A role-based delegation framework for healthcare information systems

Longhua Zhang; Gail-Joon Ahn; Bei Tseng Chu

A role-based delegation framework for healthcare information systems

Longhua Zhang, Gail-Joon Ahn, Bei Tseng Chu

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

Original language	English (US)
Title of host publication	Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)
Pages	125-134
Number of pages	10
State	Published - 2002
Externally published	Yes
Event	Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002 - Monterey, CA, United States Duration: Jun 3 2002 → Jun 4 2002

Other

Other	Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002
Country/Territory	United States
City	Monterey, CA
Period	6/3/02 → 6/4/02

Keywords

Access control
Delegation
Healthcare information system
Revocation
Role

ASJC Scopus subject areas

General Computer Science

Cite this

@inproceedings{ef3793090c5d4288b86232ef32bfb460,

title = "A role-based delegation framework for healthcare information systems",

abstract = "As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.",

keywords = "Access control, Delegation, Healthcare information system, Revocation, Role",

author = "Longhua Zhang and Gail-Joon Ahn and Chu, {Bei Tseng}",

year = "2002",

language = "English (US)",

pages = "125--134",

booktitle = "Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)",

note = "Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002 ; Conference date: 03-06-2002 Through 04-06-2002",

}

TY - GEN

T1 - A role-based delegation framework for healthcare information systems

AU - Zhang, Longhua

AU - Ahn, Gail-Joon

AU - Chu, Bei Tseng

PY - 2002

Y1 - 2002

N2 - As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

AB - As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

KW - Access control

KW - Delegation

KW - Healthcare information system

KW - Revocation

KW - Role

UR - http://www.scopus.com/inward/record.url?scp=0242456746&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0242456746&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:0242456746

SP - 125

EP - 134

BT - Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)

T2 - Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002

Y2 - 3 June 2002 through 4 June 2002

ER -

A role-based delegation framework for healthcare information systems

Abstract

Other

Keywords

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this