Research output per year
Research output per year
Abstract
Traditional access control mechanisms aim to prevent illegal actions a-priori occurrence, i.e. before granting a request for a document. There are scenarios however
where the security decision can not be made on the fly. For these settings we developed a language and a framework for a-posteriori access control. In this paper we
show how the framework can be used in a practical scenario. In particular, we work
out the example of an Electronic Health Record (EHR) system, we outline the full
architecture needed for audit-based access control and we discuss the requirements
and limitations of this approach concerning the underlying infrastructure and its users.
| Original language | English |
|---|---|
| Place of Publication | Enschede |
| Publisher | Centre for Telematics and Information Technology (CTIT) |
| Number of pages | 16 |
| Publication status | Published - 1 Jul 2006 |
Publication series
| Name | CTIT Technical Report Series |
|---|---|
| Publisher | Centre for Telematics and Information Technology, University of Twente |
| No. | 06-49 |
| ISSN (Print) | 1381-3625 |
Keywords
- SCS-Cybersecurity
- Distributed access control
- Audit
- Accountability
Fingerprint
Dive into the research topics of 'Audit-Based Access Control for Electronic Health Records'. Together they form a unique fingerprint.Research output
- 1 Conference article
-
Audit-Based Access Control for Electronic Health Records
Dekker, M. A. C. & Etalle, S., Sep 2006, In: Electronic notes in theoretical computer science. 168, p. 221-236 15 p.Research output: Contribution to journal › Conference article › Academic › peer-review
Open AccessFile38 Citations (Scopus)51 Downloads (Pure)