A Semantic Access Control for Easy Management of the Privacy for EHR Systems

Author

Sicuranza, Mario ; Ciampi, Mario

Author_Institution

Inst. for High-Performance Comput. & Networking, Naples, Italy

fYear

2014

fDate

8-10 Nov. 2014

Firstpage

400

Lastpage

405

Abstract

In the last years, the increasingly use of ICT in Healthcare has led to the generation of several healthcare information systems, such as Electronic Health Record systems, which enable the management and sharing of digital clinical data. Since clinical data is generally characterized by very sensitive information, such information systems have to be able to limit their sharing of it, by enabling or denying access to the various healthcare users. In order to manage who can do what on such data, there is so need to use access control mechanisms, which have to be able to satisfy access policies defined by the patient in a dynamic manner. This paper presents a semantic access control designed for specifying flexible and fine-grained access policies in the HIS. The proposed model is based on an ontological approach able to increase the usability and feasibility of real information systems.

Keywords

authorisation; data privacy; electronic health records; health care; ontologies (artificial intelligence); semantic networks; EHR system; HIS; digital clinical data; electronic health record; healthcare information system; ontological formalization; privacy management; semantic access control; Access control; Context; Context modeling; Medical services; Organizations; Unified modeling language; Access Control Model; EHR; Ontology; Security;

fLanguage

English

Publisher

ieee

Conference_Titel

P2P, Parallel, Grid, Cloud and Internet Computing (3PGCIC), 2014 Ninth International Conference on

Conference_Location

Guangdong

Type

conf

DOI

10.1109/3PGCIC.2014.84

Filename

7024618