Abstract
Authorization models have been developed to prevent unauthorized access to valuable resources such as electronic healthcare records (EHRs). In an applied environment, such as the healthcare domain, there are several types of authorities that generate EHRs and other security parameters via central authority for their users and the attribute authorities. The use of a central authority introduces several challenges in terms of security and privacy due to the increased risk if the central authority is compromised or corrupted. Observing that this research area has not been well addressed to date, we propose and present the first decentralized multi-authority attribute-based access control (DMA-ABAC) model based on the policy model, which enables authorities to independently control their security settings. We present an access control framework for a dynamic cross-domain authorization model that combines Attribute-Based Access Control (ABAC) and Attribute-Based Group Signature (ABGS). This combination aims at providing flexible access control with resistance against reply and third party storage attacks and attribute collusion, and enhanced access control, privacy and selective attributes.
Original language | English |
---|---|
Title of host publication | Proceedings - 2019 18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications/13th IEEE International Conference on Big Data Science and Engineering |
Editors | Liqun Chen, Ryan Ko, Liming Zhu |
Place of Publication | Piscataway NJ USA |
Publisher | IEEE, Institute of Electrical and Electronics Engineers |
Pages | 618-625 |
Number of pages | 8 |
ISBN (Electronic) | 9781728127767 |
ISBN (Print) | 9781728127781 |
DOIs | |
Publication status | Published - 2019 |
Event | IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2019 - Rotorua, New Zealand Duration: 5 Aug 2019 → 8 Aug 2019 Conference number: 18th https://crow.org.nz/TrustCom2019 (Conference website) https://ieeexplore.ieee.org/xpl/conhome/8883860/proceeding (Proceedings) |
Conference
Conference | IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom) 2019 |
---|---|
Abbreviated title | TrustCom 2019 |
Country/Territory | New Zealand |
City | Rotorua |
Period | 5/08/19 → 8/08/19 |
Internet address |
|
Keywords
- Anonymity
- Attribute-based access control
- Cross domain
- Distributed
- Healthcare
- Privacy
- Security