Proceedings ArticleDOI
HealthPass: Fine-Grained Access Control to Portable Personal Health Records
Robert Steele,Kyongho Min +1 more
- pp 1012-1019
Reads0
Chats0
TLDR
This paper presents extensible models for defining and configuring fine-grained, role-based access control policies for XML-based portable personal health records using an extended digital certificate approach, called HealthPass which enables flexible and dynamic interactions without using a classical authorization and authentication approach like username and password.Abstract:
At present, emerging possibilities for patients to access their health records or health information may potentially lead to changes within the current health care delivery system from an institution-centered to a patient-centered model and an electronic personal health record (PHR) may greatly influence such a shift. However, the use of PHRs does introduce specific challenges in terms of accidental disclosure of or malicious access to an individual’s health data. Hence a high level of security for data access is required due to the sensitivity and confidentiality of the health data in PHRs. In this paper, we present extensible models for defining and configuring fine-grained, role-based access control policies for XML-based portable personal health records using an extended digital certificate approach, called HealthPass which enables flexible and dynamic interactions without using a classical authorization and authentication approach like username and password.read more
Citations
More filters
Journal ArticleDOI
Roles in information security - A survey and classification of the research area
TL;DR: This survey revealed more than 1300 publications dealing with the application of sociological role theory in the context of Information Security up to now, with a categorization of the complete underlying set of publications into different classes.
Journal ArticleDOI
Personal health record architectures: Technology infrastructure implications and dependencies
TL;DR: Two infrastructural drivers—ubiquitous technology baseline for PHRs and connectivity coverage— are described and their inter-relationships with the selected PHR architectures are examined, providing a basis for the analysis of the relationships between the two infrastructureural drivers and architectural selection.
Journal ArticleDOI
Telehealth and ubiquitous computing for bandwidth-constrained rural and remote areas
Robert Steele,Amanda Lo +1 more
TL;DR: The benefits of ubiquitous computing for rural and remote telehealth including social media-based preventative, peer support and public health communication, mobile phone platforms for the detection and notification of emergencies, wearable and ambient biosensors, and mobile device–enabled video consultation are reviewed.
Proceedings ArticleDOI
Social media, mobile devices and sensors: Categorizing new techniques for health communication
TL;DR: A framework to categorize and analyze the emerging types of health-related social media interactions and communications and consider how the techniques fit within this broader framework for healthcare applications of social media is introduced.
Journal ArticleDOI
An integrated framework for securing semi-structured health records
TL;DR: A hybrid framework aimed at enabling and supporting the definition of fine-grained access control policies working on semi-structured EHRs is proposed, suggesting that its application could simply and proficiently secure the access to healthcare information contained into semi- structures and, thus, face security and privacy risks in real healthcare scenarios.
References
More filters
Journal Article
Extensible Markup Language (XML).
TL;DR: XML is an extremely simple dialect of SGML which is completely described in this document, to enable generic SGML to be served, received, and processed on the Web in the way that is now possible with HTML.
Journal ArticleDOI
A fine-grained access control system for XML documents
TL;DR: This work presents an access control model to protect information distributed on the Web that, by exploiting XML's own capabilities, allows the definition and enforcement of access restrictions directly on the structure and content of the documents.
Journal ArticleDOI
Elderly persons’ perception and acceptance of using wireless sensor networks to assist healthcare
TL;DR: The exploratory findings indicate that independence is highly valued by elderly people and hence any system or technology that can prolong that independence tends to be highly regarded, and there are also indications that cost may be the most prominent determinant influencing an elderly person's acceptance of WSNs.
Journal ArticleDOI
Secure and selective dissemination of XML documents
Elisa Bertino,Elena Ferrari +1 more
TL;DR: This article defines a formal model of access control policies for XML documents and proposes an approach, based on an extension of the Cryptolope#8482; approach, which essentially allows one to send the same document to all users, and yet to enforce the statedAccess control policies.
Book ChapterDOI
Controlling access to published data using cryptography
Gerome Miklau,Dan Suciu +1 more
TL;DR: This work proposes a framework for enforcing access control policies on published XML documents using cryptography, and describes cryptographic techniques for enforcing the protection model on published data, and provides a performance analysis using real datasets.