Sciweavers

COLCOM
2008
IEEE

Access Control Model for Sharing Composite Electronic Health Records

14 years 7 months ago
Access Control Model for Sharing Composite Electronic Health Records
The adoption of electronically formatted medical records, so called Electronic Health Records (EHRs), has become extremely important in healthcare systems to enable the exchange of medical information among stakeholders. An EHR generally consists of data with different types and sensitivity degrees which must be selectively shared based on the need-to-know principle. Security mechanisms are required to guarantee that only authorized users have access to specific portions of such critical record for legitimate purposes. In this paper, we propose a novel approach for modelling access control scheme for composite EHRs. Our model formulates the semantics and structural composition of an EHR document, from which we introduce a notion of authorized zones of the composite EHR at different granularity levels, taking into consideration of several important criteria such as data types, intended purposes and information sensitivities.
Jing Jin, Gail-Joon Ahn, Michael J. Covington, Xin
Added 29 May 2010
Updated 29 May 2010
Type Conference
Year 2008
Where COLCOM
Authors Jing Jin, Gail-Joon Ahn, Michael J. Covington, Xinwen Zhang
Comments (0)