Regulating Exceptions in Healthcare Using Policy Spaces

Ardagna, Claudio Agostino; Vimercati, Sabrina Capitani Di; Grandison, Tyrone; Jajodia, Sushil; Samarati, Pierangela

doi:10.1007/978-3-540-70567-3_20

Cited by 18 publications

(11 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Related work The advantage of this approach compared to "break-the-glass" policies [1,26] and contextual policies [17] is that the original policy is not modified, and the ADM can be (optionally) enforced on top of any policy, assuming that a notion of qualification can be defined. In [5], a notion of distance function is introduced in order to find a mentor, that is a user that can either perform the desired operation or delegate the corresponding access rights, and such a notion could be used to build directly a hierarchy of qualifications.…”

Section: Resultsmentioning

confidence: 99%

“…Two different approaches exist to address this challenge. The first is to define a different authorization policy for each context, either by introducing directly the notion of context in the policy [17], or by defining specific overriding ("breakthe-glass") policies to be applied when an emergency occurs [1,26]. However, these policies do not take into account the existence or availability of qualified subjects; instead they extend the set of authorized accesses for the duration of then emergency, therefore possibly allowing a (normally) unauthorized subject to access an object, even though authorized subjects are available.…”

Section: Introductionmentioning

confidence: 99%

“…1 Such an approach requires the delegation to be activated beforehand; that is, a subject must know when she will be unavailable in order to delegate her rights at this time. However, in some situations, the unavailability of a subject can be unexpected, for instance a subject getting injured or killed on a battlefield.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

An Auto-delegation Mechanism for Access Control Systems

Crampton

Morisset

2011

Security and Trust Management

View full text Add to dashboard Cite

Abstract. Delegation is a widely used and widely studied mechanism in access control systems. Delegation enables an authorized entity to nominate another entity as its authorized proxy for the purposes of access control. Existing delegation mechanisms tend to rely on manual processes initiated by end-users. We believe that systems in which the set of available, authorized entities fluctuates considerably and unpredictably over time require delegation mechanisms that can respond automatically to the absence of appropriately authorized users. To address this, we propose an auto-delegation mechanism and explore the way in which such a mechanism can be used to provide (i) controlled overriding of policy-based authorization decisions (ii) a novel type of access control mechanism based on subject-object relationships.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

An Auto-delegation Mechanism for Access Control Systems

Crampton

Morisset

2011

Security and Trust Management

View full text Add to dashboard Cite

show abstract

“…Two main approaches exist to address this need: "break-the-glass" policies [9,10] and the enforcement of delegations [11].…”

Section: Related Workmentioning

confidence: 99%

Decision Theory based Auto-delegation (DTA-d) scheme for Ubiquitous Computing

Kamble¹,

Mahalle²

2013

IJCA

View full text Add to dashboard Cite

Access control is a fundamental and essential mechanism to maintain security in ubiquitous computing (UbiComp). Flexibility is an important property for general access control system, which can be achieved by access or authority delegation. Existing delegation mechanisms are "subjectcentered", thus in order to make sure that the unavailability of some users does not prevent the system to be functional; autodelegation mechanisms are introduced, in particular for emergency-prone environments, such as healthcare, military systems auto-delegation mechanisms are required. Autodelegation mechanism combines the strengths of delegation systems and "break-the-glass" policies, by stating that the most qualified available user for a resource can access this resource. Further this work is extended by considering availability as a quantitative measure, such that each user is associated with a probability of availability.The main contribution of this paper is to present decision theory based auto-delegation scheme (DTA-d) for UbiComp. UbiComp poses new security challenges while the information can be accessed anywhere and anytime, hence the access control is required to maintain the security in UbiComp, but along with the strong access control, autodelegation is also necessary to provide flexibility. While performing the auto-delegation, numbers of alternatives are available, among these alternatives selecting one as best is the important issue and this is addressed in this paper. Decision theory is used to select the best alternative when numbers of alternatives are available and their consequences cannot be forecast with certainty. Using Bayesian decision theory and by applying bays rule access is granted or denied for particular subject to object.

show abstract

“…Moreover, the delegatee may be also unavailable at the time of need. On the other hand, "break-the-glass" policies [1,29,3] grant access to any subject in case of emergency, usually enforcing auditing and logging mechanisms. Thus, a poorly qualified subject may get access to a critical object.…”

Section: Introductionmentioning

confidence: 99%

Risk-Based Auto-delegation for Probabilistic Availability

Krautsevich

Martinelli

Morisset

et al. 2012

Data Privacy Management and Autonomous Spontaneus Security

View full text Add to dashboard Cite

Abstract. Dynamic and evolving systems might require flexible access control mechanisms, in order to make sure that the unavailability of some users does not prevent the system to be functional, in particular for emergency-prone environments, such as healthcare, natural disaster response teams, or military systems. The auto-delegation mechanism, which combines the strengths of delegation systems and "break-theglass" policies, was recently introduced to handle such situations, by stating that the most qualified available user for a resource can access this resource. In this work we extend this mechanism by considering availability as a quantitative measure, such that each user is associated with a probability of availability. The decision to allow or deny an access is based on the utility of each outcome and on a risk strategy. We describe a generic framework allowing a system designer to define these different concepts. We also illustrate our framework with two specific use cases inspired from healthcare systems and resource management systems.

show abstract

Regulating Exceptions in Healthcare Using Policy Spaces

Cited by 18 publications

References 16 publications

An Auto-delegation Mechanism for Access Control Systems

An Auto-delegation Mechanism for Access Control Systems

Decision Theory based Auto-delegation (DTA-d) scheme for Ubiquitous Computing

Risk-Based Auto-delegation for Probabilistic Availability

Contact Info

Product

Resources

About