Abstract | ||
---|---|---|
In this paper, we present an enhanced use of RBAC features in articulating a security policy for access control in medical database systems. The main advantage of this implementation is that it supports both MAC and DAC features at the same time; a feature that has been proved to be necessary in healthcare environments. The eMEDAC security policy that results from the above implementation provides an enhanced redefinition of a number of mechanisms of the already known MEDAC security policy. The concept of hyper node hierarchies is proposed for deriving totally ordered security levels while preserving the role hierarchy levels required satisfying particular administration needs. Finally, a demonstration example is given based on the pilot implementation of the proposed security policy in a major Greek hospital. The advantages offered are related to the efficiency of access control, the flexibility and decentralisation of administration, and the storage savings. |
Year | Venue | Keywords |
---|---|---|
1999 | DBSec | mandatory features,role-based access control,database system,security policy,access control,satisfiability,role based access control,total order |
Field | DocType | Volume |
Decentralization,Computer access control,Computer security,Role-based access control,Discretionary access control,Access control,Role hierarchy,Security policy,Hierarchy,Business | Conference | 43 |
ISSN | ISBN | Citations |
1571-5736 | 0-7923-7848-2 | 4 |
PageRank | References | Authors |
1.24 | 9 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Ioannis Mavridis | 1 | 240 | 27.01 |
George Pangalos | 2 | 215 | 23.63 |
Marie Khair | 3 | 11 | 3.15 |