Alternative Approaches for Supporting Lattice-based Access Control (LBAC) in the Fast Healthcare Interoperability Resources (FHIR) Standard

Steven Demurjian; Thomas Agresta; Eugene Sanzi; John DeStefano

doi:10.5220/0010150800930104

Alternative Approaches for Supporting Lattice-based Access Control (LBAC) in the Fast Healthcare Interoperability Resources (FHIR) Standard

Steven Demurjian, Thomas Agresta, Eugene Sanzi, John DeStefano

2020

Abstract

A major challenge in the healthcare industry is the selective availability, at a fine-grained level of detail, of a patient’s data to the various clinicians, nurses, specialists, home health aides, family members, etc. where the decision of who can see which information at which times is controlled by a patient. The information includes: contact and demographics, current conditions, medications, test results, past medical history, history of substance abuse and treatment, mental health information, sexual health information, records relating to domestic violence, reproductive health records, and genetic information. To control sensitivity, multi-level security (MLS) using lattice-based access control (LBAC) can be used to extend the traditional linear sensitivity levels of mandatory access control with the ability to define a complex lattice of sensitivity categorizations suitable for the wide variety of the aforementioned information types. This paper applies and extends our prior work on multi-level security for healthcare using LBAC by exploring alternative approaches to integrate this approach into the Fast Healthcare Interoperability Resources (FHIR) standard at the specification level of the standard.

Download

Paper Citation

in Harvard Style

Demurjian S., Agresta T., Sanzi E. and DeStefano J. (2020). Alternative Approaches for Supporting Lattice-based Access Control (LBAC) in the Fast Healthcare Interoperability Resources (FHIR) Standard.In Proceedings of the 16th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-989-758-478-7, pages 93-104. DOI: 10.5220/0010150800930104

in Bibtex Style

@conference{webist20,
author={Steven Demurjian and Thomas Agresta and Eugene Sanzi and John DeStefano},
title={Alternative Approaches for Supporting Lattice-based Access Control (LBAC) in the Fast Healthcare Interoperability Resources (FHIR) Standard},
booktitle={Proceedings of the 16th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2020},
pages={93-104},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010150800930104},
isbn={978-989-758-478-7},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 16th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - Alternative Approaches for Supporting Lattice-based Access Control (LBAC) in the Fast Healthcare Interoperability Resources (FHIR) Standard
SN - 978-989-758-478-7
AU - Demurjian S.
AU - Agresta T.
AU - Sanzi E.
AU - DeStefano J.
PY - 2020
SP - 93
EP - 104
DO - 10.5220/0010150800930104