Title :
Activity-based Access Control Model to Hospital Information
Author :
Hung, Le Xuan ; Lee, Sungyoung ; Lee, Young-Koo ; Lee, Heejo
Author_Institution :
Kyung Hee Univ., Seoul
Abstract :
Hospital work is characterized by the need to manage multiple activities simultaneously, constant local mobility, frequently interruptions, and intense collaboration and communication. Hospital employees must handle a large amount of data that is often tied to specific work activities. This calls for a proper access control model. In this paper, we propose a novel approach, activity-based access control model (ACM). Unlike conventional approaches which exploit user identity/role information, ACM leverages user´s activities to determine the access permissions for that user. In ACM, a user is assigned to perform a number of actions if s/he poses a set of satisfactory attributes. Access permissions to hospital information are granted according to user´s actions. By doing this, ACM contributes a number of advantages over conventional models: (1) facilitates user´s work; (2) reduces complexity and cost of access management. Though the design of ACM first aims to support clinical works in hospitals, it can be applied in other activity-centered environments.
Keywords :
authorisation; medical administrative data processing; access management; activity-based access control model; activity-centered environments; constant local mobility; frequently interruptions; hospital information access permissions; hospital work; multiple activity management; Access control; Collaborative work; Computer science; Costs; Hospitals; Humans; Permission; Security; Switches; Ubiquitous computing;
Conference_Titel :
Embedded and Real-Time Computing Systems and Applications, 2007. RTCSA 2007. 13th IEEE International Conference on
Conference_Location :
Daegu
Print_ISBN :
978-0-7695-2975-2
DOI :
10.1109/RTCSA.2007.18
