Using a process algebraic approach of verifying access control in XML-based healthcare systems

Ji Yeon Lee, Jin Young Choi, Il Gon Kim, Ki Seok Bang

    Research output: Contribution to journalArticlepeer-review


    Healthcare information and its secure management has become an active research topic along with an increase in the usage of XML documents and the importance of access control in maintaining patient records. In this paper, we present a methodology to describe a formal specification for an authorized view of an XML-based healthcare system having a schema-level access control by assigning well-established concurrency semantics to the system. To achieve this goal, we translate the semantics of the schema, query, access control for XML-based health records, and XPath expressions, into a CSP-like process algebra language through an illustrative example. Finally, our experimental results show the possibility to reason about security properties of an XML-based access control model with the support of automated model checking tools, because it provides the formal semantics for access control policies and XML documents with the tree structure.

    Original languageEnglish
    Pages (from-to)107-117
    Number of pages11
    JournalJournal of Research and Practice in Information Technology
    Issue number2-3
    Publication statusPublished - 2014 Aug 1


    • Authorized view
    • CSP
    • Formal specification
    • Health records
    • Process algebra
    • XPath

    ASJC Scopus subject areas

    • Management Information Systems
    • Software
    • Information Systems
    • Hardware and Architecture
    • Computer Networks and Communications


    Dive into the research topics of 'Using a process algebraic approach of verifying access control in XML-based healthcare systems'. Together they form a unique fingerprint.

    Cite this