Achieving Mobile-Health Privacy Using Attribute-Based Access Control
| Autor: | Vignesh M. Pagadala, Indrakshi Ray |
|---|---|
| Rok vydání: | 2019 |
| Předmět: |
010302 applied physics
Graph database business.industry Computer science Control (management) Next-generation access Access control Cloud computing 02 engineering and technology Computer security computer.software_genre 01 natural sciences Information sensitivity 020204 information systems 0103 physical sciences 0202 electrical engineering electronic engineering information engineering Mobile telephony business computer mHealth |
| Zdroj: | Foundations and Practice of Security ISBN: 9783030184186 FPS |
| DOI: | 10.1007/978-3-030-18419-3_20 |
| Popis: | Mobile Health (mHealth) refers to a healthcare-provision scheme which uses mobile communication devices for effective detection, prognosis and delivery of services. mHealth systems consists of sensors collecting information from patients, cell phones through which users access the data, and a cloud-based remote data store for holding health information of the patients. Healthcare data contains sensitive information and it must be protected from unauthorized access. Although role-based access control is commonly used for healthcare data, we advocate the use of attribute-based access control as it offers finer granularity of access and can be used across organizational boundaries. Specifically, we use the NIST Next Generation Access Control (NGAC) for representing the access control policies as it is efficient, expressive, and simplifies policy management. We propose an approach that allows constant time evaluation of access decisions based on using a graph database. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|