Towards a security policy for ubiquitous healthcare systems (position paper)

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4412 LNCS, Issue , 2007, Pages 263-272

  Kim, Joonwoong ^a   Beresford, Alastair R ^a   Stajano, Frank ^a  

^a UNIVERSITY OF CAMBRIDGE   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER ARCHITECTURE; HEALTH CARE; SYSTEMS ANALYSIS; UBIQUITOUS COMPUTING;

SECURITY POLICY; SYSTEM ARCHITECTURE; UBIQUITOUS HEALTHCARE SYSTEMS;

DATA PRIVACY;

EID: 38049136820     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-71789-8_27     Document Type: Conference Paper

References (19)

1. Ross Anderson. Security in Clinical Information Systems. BMA Report. British Medical Association, Jan 1996. ISBN 0727910485. http://www.cl.cam.ac.uk/~rja14/Papers/policy11.pdf.
2. Ross Anderson. "A security policy model for clinical information systems". In "IEEE Symposium on Security and Privacy", 1996. http://www.cl.cam.ac.uk/~rja14/Papers/oakpolicy.pdf.
3. Ross Anderson. "An Update on the BMA Security Policy". In "Cambridge workshop on Personal Information -Security, Engineering and Ethics", 1996. http://www.cl.cam.ac.uk/~rja14/Papers/bmaupdate.pdf.
4. Ross Anderson. "Healthcare Protection Profile -Comments", 1998. http://www.cl.cam.ac.uk/~rja14/Papers/healthpp.pdf.
5. Richard Beckwith. "Designing for Ubiquity: The Perception of Privacy". IEEE Pervasive Computing, 2(2):40-46, 2003.
6. Jürgen Bohn, Felix Gärtner and Harald Vogt. "Dependability Issues of Pervasive Computing in a Healthcare Environment". In "Security in Pervasive Computing 2003", vol. 2802 of Lecture Notes in Computer Science. 2004. http://www.vs.inf.ethz.ch/res/papers/ bohn_pervasivehospital_spc$_$2003_final.pdf.
7. Steven Cherry. "Total Recall". IEEE Spectrum, 42(11), Nov 2005. http://www.spectrum.ieee.org/nov05/2153.
8. Paul D. Clayton (ed.). For the Record: Protecting Electronic Health Information. National Academy Press, 1997.
9. Lawrence Gostin. "Health Care Information and the Protection of Personal Privacy: Ethical and Legal Considerations". Annals of Internal Medicine, 127(5), Oct 1997. http://www.annals.org/cgi/content/full/ 127/5_Part.2/683.
10. Xiaodong Jiang and James A. Landay. "Modeling privacy control in context-aware systems". IEEE Pervasive Computing, 1(3), 2002. http://guir.cs.berkeley.edu/projects/ubicomp-privacy/pubs/infospace.pdf.
11. Ilkka Korhonen, Juhan Pärkkä and Mark Van Gils. "Health Monitoring in the Home of the Future". IEEE Engineering in Medicine and Biology Magazine, 22(3):66-73, May 2003.
12. Marc Langheinrich. "Privacy by Design -Principles of Privacy-Aware Ubiquitous Systems". In "Ubicomp 2001", 2001. http://www.vs.inf.ethz.ch/publ/papers/privacy-principles.pdf.
13. William W. Lowrance. Privacy and health research a report to the U.S. Secretary of Health and Human Services. U.S. Department of Health and Human Services, 1997.
14. David Malan, Thaddeus Fulford-Jones and Matt Welsh. "CodeBlue: An Ad Hoc Sensor Network Infrastructure for Emergency Medical Care". In "International Workshop on Wearable and Implantable Body Sensor Networks", Apr 2004. http://www.eecs.harvard.edu/~mdw/papers/codeblue- bsn04.pdf.
15. Health Privacy Project. "Meidcal Privacy Stories", Nov 2003. http://www.patientprivacyrights.org/site/PageServer?pagename= True_Stories#True_Stories.
16. Jason Reid, Ian Cheong, Matthew Henricksen and Jason Smith. "A Novel Use of RBAC to Protect Privacy in Distributed Health Care Information Systems". In "Eighth Australasian Conference on Information Security and Privacy (ACISP 2003)", 2003.
17. Thomas C. Rindfleisch. "Privacy, information technology, and health care". Communications of the ACM, 40(8), Aug 1997.
18. A. Rubin. "Records No Longer for Doctors' Eye Only". Los Angeles Times, 1 Sep 1998.
19. Longhua Zhang, Gail-Joon Ahn and Bei-Tseng Chu. "A role-based delegation framework for healthcare information systems". In "The Seventh ACM Symposium on Access Control Models and Technologies (SACMAT'02)", 2002.