Abstract
This paper addresses two issues: the purpose model designed for distributed healthcare and the purpose-based usage policy enforcement engine based on our purpose-based UCON (the extended UCON model). UCON has been proposed and applied to support security requirements in different computing environments such as resources sharing in collaborative computing systems and data control in remote users or platforms, but apparently absent in its core model is "purpose", which is important for formulating a more sound privacy sensitive policy. In this paper, by observing a lack of comprehensive enforcement mechanism for purpose, we extend the UCON core model to explicitly support purpose expression and then propose a usage purpose enforcement engine, particularly for ongoing-enforcement, applied in distributed healthcare information system.
Original language | English |
---|---|
Title of host publication | HEALTHINF 2013 - Proceedings of the International Conference on Health Informatics |
Pages | 174-180 |
Number of pages | 7 |
Publication status | Published - 27 May 2013 |
Event | International Conference on Health Informatics, HEALTHINF 2013 - Barcelona, Spain Duration: 11 Feb 2013 → 14 Feb 2013 |
Conference
Conference | International Conference on Health Informatics, HEALTHINF 2013 |
---|---|
Country/Territory | Spain |
City | Barcelona |
Period | 11/02/13 → 14/02/13 |
Keywords
- E-health
- Policy enforcement engine
- Purpose
- UCON (Usage CONtrol)