Towards purpose enforcement model for privacy-aware usage control policy in distributed healthcare

نویسندگان

  • Annanda Thavymony Rath
  • Jean-Noel Colin
چکیده

Enforcing the purpose of data usage means to ensure that data are used as it intends for and that excessive usage cannot happen. In general, the enforcement of purpose is a complicated task. The main difficulty is to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of usage purpose enforcement model based on our proposed enforcement structure: pre-, ongoing-, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the preand ongoing-enforcement of purpose. Furthermore, we validate our model with a prototype developed in Java.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

A Purpose Model and Policy Enforcement Engine for Usage Control in Distributed Healthcare Information System

This paper addresses two issues: the purpose model designed for distributed healthcare and the purpose-based usage policy enforcement engine based on our purpose-based UCON (the extended UCON model). UCON has been proposed and applied to support security requirements in different computing environments such as resources sharing in collaborative computing systems and data control in remote users...

متن کامل

Privacy Enforcement with an Extended Role-Based Access Control Model

Privacy enforcement has been one of the most important challenges in IT area. Current privacy practices within companies and organizations, e.g. enabling a P3P compliant policy, incorporating a privacy seal program, etc., cannot truly protect consumer privacy. Privacy protection can only be achieved by enforcing privacy policies within an organization’s online and offline data processing system...

متن کامل

Model-Driven Policy Framework for Usage Control-based Privacy Position Paper

In this position paper we present a framework for the modeling and enforcement of usage control-based privacy policies. In this work we introduce only PIM (Platform Independent Model) meta-models and briefly sketch how they can be transformed into the meta-models of PSM (Platform Specific Model) and finally generate the security architecture.

متن کامل

Towards User Defined Privacy in Location- Aware Platforms

The basic concept of the “Wireless Internet” is a system by which users are offered easy and efficient access to the Internet from small, convenient handheld devices. It is predicted that this will open a huge market for location-aware services. But Internet subscribers are already concerned about their privacy. Therefore location-aware services will only succeed if the privacy of the user can ...

متن کامل

Dynamic, Context-Aware Access Control for Distributed Healthcare Applications

The rapid worldwide deployment of the Internet and Web is the enabler of a new generation of e-healthcare applications, but the provision of a security architecture that can ensure the privacy and security of sensitive healthcare data is still an open question. Current solutions to this problem (mostly built on static RBAC models) are application-dependent and do not address the intricate secur...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:
  • IJSN

دوره 8  شماره 

صفحات  -

تاریخ انتشار 2013