An attributable role based access control for healthcare. Schwartmann, D. In Proceedings of the International Conference on Computational Science (ICCS), of Lecture Notes in Computer Science, pages 1156-1164, 6, 2004. Springer-Verlag. ![An attributable role based access control for healthcare [link]](https://bibbase.org/img/filetypes/link.svg "link")
Website abstract bibtex Role Based Access Control (RBAC) has the potential for reducing the complexity and total cost of security administration. Even though RBAC implementations aim on administrating large scale systems, they have a shortcoming in common. They do not allow to define attributable roles and permissions. But such roles are very common in our thoughts and language. When we say attending physician of patient x, we mean a role attending physician with all associated permissions to fulfill the treatment of patient x. Because the resulting permissions only differ in the restriction to a particular patient, it is desirable that attributes like patient x are used in roles and permissions to restrict the rights to access only data related to that patient. This paper shows how attributes can be applied to RBAC, in order to reduce the total number of role- and permission-objects in security administration.
@inProceedings{
title = {An attributable role based access control for healthcare},
type = {inProceedings},
year = {2004},
identifiers = {[object Object]},
keywords = {access-control,health-it,healthcare,security,summarized},
pages = {1156-1164},
websites = {http://dx.doi.org/10.1007/b98005},
month = {6},
publisher = {Springer-Verlag},
series = {Lecture Notes in Computer Science},
id = {af9d79a3-0e24-3602-89f8-e86cef36f8f1},
created = {2018-07-12T21:31:42.503Z},
file_attached = {false},
profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},
group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},
last_modified = {2018-07-12T21:31:42.503Z},
read = {false},
starred = {false},
authored = {false},
confirmed = {true},
hidden = {false},
citation_key = {schwartmann:iccs2004},
source_type = {inproceedings},
private_publication = {false},
abstract = {Role Based Access Control (RBAC) has the potential for reducing the complexity and total cost of security administration. Even though RBAC implementations aim on administrating large scale systems, they have a shortcoming in common. They do not allow to define attributable roles and permissions. But such roles are very common in our thoughts and language. When we say attending physician of patient x, we mean a role attending physician with all associated permissions to fulfill the treatment of patient x. Because the resulting permissions only differ in the restriction to a particular patient, it is desirable that attributes like patient x are used in roles and permissions to restrict the rights to access only data related to that patient. This paper shows how attributes can be applied to RBAC, in order to reduce the total number of role- and permission-objects in security administration.},
bibtype = {inProceedings},
author = {Schwartmann, Dirk},
booktitle = {Proceedings of the International Conference on Computational Science (ICCS)}
}
Downloads: 0
{"_id":"juBDDL3xfd4cStr9A","bibbaseid":"schwartmann-anattributablerolebasedaccesscontrolforhealthcare-2004","downloads":0,"creationDate":"2019-02-15T15:14:59.700Z","title":"An attributable role based access control for healthcare","author_short":["Schwartmann, D."],"year":2004,"bibtype":"inProceedings","biburl":null,"bibdata":{"title":"An attributable role based access control for healthcare","type":"inProceedings","year":"2004","identifiers":"[object Object]","keywords":"access-control,health-it,healthcare,security,summarized","pages":"1156-1164","websites":"http://dx.doi.org/10.1007/b98005","month":"6","publisher":"Springer-Verlag","series":"Lecture Notes in Computer Science","id":"af9d79a3-0e24-3602-89f8-e86cef36f8f1","created":"2018-07-12T21:31:42.503Z","file_attached":false,"profile_id":"f954d000-ce94-3da6-bd26-b983145a920f","group_id":"b0b145a3-980e-3ad7-a16f-c93918c606ed","last_modified":"2018-07-12T21:31:42.503Z","read":false,"starred":false,"authored":false,"confirmed":"true","hidden":false,"citation_key":"schwartmann:iccs2004","source_type":"inproceedings","private_publication":false,"abstract":"Role Based Access Control (RBAC) has the potential for reducing the complexity and total cost of security administration. Even though RBAC implementations aim on administrating large scale systems, they have a shortcoming in common. They do not allow to define attributable roles and permissions. But such roles are very common in our thoughts and language. When we say attending physician of patient x, we mean a role attending physician with all associated permissions to fulfill the treatment of patient x. Because the resulting permissions only differ in the restriction to a particular patient, it is desirable that attributes like patient x are used in roles and permissions to restrict the rights to access only data related to that patient. This paper shows how attributes can be applied to RBAC, in order to reduce the total number of role- and permission-objects in security administration.","bibtype":"inProceedings","author":"Schwartmann, Dirk","booktitle":"Proceedings of the International Conference on Computational Science (ICCS)","bibtex":"@inProceedings{\n title = {An attributable role based access control for healthcare},\n type = {inProceedings},\n year = {2004},\n identifiers = {[object Object]},\n keywords = {access-control,health-it,healthcare,security,summarized},\n pages = {1156-1164},\n websites = {http://dx.doi.org/10.1007/b98005},\n month = {6},\n publisher = {Springer-Verlag},\n series = {Lecture Notes in Computer Science},\n id = {af9d79a3-0e24-3602-89f8-e86cef36f8f1},\n created = {2018-07-12T21:31:42.503Z},\n file_attached = {false},\n profile_id = {f954d000-ce94-3da6-bd26-b983145a920f},\n group_id = {b0b145a3-980e-3ad7-a16f-c93918c606ed},\n last_modified = {2018-07-12T21:31:42.503Z},\n read = {false},\n starred = {false},\n authored = {false},\n confirmed = {true},\n hidden = {false},\n citation_key = {schwartmann:iccs2004},\n source_type = {inproceedings},\n private_publication = {false},\n abstract = {Role Based Access Control (RBAC) has the potential for reducing the complexity and total cost of security administration. Even though RBAC implementations aim on administrating large scale systems, they have a shortcoming in common. They do not allow to define attributable roles and permissions. But such roles are very common in our thoughts and language. When we say attending physician of patient x, we mean a role attending physician with all associated permissions to fulfill the treatment of patient x. Because the resulting permissions only differ in the restriction to a particular patient, it is desirable that attributes like patient x are used in roles and permissions to restrict the rights to access only data related to that patient. This paper shows how attributes can be applied to RBAC, in order to reduce the total number of role- and permission-objects in security administration.},\n bibtype = {inProceedings},\n author = {Schwartmann, Dirk},\n booktitle = {Proceedings of the International Conference on Computational Science (ICCS)}\n}","author_short":["Schwartmann, D."],"urls":{"Website":"http://dx.doi.org/10.1007/b98005"},"bibbaseid":"schwartmann-anattributablerolebasedaccesscontrolforhealthcare-2004","role":"author","keyword":["access-control","health-it","healthcare","security","summarized"],"downloads":0},"search_terms":["attributable","role","based","access","control","healthcare","schwartmann"],"keywords":["access-control","health-it","healthcare","security","summarized"],"authorIDs":[]}