Activity-based access control model to hospital information

Le Xuan Hung; Sungyoung Lee; Young Koo Lee; Heejo Lee

doi:10.1109/RTCSA.2007.18

Activity-based access control model to hospital information

Le Xuan Hung, Sungyoung Lee, Young Koo Lee, Heejo Lee

Department of Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

10 Citations (Scopus)

Abstract

Hospital work is characterized by the need to manage multiple activities simultaneously, constant local mobility, frequently interruptions, and intense collaboration and communication. Hospital employees must handle a large amount of data that is often tied to specific work activities. This calls for a proper access control model. In this paper, we propose a novel approach, Activity-based access Control Model (ACM). Unlike conventional approaches which exploit user identity/role information, ACM leverages user's activities to determine the access permissions for that user. In ACM, a user is assigned to perform a number of actions if s/he poses a set of satisfactory attributes. Access permissions to hospital information are granted according to user's actions. By doing this, ACM contributes a number of advantages over conventional models: (I) facilitates user's work; (2) reduces complexity and cost of access management. Though the design of ACMfirst aims to support clinical works in hospitals, it can be applied in other activity-centered environments.

Original language	English
Title of host publication	Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007
Pages	488-493
Number of pages	6
DOIs	https://doi.org/10.1109/RTCSA.2007.18
Publication status	Published - 2007
Event	4296821 - Daegu, Korea, Republic of Duration: 2007 Aug 21 → 2007 Aug 24

Publication series

Name	Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007

Other

Other	4296821
Country/Territory	Korea, Republic of
City	Daegu
Period	07/8/21 → 07/8/24

ASJC Scopus subject areas

Computer Science Applications
Control and Systems Engineering
Electrical and Electronic Engineering

Access to Document

10.1109/RTCSA.2007.18

Cite this

Hung, L. X., Lee, S., Lee, Y. K., & Lee, H. (2007). Activity-based access control model to hospital information. In Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007 (pp. 488-493). [4296888] (Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007). https://doi.org/10.1109/RTCSA.2007.18

Activity-based access control model to hospital information. / Hung, Le Xuan; Lee, Sungyoung; Lee, Young Koo et al.
Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007. 2007. p. 488-493 4296888 (Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hung, LX, Lee, S, Lee, YK & Lee, H 2007, Activity-based access control model to hospital information. in Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007., 4296888, Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007, pp. 488-493, 4296821, Daegu, Korea, Republic of, 07/8/21. https://doi.org/10.1109/RTCSA.2007.18

Hung LX, Lee S, Lee YK, Lee H. Activity-based access control model to hospital information. In Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007. 2007. p. 488-493. 4296888. (Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007). doi: 10.1109/RTCSA.2007.18

Hung, Le Xuan ; Lee, Sungyoung ; Lee, Young Koo et al. / Activity-based access control model to hospital information. Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007. 2007. pp. 488-493 (Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007).

@inproceedings{01be12a0d0a44fb7806b2087ce362be5,

title = "Activity-based access control model to hospital information",

abstract = "Hospital work is characterized by the need to manage multiple activities simultaneously, constant local mobility, frequently interruptions, and intense collaboration and communication. Hospital employees must handle a large amount of data that is often tied to specific work activities. This calls for a proper access control model. In this paper, we propose a novel approach, Activity-based access Control Model (ACM). Unlike conventional approaches which exploit user identity/role information, ACM leverages user's activities to determine the access permissions for that user. In ACM, a user is assigned to perform a number of actions if s/he poses a set of satisfactory attributes. Access permissions to hospital information are granted according to user's actions. By doing this, ACM contributes a number of advantages over conventional models: (I) facilitates user's work; (2) reduces complexity and cost of access management. Though the design of ACMfirst aims to support clinical works in hospitals, it can be applied in other activity-centered environments.",

author = "Hung, {Le Xuan} and Sungyoung Lee and Lee, {Young Koo} and Heejo Lee",

year = "2007",

doi = "10.1109/RTCSA.2007.18",

language = "English",

isbn = "0769529755",

series = "Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007",

pages = "488--493",

booktitle = "Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007",

note = "4296821 ; Conference date: 21-08-2007 Through 24-08-2007",

}

TY - GEN

T1 - Activity-based access control model to hospital information

AU - Hung, Le Xuan

AU - Lee, Sungyoung

AU - Lee, Young Koo

AU - Lee, Heejo

PY - 2007

Y1 - 2007

N2 - Hospital work is characterized by the need to manage multiple activities simultaneously, constant local mobility, frequently interruptions, and intense collaboration and communication. Hospital employees must handle a large amount of data that is often tied to specific work activities. This calls for a proper access control model. In this paper, we propose a novel approach, Activity-based access Control Model (ACM). Unlike conventional approaches which exploit user identity/role information, ACM leverages user's activities to determine the access permissions for that user. In ACM, a user is assigned to perform a number of actions if s/he poses a set of satisfactory attributes. Access permissions to hospital information are granted according to user's actions. By doing this, ACM contributes a number of advantages over conventional models: (I) facilitates user's work; (2) reduces complexity and cost of access management. Though the design of ACMfirst aims to support clinical works in hospitals, it can be applied in other activity-centered environments.

AB - Hospital work is characterized by the need to manage multiple activities simultaneously, constant local mobility, frequently interruptions, and intense collaboration and communication. Hospital employees must handle a large amount of data that is often tied to specific work activities. This calls for a proper access control model. In this paper, we propose a novel approach, Activity-based access Control Model (ACM). Unlike conventional approaches which exploit user identity/role information, ACM leverages user's activities to determine the access permissions for that user. In ACM, a user is assigned to perform a number of actions if s/he poses a set of satisfactory attributes. Access permissions to hospital information are granted according to user's actions. By doing this, ACM contributes a number of advantages over conventional models: (I) facilitates user's work; (2) reduces complexity and cost of access management. Though the design of ACMfirst aims to support clinical works in hospitals, it can be applied in other activity-centered environments.

UR - http://www.scopus.com/inward/record.url?scp=46449110897&partnerID=8YFLogxK

U2 - 10.1109/RTCSA.2007.18

DO - 10.1109/RTCSA.2007.18

M3 - Conference contribution

AN - SCOPUS:46449110897

SN - 0769529755

SN - 9780769529752

T3 - Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007

SP - 488

EP - 493

BT - Proceedings - 13th IEEE International Conference on Embedded and Real-Time Computing Systems and Applications, RTCSA 2007

T2 - 4296821

Y2 - 21 August 2007 through 24 August 2007

ER -

Activity-based access control model to hospital information

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this