Title :
Access control for healthcare data using extended XACML-SRBAC model
Author :
EL-Aziz, A. A Abd ; Kannan, A.
Abstract :
In the modern health service, data are accessed by doctors and nurses using mobile, Personal Digital Assistants, and other electronic handheld devices. An individual´s health related information is normally stored in a central health repository and it can be accessed only by authorized doctors. However, this Data is prone to be exposed to a number of mobile attacks while being accessed. This paper proposes a framework of using XACML and XML security to support secure, embedded and fine-grained access control policy to control the privacy and data access of health service data accessed through handheld devices. Also we consider one of the models, namely Spatial Role-based access control (SRBAC) and model it using XACML.
Keywords :
XML; authorisation; data privacy; health care; medical information systems; mobile computing; notebook computers; XACML security; XML security; central health repository; data privacy; electronic handheld device; embedded access control policy; extended XACML-SRBAC model; fine-grained access control policy; health service data access; individual health related information; mobile personal digital assistant; secure access control policy; spatial role-based access control; Access control; Encryption; Medical services; Real time systems; XML; SRBAC; XACML; XML encryption; XML security; XML signature; mobile;
Conference_Titel :
Computer Communication and Informatics (ICCCI), 2012 International Conference on
Conference_Location :
Coimbatore
Print_ISBN :
978-1-4577-1580-8
DOI :
10.1109/ICCCI.2012.6158775
