back to other sources. To the best of our knowledge, semantic mediation techniques have been used to share information from heterogeneous data sources, but they were never used in the context of log analysis. CCS CONCEPTS • Behavioral Analysis for Access and Usage Control → A posteriori log analysis.

show abstract

Section: State Of the Artmentioning

confidence: 99%

Semantic Mediation for A Posteriori Log Analysis

Dernaika

Cuppens-Boulahia

Cuppens

et al. 2019

Proceedings of the 14th International Conference on Availability, Reliability and Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…In the two major categories of a posteriori access and usage control approaches that Etalle and Winsborough (2007) and Azkia et al (2010) can be considered representative, the frameworks are mainly based on three steps: logging, auditing and accountability. Nonetheless, there are some differences between the frameworks defined in Etalle and Winsborough (2007) and Azkia et al (2010).…”

Section: A Posteriori Approaches and Loggingmentioning

confidence: 99%

“…Nonetheless, there are some differences between the frameworks defined in Etalle and Winsborough (2007) and Azkia et al (2010). In Etalle and Winsborough (2007), users are responsible for logging and keeping traces of actions they execute.…”

Section: A Posteriori Approaches and Loggingmentioning

confidence: 99%

“…This is done either when creating and modifying data items or at reception of these data items. By contrast, Azkia et al (2010) does not constrain the system's users to perform such logging actions. So, they do not have to log evidence themselves.…”

Section: A Posteriori Approaches and Loggingmentioning

confidence: 99%

“…Policy labels are defined using predefined predicates such as 'owner' or 'maymodify'. This is not the case in Azkia et al (2010) which relies on a security policy model and hence takes advantage from the expressiveness of the security policy rules.…”

Section: A Posteriori Approaches and Loggingmentioning

confidence: 99%

See 2 more Smart Citations

Log content extraction engine based on ontology for the purpose of a posteriori access control

Azkia¹,

Cuppens-Boulahia²,

Cuppens³

et al. 2014

IJKL

Self Cite

View full text Add to dashboard Cite

In some complex information systems, users do not undergo untimely access controls. Generally, whenever they perform an action, this action is logged by the target system. Based on these log files, a security control called a posteriori access control is made afterwards. The logged data can be recorded in different formats (Syslog, W3C extend log, specific domain log standard like IHE-ATNA, etc.). An a posteriori security control framework requires a log filtering engine which extracts useful information regardless of the log format used. In this paper, we define and enforce this extraction function by building an ontology model of logs. This logs ontology is queried to check the compliance of actions performed by the users of the considered system with its access control policy (violations, anomalies, fulfilments, etc.). We show how the a posteriori security controls are made effective and how security decisions are made easier based on this extraction function.

show abstract