| Reference : Comparing and Integrating Break-the-Glass and Delegation in Role-based Access Control... |
| Scientific congresses, symposiums and conference proceedings : Paper published in a book | |||
| Engineering, computing & technology : Computer science | |||
| http://hdl.handle.net/10993/23568 | |||
| Comparing and Integrating Break-the-Glass and Delegation in Role-based Access Control for Healthcare | |
| English | |
| Ferreira, Ana [CINTESIS - Centre for Health Technologies and Services Research > Faculty of Medicine, University of Porto] | |
Lenzini, Gabriele  [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >] | |
| 2016 | |
| Proc. of the nd Int. Conference on International Conference in Information Systems Security and Privacy (ICISSP) | |
| Springer | |
| Yes | |
| No | |
| International | |
| Int. Conference on International Conference in Information Systems Security and Privacy (ICISSP) | |
| 18-22 February 2016 | |
| INSTICC | |
| Rome | |
| Italy | |
| [en] RBAC in Healthcare ; Break The Glass and Delegation ; Access Control | |
| [en] In healthcare security, Role-based Access Control (RBAC) should be flexible and include capabilities such
as Break-the-Glass and Delegation. The former is useful in emergencies to overcome otherwise a denial of access, the latter to transfer rights temporarily, for example, to substitute doctors. Current research studies these policies separately, but it is unclear whether they are different and independent capabilities. Motivated to look into this matter, we present a formal characterization of Break-the-Glass andDelegation in the RBAC model and we inquire on how these two policies relate. After giving arguments in favour of keeping them apart as different policies, we propose an RBAC model that includes them | |
| Researchers | |
| http://hdl.handle.net/10993/23568 |
| File(s) associated to this reference | ||||||||||||||
|
Fulltext file(s):
| ||||||||||||||
All documents in ORBilu are protected by a user license.
