Title :
Computer-Aided Generation of Enforcement Mechanisms for Error-Tolerant Policies
Author :
Bielova, Nataliia ; Massacci, Fabio
Author_Institution :
Dept. of Comput. & Inf. Sci., Univ. of Trento, Trento, Italy
Abstract :
The basic tenet of security management when actions violate policies is that the former must be forbidden or amended. This requires to specify precisely all possible exceptions and corrections to the default workflow. In many practical e-health business processes this is not feasible: the default clinical or administrative protocol is simple and well understood by clinicians but the precise codification of all possible amendable errors into the policy would transform it from a straight-line to an unreadable spaghetti-graph. In this paper we propose a more practical alternative: the clinician only specifies the default protocol and marks for each protocol step the venial errors and their possible corrections. Given a global bound on the amount of errors in a trace that can be tolerated for each workflow execution, we can automatically generate an edit-automata that can provably enforce the policy with a sufficient degree of predictability (a policy metric for error correction). We illustrate our approach with a concrete e-health workflow from the Italian region of Lombardy.
Keywords :
medical administrative data processing; security of data; clinical protocol; computer-aided generation; e-health business process; e-health workflow; enforcement mechanism; error-tolerant policy; security management; Automata; Drugs; Lead; Measurement; Protocols; Security; automated policy generation; e-health; error correction; security;
Conference_Titel :
Policies for Distributed Systems and Networks (POLICY), 2011 IEEE International Symposium on
Conference_Location :
Pisa
Print_ISBN :
978-1-4244-9879-6
Electronic_ISBN :
978-0-7695-4330-7
DOI :
10.1109/POLICY.2011.41
