A purpose model and policy enforcement engine for usage control in distributed healthcare information system

Thavy Mony Annanda Rath, Jean-Noël Colin

Research output: Contribution in Book/Catalog/Report/Conference proceedingConference contribution

100 Downloads (Pure)

Abstract

This paper addresses two issues: the purpose model designed for distributed healthcare and the purpose-based usage policy enforcement engine based on our purpose-based UCON (the extended UCON model). UCON has been proposed and applied to support security requirements in different computing environments such as resources sharing in collaborative computing systems and data control in remote users or platforms, but apparently absent in its core model is "purpose", which is important for formulating a more sound privacy sensitive policy. In this paper, by observing a lack of comprehensive enforcement mechanism for purpose, we extend the UCON core model to explicitly support purpose expression and then propose a usage purpose enforcement engine, particularly for ongoing-enforcement, applied in distributed healthcare information system.

Original languageEnglish
Title of host publicationHEALTHINF 2013 - Proceedings of the International Conference on Health Informatics
Pages174-180
Number of pages7
Publication statusPublished - 27 May 2013
EventInternational Conference on Health Informatics, HEALTHINF 2013 - Barcelona, Spain
Duration: 11 Feb 201314 Feb 2013

Conference

ConferenceInternational Conference on Health Informatics, HEALTHINF 2013
CountrySpain
CityBarcelona
Period11/02/1314/02/13

Keywords

  • E-health
  • Policy enforcement engine
  • Purpose
  • UCON (Usage CONtrol)

Fingerprint

Dive into the research topics of 'A purpose model and policy enforcement engine for usage control in distributed healthcare information system'. Together they form a unique fingerprint.

Cite this