Access control model for sharing composite Electronic Health Records

Jing Jin, Gail-Joon Ahn, Michael J. Covington, Xinwen Zhang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

The adoption of electronically formatted medical records, so called Electronic Health Records (EHRs), has become extremely important in healthcare systems to enable the exchange of medical information among stakeholders. An EHR generally consists of data with different types and sensitivity degrees which must be selectively shared based on the need-to-know principle. Security mechanisms are required to guarantee that only authorized users have access to specific portions of such critical record for legitimate purposes. In this paper, we propose a novel approach for modelling access control scheme for composite EHRs. Our model formulates the semantics and structural composition of an HER document, from which we introduce a notion of authorized zones of the composite EHR at different granularity levels, taking into consideration of several important criteria such as data types, intended purposes and information sensitivities..

Original languageEnglish (US)
Title of host publicationLecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering
Pages340-354
Number of pages15
Volume10 LNICST
DOIs
StatePublished - 2009
Event4th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2008 - Orlando, FL, United States
Duration: Nov 13 2008Nov 16 2008

Publication series

NameLecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering
Volume10 LNICST
ISSN (Print)18678211

Other

Other4th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2008
CountryUnited States
CityOrlando, FL
Period11/13/0811/16/08

Fingerprint

Access control
Health
Composite materials
Semantics
Chemical analysis

ASJC Scopus subject areas

  • Computer Networks and Communications

Cite this

Jin, J., Ahn, G-J., Covington, M. J., & Zhang, X. (2009). Access control model for sharing composite Electronic Health Records. In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering (Vol. 10 LNICST, pp. 340-354). (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering; Vol. 10 LNICST). https://doi.org/10.1007/978-3-642-03354-4_25

Access control model for sharing composite Electronic Health Records. / Jin, Jing; Ahn, Gail-Joon; Covington, Michael J.; Zhang, Xinwen.

Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering. Vol. 10 LNICST 2009. p. 340-354 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering; Vol. 10 LNICST).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Jin, J, Ahn, G-J, Covington, MJ & Zhang, X 2009, Access control model for sharing composite Electronic Health Records. in Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering. vol. 10 LNICST, Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering, vol. 10 LNICST, pp. 340-354, 4th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2008, Orlando, FL, United States, 11/13/08. https://doi.org/10.1007/978-3-642-03354-4_25
Jin J, Ahn G-J, Covington MJ, Zhang X. Access control model for sharing composite Electronic Health Records. In Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering. Vol. 10 LNICST. 2009. p. 340-354. (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering). https://doi.org/10.1007/978-3-642-03354-4_25
Jin, Jing ; Ahn, Gail-Joon ; Covington, Michael J. ; Zhang, Xinwen. / Access control model for sharing composite Electronic Health Records. Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering. Vol. 10 LNICST 2009. pp. 340-354 (Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering).
@inproceedings{cbbf368875834a7fb9be0fd43e4d7789,
title = "Access control model for sharing composite Electronic Health Records",
abstract = "The adoption of electronically formatted medical records, so called Electronic Health Records (EHRs), has become extremely important in healthcare systems to enable the exchange of medical information among stakeholders. An EHR generally consists of data with different types and sensitivity degrees which must be selectively shared based on the need-to-know principle. Security mechanisms are required to guarantee that only authorized users have access to specific portions of such critical record for legitimate purposes. In this paper, we propose a novel approach for modelling access control scheme for composite EHRs. Our model formulates the semantics and structural composition of an HER document, from which we introduce a notion of authorized zones of the composite EHR at different granularity levels, taking into consideration of several important criteria such as data types, intended purposes and information sensitivities..",
author = "Jing Jin and Gail-Joon Ahn and Covington, {Michael J.} and Xinwen Zhang",
year = "2009",
doi = "10.1007/978-3-642-03354-4_25",
language = "English (US)",
isbn = "3642033539",
volume = "10 LNICST",
series = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering",
pages = "340--354",
booktitle = "Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering",

}

TY - GEN

T1 - Access control model for sharing composite Electronic Health Records

AU - Jin, Jing

AU - Ahn, Gail-Joon

AU - Covington, Michael J.

AU - Zhang, Xinwen

PY - 2009

Y1 - 2009

N2 - The adoption of electronically formatted medical records, so called Electronic Health Records (EHRs), has become extremely important in healthcare systems to enable the exchange of medical information among stakeholders. An EHR generally consists of data with different types and sensitivity degrees which must be selectively shared based on the need-to-know principle. Security mechanisms are required to guarantee that only authorized users have access to specific portions of such critical record for legitimate purposes. In this paper, we propose a novel approach for modelling access control scheme for composite EHRs. Our model formulates the semantics and structural composition of an HER document, from which we introduce a notion of authorized zones of the composite EHR at different granularity levels, taking into consideration of several important criteria such as data types, intended purposes and information sensitivities..

AB - The adoption of electronically formatted medical records, so called Electronic Health Records (EHRs), has become extremely important in healthcare systems to enable the exchange of medical information among stakeholders. An EHR generally consists of data with different types and sensitivity degrees which must be selectively shared based on the need-to-know principle. Security mechanisms are required to guarantee that only authorized users have access to specific portions of such critical record for legitimate purposes. In this paper, we propose a novel approach for modelling access control scheme for composite EHRs. Our model formulates the semantics and structural composition of an HER document, from which we introduce a notion of authorized zones of the composite EHR at different granularity levels, taking into consideration of several important criteria such as data types, intended purposes and information sensitivities..

UR - http://www.scopus.com/inward/record.url?scp=84885891625&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84885891625&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-03354-4_25

DO - 10.1007/978-3-642-03354-4_25

M3 - Conference contribution

AN - SCOPUS:84885891625

SN - 3642033539

SN - 9783642033537

VL - 10 LNICST

T3 - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering

SP - 340

EP - 354

BT - Lecture Notes of the Institute for Computer Sciences, Social-Informatics and Telecommunications Engineering

ER -