论文信息 - User authentication algorithm with role-based access control for electronic health systems to prevent abuse of patient privacy

User authentication algorithm with role-based access control for electronic health systems to prevent abuse of patient privacy

The results of the change from conventional paper-based health records to Electronic Health Records (EHRs) have had an effect on both healthcare professionals and patients. On the one hand, the electronic health system offers huge benefits to patients and health professionals. On the other hand, it poses new privacy and security risks to users of EHRs. Healthcare professionals need to see the patients' health records as much as possible to make decisions in terms of treating the patient. However, the patient needs to share only relevant health records with healthcare professionals. The concerns with regard to using e-health records relate to security and patient privacy. In this paper, the authors propose a user authentication algorithm and role based access control to support patient privacy in terms of electronic health systems.

Pinyaphat Tasatanattakool | Chian Techapanupreeda

[1] Renato Iannella,et al. Accountable-eHealth Systems: The Next Step Forward for Privacy , 2012 .

[2] Renato Iannella,et al. Privacy oriented access control for electronic health records , 2012, WWW 2012.

[3] Tony Sahama,et al. Designing an information accountability framework for eHealth , 2013 .

[4] Chian Techapanupreeda,et al. An accountability model for Internet transactions , 2015, 2015 International Conference on Information Networking (ICOIN).

[5] Daisuke Mashima,et al. Enhancing accountability of electronic health record usage via patient-centric monitoring , 2012, IHI '12.

[6] Cas J. F. Cremers,et al. The Scyther Tool: Verification, Falsification, and Analysis of Security Protocols , 2008, CAV.

[7] Yahaya Abd Rahim,et al. Pseudonmization Techniques for Privacy Study with Clinical Data , 2012 .

[8] Renato Iannella,et al. An information accountability framework for shared eHealth policies , 2012, WWW 2012.

[9] Daisuke Mashima,et al. Enabling Robust Information Accountability in E-healthcare Systems , 2012, HealthSec.

[10] Ravi S. Sandhu,et al. Role-Based Access Control , 1998, Adv. Comput..