通过按需分类电子健康记录进行基于角色的访问控制

Q4 Medicine

International Journal of Electronic Healthcare Pub Date : 2015-09-09 DOI:10.1504/IJEH.2015.071637

B. Tiwari, Abhay Kumar

{"title":"通过按需分类电子健康记录进行基于角色的访问控制","authors":"B. Tiwari, Abhay Kumar","doi":"10.1504/IJEH.2015.071637","DOIUrl":null,"url":null,"abstract":"Electronic health records (EHR) provides convenient method to exchange medical information of patients between different healthcare providers. Access control mechanism in healthcare services characterises authorising users to access EHR records. Role Based Access Control helps to restrict EHRs to users in a certain role. Significant works have been carried out for access control since last one decade but little emphasis has been given to on-demand role based access control. Presented work achieved access control through physical data isolation which is more robust and secure. We propose an algorithm in which selective combination of policies for each user of the EHR database has been defined. We extend well known data mining technique 'classification' to group EHRs with respect to the given role. Algorithm works by taking various roles as class and defined their features as a vector. Here, features are used as a Feature Vector for classification to describe user authority.","PeriodicalId":39775,"journal":{"name":"International Journal of Electronic Healthcare","volume":"8 1 1","pages":"9-24"},"PeriodicalIF":0.0000,"publicationDate":"2015-09-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://sci-hub-pdf.com/10.1504/IJEH.2015.071637","citationCount":"18","resultStr":"{\"title\":\"Role-based access control through on-demand classification of electronic health record\",\"authors\":\"B. Tiwari, Abhay Kumar\",\"doi\":\"10.1504/IJEH.2015.071637\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Electronic health records (EHR) provides convenient method to exchange medical information of patients between different healthcare providers. Access control mechanism in healthcare services characterises authorising users to access EHR records. Role Based Access Control helps to restrict EHRs to users in a certain role. Significant works have been carried out for access control since last one decade but little emphasis has been given to on-demand role based access control. Presented work achieved access control through physical data isolation which is more robust and secure. We propose an algorithm in which selective combination of policies for each user of the EHR database has been defined. We extend well known data mining technique 'classification' to group EHRs with respect to the given role. Algorithm works by taking various roles as class and defined their features as a vector. Here, features are used as a Feature Vector for classification to describe user authority.\",\"PeriodicalId\":39775,\"journal\":{\"name\":\"International Journal of Electronic Healthcare\",\"volume\":\"8 1 1\",\"pages\":\"9-24\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-09-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"https://sci-hub-pdf.com/10.1504/IJEH.2015.071637\",\"citationCount\":\"18\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Journal of Electronic Healthcare\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1504/IJEH.2015.071637\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q4\",\"JCRName\":\"Medicine\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Electronic Healthcare","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1504/IJEH.2015.071637","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"Medicine","Score":null,"Total":0}

引用次数: 18

摘要

电子健康记录(EHR)为不同医疗保健提供者之间交换患者的医疗信息提供了方便的方法。医疗保健服务中的访问控制机制的特点是授权用户访问EHR记录。基于角色的访问控制可以将电子病历限制在某个角色的用户。近十年来，在访问控制方面进行了大量的工作，但很少重视基于按需角色的访问控制。所介绍的工作通过物理数据隔离实现访问控制，这更健壮和安全。我们提出了一种算法，其中为EHR数据库的每个用户定义了有选择的策略组合。我们扩展了众所周知的数据挖掘技术“分类”，根据给定的角色对电子病历进行分组。算法将各种角色作为类，并将其特征定义为向量。在这里，特征被用作分类的特征向量来描述用户权限。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Role-based access control through on-demand classification of electronic health record

Electronic health records (EHR) provides convenient method to exchange medical information of patients between different healthcare providers. Access control mechanism in healthcare services characterises authorising users to access EHR records. Role Based Access Control helps to restrict EHRs to users in a certain role. Significant works have been carried out for access control since last one decade but little emphasis has been given to on-demand role based access control. Presented work achieved access control through physical data isolation which is more robust and secure. We propose an algorithm in which selective combination of policies for each user of the EHR database has been defined. We extend well known data mining technique 'classification' to group EHRs with respect to the given role. Algorithm works by taking various roles as class and defined their features as a vector. Here, features are used as a Feature Vector for classification to describe user authority.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Journal of Electronic Healthcare Medicine-Health Policy

CiteScore

1.00

自引率

0.00%

发文量

期刊介绍： The IJEH is an authoritative, fully-refereed international journal which presents current practice and research in the area of e-healthcare. It is dedicated to design, development, management, implementation, technology, and application issues in e-healthcare.