Title :
Policy conflict analysis using tableaux for on demand VPN framework
Author :
Kamoda, Hiroaki ; Hayakawa, Akihiro ; Yamaoka, Masaki ; Matsuda, Shigeyuki ; Broda, Krysia ; Sloman, Morris
Author_Institution :
NTT Data Corp., Japan
Abstract :
The medical field has a requirement for ubiquitous computing with secure and reliable access control to permit patient information to be logged as they go about their normal activities or to permit medics to access patient information remotely from various mobile devices. Healthcare involves many different people from multiple organizations - general practitioner, hospital doctor or nurse, social workers - who all need different information. Defining the required authorization policies can be very complex, resulting in conflicts, which could result in information leaks, with privacy implications, or prevent access to information needed. We propose an approach for detecting conflicts defined in an authorization policy by using free variable tableaux. Our method enables us not only to detect a conflicting policy statically, but also to obtain information that would be helpful to correct the policy by using abductive inference.
Keywords :
authorisation; biomedical communication; data privacy; inference mechanisms; medical computing; mobile computing; telecommunication security; virtual private networks; abductive inference; authorization policies; conflicting policy; free variable tableaux; information leaks; medical computing; on demand VPN framework; patient information; policy conflict analysis; privacy; reliable access control; secure access control; ubiquitous computing; Access control; Authorization; Biomedical monitoring; Medical diagnostic imaging; Medical services; Mobile computing; Network servers; Ubiquitous computing; Virtual private networks; Web server;
Conference_Titel :
World of Wireless Mobile and Multimedia Networks, 2005. WoWMoM 2005. Sixth IEEE International Symposium on a
Print_ISBN :
0-7695-2342-0
DOI :
10.1109/WOWMOM.2005.78
