Projects per year
Purpose of access is one of the core concepts in privacy which considers the data user's intent as a factor in making access control decisions and enforcement of purpose is required to ensure that data is used as what it intends for. In general, the enforcement of purpose is a complicated task. The main difficulty is how to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of purpose enforcement based on our proposed (defined) enforcement structure: pre-enforcement, ongoing-enforcement, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the pre-enforcement of purpose (the validation of claimed purpose at the initial state before data is granted access).
|Title of host publication||2013 IEEE 10th Consumer Communications and Networking Conference, CCNC 2013|
|Number of pages||6|
|Publication status||Published - 15 Apr 2013|
|Event||2013 IEEE 10th Consumer Communications and Networking Conference, CCNC 2013 - Las Vegas, United States|
Duration: 11 Jan 2013 → 14 Jan 2013
|Conference||2013 IEEE 10th Consumer Communications and Networking Conference, CCNC 2013|
|Period||11/01/13 → 14/01/13|
- distributed healthcare
- purpose enforcement
- 1 Finished
COLIN, J. & RATH, T. M. A.
1/09/10 → 31/08/12