Purpose based access control for privacy protection in E-Healthcare services

Journal of Software

Volumn 7, Issue 11, 2012, Pages 2443-2449

  Sun, Lili ^a   Wang Dr Prof , Hua ^a   Soar Prof , Jeffrey ^a   Rong Prof , Chunming ^b  

^a UNIVERSITY OF SOUTHERN QUEENSLAND   (Australia)

^b UNIVERSITY OF STAVANGER   (Norway)

Author keywords

Access control; E Healthcare services; Privacy; Purpose

Indexed keywords

ACCESS CONTROL MODELS; ACCESS CONTROL POLICIES; AUTHORIZATION AND ACCESS CONTROL; DIGITAL INFORMATION; DIGITAL OBJECTS; E-HEALTH SYSTEMS; E-HEALTHCARE; E-HEALTHCARE SERVICES; FLEXIBLE AUTHORIZATION MANAGEMENT; HEALTH SERVICES; INFORMATION PRIVACY; PRIVACY PROTECTION; PROPER MODELS; PURPOSE; SECURITY ADMINISTRATION; SECURITY SOLUTIONS; USAGE ACCESS CONTROL; USAGE CONTROL; WEB-BASED SYSTEM;

DATA PRIVACY; HEALTH CARE; MEDICAL INFORMATION SYSTEMS;

ACCESS CONTROL;

EID: 84870552425     PISSN: 1796217X     EISSN: None     Source Type: Journal    
DOI: 10.4304/jsw.7.11.2443-2449     Document Type: Article

References (21)

1. Anderson, J., Security of the distributed electronic patient record: a case-based approach to identifying policy issues, International Journal of Medical Informatics, vol. 60, no. 2, pages 11-118, 2000.
2. Australian Charter of Healthcare Rights, http://www.health.gov.au/internet/safety/publishing.nsf/Co ntent/PriorityProgram-01.
3. Byun, J.-W., Bertino, E., Li, N., Purpose based access control of complex data for privacy protection, 'SACMAT'05: Proceedings of tenth ACM symposium on Access control models and technologies. ACM. New York, NY, USA, pp. 102-110, 2005.
4. Byun, J.-W., Li, N., Purpose-based access control for privacy protection in relational database systems, Technical Report 2004-52. Purdue University. 2004.
5. Cao, J., Sun, L., Wang, H., Towards secure xml documents with usage control, Lecture Notes in Computer Science, 3399, pp. 296-307, 2005.
6. Cheng, V. S. Y., Hung, P. C. K., 2005. Health insurance portability and accountability act (HIPAA) compliant access control model for web services, International Journal of Healthcare information systems and Informatics, Vol 1, Issue 1, pp. 22-39.
7. Damiani, E., Paraboschi, S. and Samarati, P., A finegrained access control system for xml documents, ACM Trans. Inf. Syst. Secur., 5(2):169-202, 2002.
8. Farzad, F., Yu, E., Hung, P. C. K., Role-based access control requirements model with purpose extension, http://wer.inf.pucrio.br/WERpapers/artigos/artigos_WER0 7/Xwer07-farzad.pdf, 2007.
9. Guidelines Under section 95 of the Privacy Act 1988, http://www.nhmrc.gov.au/publications/synopses/e26syn.ht m.
10. Hung, P. C. K., Towards a privacy access control model for e-Healthcare services, In Proceedings of the third annual conference on privacy, security and trust, October pp. 12-14, 2005.
11. Motta, G. H. M. B., Furuie, S. S., A contextual role-based access control authorization model for electronic patient record, IEEE Transactions on Information Technology in Biomedicine, vol. 7, no. 3, pages: 202-207, 2003.
12. Park, J., Sandhu, R., Towards usage control models: beyond traditional access control, In Proceedings of the seventh ACM symposium on Access control models and technologies, ACM Press, page 57-64. 2002.
13. Park, J., Sandhu, R., Schifalacqua, J., Security architectures for controlled digital information dissemination, In Proceedings of 16th Annual Computer Security Application Conference, December 2003.
14. Sandhu, R., Park, J., Usage control: A vision for next generation access control, In MMM-ACNS, 17-31, Springer-Verlag Berlin Heideberg, 2003.
15. Sun, L., Wang, H., A Purpose Based Usage Access Control Model, International Journal of Computer and Information Engineering, 4:1 2010, 44-51.
16. Sun, L., Li, Y., Using usage control to access xml database, International Journal of Information Systems in the Service Sector, 32-44(1), 2008.
17. Sun, L., Wang, H., A purpose based access control in native XML databases, Concurrency and Computation: Practice and Experience, DOI: 10.1002/cpe.1717, 2011.
18. Wang, H., Cao, J., Zhang, Y., Access control management for ubiquitous computing, Future Generation Computer Systems journal, 870-878(24), 2008.
19. Wang, H., Cao, J., Zhang, Y., Ubiquitous computing environments and its usage access control, Proceedings of the First International Conference on Scalable Information System,. ACM Press, Hong Kong, China, 72-81, 2006.
20. Williams, J., Role-based access control models for Ehealthcare systems, 2008.
21. Zhang, X., Park, J., Parisi-Presicce, F., A logical specification for usage control, In SACMAT'4. ACM Press, 2004.