Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare

Thavy Mony Annanda Rath; Jean-Noël Colin

doi:10.1504/IJSN.2013.055943

Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare

Thavy Mony Annanda Rath, Jean-Noël Colin

Research output: Contribution to journal › Article › peer-review

Abstract

Enforcing the purpose of data usage means to ensure that data are used as it intends for and that excessive usage cannot happen. In general, the enforcement of purpose is a complicated task. The main difficulty is to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of usage purpose enforcement model based on our proposed enforcement structure: pre-, ongoing-, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the pre- and ongoing-enforcement of purpose. Furthermore, we validate our model with a prototype developed in Java.

Original language	English
Pages (from-to)	94-105
Number of pages	12
Journal	International Journal of Security and Networks
Volume	8
Issue number	2
DOIs	https://doi.org/10.1504/IJSN.2013.055943
Publication status	Published - 29 Aug 2013

Keywords

Distributed healthcare
Enforcement model
Privacy
Purpose enforcement
Security

Access to Document

10.1504/IJSN.2013.055943

Cite this

@article{fe158b1ea0ab4be4b7ab03537e0fabd8,

title = "Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare",

abstract = "Enforcing the purpose of data usage means to ensure that data are used as it intends for and that excessive usage cannot happen. In general, the enforcement of purpose is a complicated task. The main difficulty is to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of usage purpose enforcement model based on our proposed enforcement structure: pre-, ongoing-, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the pre- and ongoing-enforcement of purpose. Furthermore, we validate our model with a prototype developed in Java.",

keywords = "Distributed healthcare, Enforcement model, Privacy, Purpose enforcement, Security",

author = "Rath, {Thavy Mony Annanda} and Jean-No{\"e}l Colin",

year = "2013",

month = aug,

day = "29",

doi = "10.1504/IJSN.2013.055943",

language = "English",

volume = "8",

pages = "94--105",

journal = "International Journal of Security and Networks",

issn = "1747-8405",

publisher = "Inderscience Enterprises Ltd.",

number = "2",

}

TY - JOUR

T1 - Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare

AU - Rath, Thavy Mony Annanda

AU - Colin, Jean-Noël

PY - 2013/8/29

Y1 - 2013/8/29

N2 - Enforcing the purpose of data usage means to ensure that data are used as it intends for and that excessive usage cannot happen. In general, the enforcement of purpose is a complicated task. The main difficulty is to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of usage purpose enforcement model based on our proposed enforcement structure: pre-, ongoing-, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the pre- and ongoing-enforcement of purpose. Furthermore, we validate our model with a prototype developed in Java.

AB - Enforcing the purpose of data usage means to ensure that data are used as it intends for and that excessive usage cannot happen. In general, the enforcement of purpose is a complicated task. The main difficulty is to identify the purpose of an agent when it requests to perform an action. In this paper, we discuss the design issue of usage purpose enforcement model based on our proposed enforcement structure: pre-, ongoing-, and post-enforcement. We also propose an enforcement solution for usage control designed for distributed healthcare information system, particularly, the pre- and ongoing-enforcement of purpose. Furthermore, we validate our model with a prototype developed in Java.

KW - Distributed healthcare

KW - Enforcement model

KW - Privacy

KW - Purpose enforcement

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=84882949831&partnerID=8YFLogxK

U2 - 10.1504/IJSN.2013.055943

DO - 10.1504/IJSN.2013.055943

M3 - Article

AN - SCOPUS:84882949831

SN - 1747-8405

VL - 8

SP - 94

EP - 105

JO - International Journal of Security and Networks

JF - International Journal of Security and Networks

IS - 2

ER -

Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Application of DRM scheme to secure nomad confidential data

Cite this

Towards purpose enforcement model for privacyaware usage control policy in distributed healthcare

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Projects

Application of DRM scheme to secure nomad confidential data

Cite this