Title: An access control framework for secured sharing of electronic health records using hierarchy similarity analyser
Authors: Shalini Bhartiya; Deepti Mehrotra
Addresses: Amity School of Engineering and Technology, Amity University, Uttar Pradesh, Sector-125, Noida, UP, India ' Amity School of Engineering and Technology, Amity University, Uttar Pradesh, Sector-125, Noida, UP, India
Abstract: Sharing relevant and authorised health data referred as electronic health records (EHRs) among interoperable e-health environments requires identification and mitigation of security gaps accruing out of these collaborations. Ensuring confidentiality and availability of EHR during transit requires a standard access control framework that can efficiently and securely realise collaborations. Disparity in access policies often result in policy conflicts and rule redundancy. The framework must encompass heterogeneity of workflow and frequently changing demands of health professionals and resolves policy conflicts and reduces rule-redundancy. This paper proposes a framework and its verification for integrating access control policies based on similarities between user and resource hierarchies of healthcare units. The framework comprises of a hierarchical similarity analyser (HSA) that assign a security level to each attribute generated on the similarities obtained. The verification of the framework is performed through access control policy testing (ACPT) developed by National Institute of Standards and Technology (NIST).
Keywords: access control policies; EHRs; electronic health records; HSA; hierarchical similarity analysis; interoperability; healthcare technology; EHR security; EHR sharing; verification; user similarities; resource hierarchies; collaboration.
International Journal of Electronic Healthcare, 2015 Vol.8 No.2/3/4, pp.121 - 141
Received: 14 Feb 2015
Accepted: 15 Jul 2015
Published online: 15 Mar 2016 *