{"title":"The Tees Confidentiality Model: mechanisms for implementing the sealed envelope.","authors":"Jim Longstaff, Mike Lockyer","doi":"10.1080/14639230500298792","DOIUrl":null,"url":null,"abstract":"<p><p>This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.</p>","PeriodicalId":80069,"journal":{"name":"Medical informatics and the Internet in medicine","volume":"30 2","pages":"157-66"},"PeriodicalIF":0.0000,"publicationDate":"2005-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1080/14639230500298792","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Medical informatics and the Internet in medicine","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1080/14639230500298792","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.
本文提供了能够实现由NHS护理记录服务支持的授权功能的机制。护理记录服务的患者保密模型包括通过将数据放在密封信封中来限制对数据的访问;提供基于合法关系和其他概念的数据访问;以及在特殊或紧急情况下不受进入限制。我们将通过示例非正式地展示如何使用Tees机密模型(一种复杂的授权模型)将Care Records Service授权功能实现到当前建议的级别,如果需要的话,还可以实现到更高级别。讨论的机制包括使用一系列权限类型,称为机密权限类型;根据类型的复杂程度,按照定义的顺序处理保密权限;使用负权限拒绝访问;并为负面权限提供覆盖机制。
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
