A Framework for an Authorization System with Spatial Reasoning Capacity to Improve Risk Management and Information Security in Healthcare

The healthcare domain has a specific workflow for medical treatment. The introduction of information security measures that does not considers the behavioral principles of medical workers not only interferes with treatments but may also increase medical risk as a result of human errors due to attempts to bypass these security measures. This is because security measures may introduce a liability if they prevent smooth medical treatment. For this reason, we need to develop efficient security measures for healthcare that balance information security and usability. We propose a security framework that improves safety without disturbing the physicians´ actions. The use of a device that has the ability of spatial perception and a suitable authentication system allows the user to freely interact with applications after the first login procedure is completed. By applying the security framework, we can simultaneously solve the following conflicting problems: information security, medical risk management, and sanitary issues.