On a Formal and User-friendly Linguistic Approach to Access Control of Electronic Health Data

Andrea Margheri; Massimiliano Masi; Rosario Pugliese; Francesco Tiezzi

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

On a Formal and User-friendly Linguistic Approach to Access Control of Electronic Health Data

Topics: Confidentiality and Data Security; Design and Development Methodologies for Healthcare IT; Electronic Health Records and Standards

In Proceedings of the International Conference on Health Informatics - Volume 0BIOSTEC, 263-268, 2013 , Barcelona, Spain

Authors: Andrea Margheri ¹ ; Massimiliano Masi ² ; Rosario Pugliese ¹ and Francesco Tiezzi ³

Affiliations: ¹ Università di Firenze, Italy ; ² Tiani “Spirit” GmbH, Austria ; ³ IMT Advanced Studies Lucca, Italy

Keyword(s): Data Security, Electronic Health Records, Access Control.

Related Ontology Subjects/Areas/Topics: Biomedical Engineering ; Confidentiality and Data Security ; Design and Development Methodologies for Healthcare IT ; Electronic Health Records and Standards ; Health Information Systems

Abstract: The importance of the exchange of Electronic Health Records (EHRs) between hospitals has been recognized by governments and institutions. Due to the sensitivity of data exchanged, only mature standards and implementations can be chosen to operate. This exchange process is of course under the control of the patient, who decides who has the rights to access her personal healthcare data and who has not, by giving her personal privacy consent. Patients’ privacy consent is regulated by local legislations, which can vary frequently from region to region. The technology implementing such privacy aspects must be highly adaptable, often resulting in complex security scenarios that cannot be easily managed by patients and software designers. To overcome such security problems, we advocate the use of a linguistic approach that relies on languages for expressing policies with solid mathematical foundations. Our approach bases on FACPL, a policy language we have intentionally designed by taking i nspiration from OASIS XACML, the de-facto standard used in all projects covering secure EHRs transmission protected by patients’ privacy consent. FACPL can express policies similar to those expressible by XACML but, differently from XACML, it has an intuitive syntax, a formal semantics and easy to use software tools supporting policy development and enforcement. In this paper, we present the potentialities of our approach and outline ongoing work. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.218.127.141

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Margheri, A.; Masi, M.; Pugliese, R. and Tiezzi, F. (2013). On a Formal and User-friendly Linguistic Approach to Access Control of Electronic Health Data. In Proceedings of the International Conference on Health Informatics (BIOSTEC 2013) - HEALTHINF; ISBN 978-989-8565-37-2; ISSN 2184-4305, SciTePress, pages 263-268. DOI: 10.5220/0004328202630268

@conference{healthinf13,
author={Andrea Margheri. and Massimiliano Masi. and Rosario Pugliese. and Francesco Tiezzi.},
title={On a Formal and User-friendly Linguistic Approach to Access Control of Electronic Health Data},
booktitle={Proceedings of the International Conference on Health Informatics (BIOSTEC 2013) - HEALTHINF},
year={2013},
pages={263-268},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004328202630268},
isbn={978-989-8565-37-2},
issn={2184-4305},
}

TY - CONF

JO - Proceedings of the International Conference on Health Informatics (BIOSTEC 2013) - HEALTHINF
TI - On a Formal and User-friendly Linguistic Approach to Access Control of Electronic Health Data
SN - 978-989-8565-37-2
IS - 2184-4305
AU - Margheri, A.
AU - Masi, M.
AU - Pugliese, R.
AU - Tiezzi, F.
PY - 2013
SP - 263
EP - 268
DO - 10.5220/0004328202630268
PB - SciTePress