A role-based delegation framework for healthcare information systems

Longhua Zhang, Gail-Joon Ahn, Bei Tseng Chu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

77 Citations (Scopus)

Abstract

As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

Original languageEnglish (US)
Title of host publicationProceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)
Pages125-134
Number of pages10
StatePublished - 2002
Externally publishedYes
EventProceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002 - Monterey, CA, United States
Duration: Jun 3 2002Jun 4 2002

Other

OtherProceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002
CountryUnited States
CityMonterey, CA
Period6/3/026/4/02

Fingerprint

Information systems
Specifications

Keywords

  • Access control
  • Delegation
  • Healthcare information system
  • Revocation
  • Role

ASJC Scopus subject areas

  • Computer Science(all)

Cite this

Zhang, L., Ahn, G-J., & Chu, B. T. (2002). A role-based delegation framework for healthcare information systems. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002) (pp. 125-134)

A role-based delegation framework for healthcare information systems. / Zhang, Longhua; Ahn, Gail-Joon; Chu, Bei Tseng.

Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2002. p. 125-134.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Zhang, L, Ahn, G-J & Chu, BT 2002, A role-based delegation framework for healthcare information systems. in Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). pp. 125-134, Proceedings of Seventh ACM Symposium on Access Control Models and Technologies: SACMAT 2002, Monterey, CA, United States, 6/3/02.
Zhang L, Ahn G-J, Chu BT. A role-based delegation framework for healthcare information systems. In Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2002. p. 125-134
Zhang, Longhua ; Ahn, Gail-Joon ; Chu, Bei Tseng. / A role-based delegation framework for healthcare information systems. Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002). 2002. pp. 125-134
@inproceedings{ef3793090c5d4288b86232ef32bfb460,
title = "A role-based delegation framework for healthcare information systems",
abstract = "As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.",
keywords = "Access control, Delegation, Healthcare information system, Revocation, Role",
author = "Longhua Zhang and Gail-Joon Ahn and Chu, {Bei Tseng}",
year = "2002",
language = "English (US)",
pages = "125--134",
booktitle = "Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)",

}

TY - GEN

T1 - A role-based delegation framework for healthcare information systems

AU - Zhang, Longhua

AU - Ahn, Gail-Joon

AU - Chu, Bei Tseng

PY - 2002

Y1 - 2002

N2 - As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

AB - As organizations implement information strategies that call for sharing access to resources in the networked environment, mechanisms must be provided to protect the resources from adversaries. The proposed delegation framework addresses the issue of how to advocate selective information sharing in role-based systems while minimizing the risks of unauthorized access. We introduce a systematic approach to specify delegation and revocation policies using a set of rules. We demonstrate the feasibility of our framework through policy specification, enforcement, and a proof-of-concept implementation on specific domains, e.g. the healthcare environment. We believe that our work can be applied to organizations that rely heavily on collaborative tasks.

KW - Access control

KW - Delegation

KW - Healthcare information system

KW - Revocation

KW - Role

UR - http://www.scopus.com/inward/record.url?scp=0242456746&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0242456746&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:0242456746

SP - 125

EP - 134

BT - Proceedings of ACM Symposium on Access Control Models and Technologies (SACMAT 2002)

ER -