Access control for healthcare data using extended XACML-SRBAC model

Author

EL-Aziz, A. A Abd ; Kannan, A.

fYear

2012

fDate

10-12 Jan. 2012

Firstpage

1

Lastpage

4

Abstract

In the modern health service, data are accessed by doctors and nurses using mobile, Personal Digital Assistants, and other electronic handheld devices. An individual´s health related information is normally stored in a central health repository and it can be accessed only by authorized doctors. However, this Data is prone to be exposed to a number of mobile attacks while being accessed. This paper proposes a framework of using XACML and XML security to support secure, embedded and fine-grained access control policy to control the privacy and data access of health service data accessed through handheld devices. Also we consider one of the models, namely Spatial Role-based access control (SRBAC) and model it using XACML.

Keywords

XML; authorisation; data privacy; health care; medical information systems; mobile computing; notebook computers; XACML security; XML security; central health repository; data privacy; electronic handheld device; embedded access control policy; extended XACML-SRBAC model; fine-grained access control policy; health service data access; individual health related information; mobile personal digital assistant; secure access control policy; spatial role-based access control; Access control; Encryption; Medical services; Real time systems; XML; SRBAC; XACML; XML encryption; XML security; XML signature; mobile;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Communication and Informatics (ICCCI), 2012 International Conference on

Conference_Location

Coimbatore

Print_ISBN

978-1-4577-1580-8

Type

conf

DOI

10.1109/ICCCI.2012.6158775

Filename

6158775