http://spdp.di.unimi.it/papers/cose2010-healthcare.pdf

Access control for smarter healthcare using policy spaces

It is our great pleasure to welcome you to the 8th ACM Symposium on Access Control Models and Technologies - SACMAT 2003. SACMAT continues with the tradition, first established by the ACM Workshop on Role-Based Access Control, of being the premier forum for presentation of research results and experience reports on leading edge issues of access control, including models, systems, applications, and theory. The mission of the symposium is to share novel access control solutions and identify new directions for future research and development work. SACMAT gives researchers and practitioners a unique opportunity to share their perspectives with others interested in the various aspects of access control.A total of 63 papers were submitted this year from Asia, Canada, Europe, and the United States. The papers in these proceedings were evaluated for their technical contribution, originality and impact to the field of access control and authorization management. By limiting the program to a single panel, and extending the conference a half day, the program committee was able to increase the number of accepted papers from 17 to 23. These papers cover a variety of topics to include, access control and administrative models, access control systems and applications, policy context and specification, and range from the highly theoretical to real world commercial implementations.

Proceedings of the eighth ACM symposium on Access control models and technologies

One truth holds for the healthcare industry - nothing should interfere with the delivery of care. Given this fact, the access control mechanisms used in healthcare to regulate and restrict the disclosure of data are often bypassed. This "break the glass"phenomenon is an established pattern in healthcare organizations and, though quite useful and mandatory in emergency situations, it represents a serious system weakness.

In this paper, we propose an access control solution aimed at a better management of exceptions that occur in healthcare. Our solution is based on the definition of different policy spaces regulating access to patient data and used to balance the rigorous nature of traditional access control systems with the prioritization of care delivery.

http://spdp.di.unimi.it/papers/dbsec08.pdf

Regulating Exceptions in Healthcare Using Policy Spaces

L'evolution des systemes pervasives a ouvert de nouveaux horizons aux systemes d'information classiques qui ont integre des nouvelles technologies et des services qui assurent la transparence d'acces aux resources d'information a n'importe quand, n'importe ou et n'importe comment. En meme temps, cette evolution a releve des nouveaux defis a la securite de donnees et a la modelisation du controle d'acces. Afin de confronter ces challenges, differents travaux de recherche se sont diriges vers l'extension des modeles de controles d'acces (en particulier le modele RBAC) afin de prendre en compte la sensibilite au contexte dans le processus de prise de decision. Mais la liaison d'une decision d'acces aux contraintes contextuelles dynamiques d'un utilisateur mobile va non seulement ajouter plus de complexite au processus de prise de decision mais pourra aussi augmenter les possibilites de refus d'acces. Sachant que l'accessibilite est un element cle dans les systemes pervasifs et prenant en compte l'importance d'assurer l'accessibilite en situations du temps reel, nombreux travaux de recherche ont propose d'appliquer des mecanismes flexibles de controle d'acces avec des solutions parfois extremes qui depassent les frontieres de securite telle que l'option de "Bris-de-Glace". Dans cette these, nous introduisons une solution moderee qui se positionne entre la rigidite des modeles de controle d'acces et la flexibilite qui expose des risques appliquees pendant des situations du temps reel. Notre contribution comprend deux volets : au niveau de conception, nous proposons PS-RBAC - un modele RBAC sensible au contexte et a la situation. Le modele realise des attributions des permissions adaptatives et de solution de rechange a base de prise de decision basee sur la similarite face a une situation importante. A la phase d'execution, nous introduisons PSQRS - un systeme de reecriture des requetes sensible au contexte et a la situation et qui confronte les refus d'acces en reformulant la requete XACML de l'utilisateur et en lui proposant une liste des resources alternatives similaires qu'il peut acceder. L'objectif est de fournir un niveau de securite adaptative qui repond aux besoins de l'utilisateur tout en prenant en compte son role, ses contraintes contextuelles (localisation, reseau, dispositif, etc. ) et sa situation. Notre proposition a ete valide dans trois domaines d'application qui sont riches des contextes pervasifs et des scenarii du temps reel: (i) les Equipes Mobiles Geriatriques, (ii) les systemes avioniques et (iii) les systemes de video surveillance.

Steps towards adaptive situation and context-aware access : a contribution to the extension of access control mechanisms within pervasive information systems

Systems and methods for locating and providing public mobile device charging stations are disclosed. One or more charging stations may be configured to charge a battery of a mobile device. A database may be configured to store location information of the one or more charging stations as well as mobile device location and security credential information of the one or more respective mobile devices. A server communicatively coupled with the one or more charging stations and the database, may be configured to determine a proximity of the one or more charging stations to a location of the mobile device. This determination may be based on the station location information and the mobile device location information. Based on the determined proximity, provide the station location information of the respective one or more charging stations to the mobile device. The charging station further provides photo and/or video surveillance security to verify a user.

System and method for providing photoverification to mobile device charging stations

A system and method for implementing a software emulation environment is provided. In one example, a mobile application can interface with an emulation environment that can be used to test whether the mobile application includes malware that can compromise the security and integrity of an enterprise's computing infrastructure. When the mobile application issues a call for data, a device mimic module can intercept the call and determine if the call includes a call for one or more checkable artifacts that can reveal the existence of the emulation environment. If such a call for data occurs, the device mimic module can provide one or more spoofed checkable artifacts that have been recorded from a real-world mobile device. In this way, the existence of the emulation environment can be concealed so as to allow for a more thorough analysis of a mobile application for potential hidden malware.

System and method for vetting mobile phone software applications

A mobile device charging station configured to analyze, measure and respond to/correct the state of a mobile device. The charging station can employ an embedded cryptographic subsystem that can make use of anti-tamper/tamper evident techniques to protect stored firmware images/cryptographic material.

Hygienic charging station for mobile device security

When an access decision function denies a data access request by a mission participant in a mission-critical situation, the mission often suffers. In this paper, we propose a sharing control mechanism that computes and executes requests that are mission-related to denied requests. We extend the Flexible Authorization Framework (FAF)with predicates and hierarchies that permit us to specify authorization rules over denied requests and mission-specific relationships. We illustrate our techniques using a prototypical information sharing scenario, namely an emergency first-responder scenario.

Redirection policies for mission-based information sharing

Described are methods, systems, and computer-program product embodiments for deriving a model of computation of a cyber-physical system (CPS). In some embodiments, a method includes receiving, from the CPS network, network-events data corresponding to a process performed by the CPS and including network events and associated group IDs. A plurality of events logs for a plurality of selections of group IDs are generated with each events log including a sequence of network events selected from the network events based on the selection of group IDs for that events log. A plurality of directed graphs for the plurality of events logs are generated with each directed graph generated based on the sequence of network events in the events log. A plurality of group IDs can be determined based on a directed graph selected from the plurality of directed graphs based on a complexity score calculated for each directed graph.

Cyber-physical system evaluation

Handle everyday research tasks with reliable, citation-backed results

Your personal Research Agent to handle research tasks with citation-backed results

Popular Tasks used by Researchers

How can I help with your research?

Meet SciSpace

Get more enhanced response by uploading the PDFs you want me to reference.

No relevant PDFs in your library

SciSpace is the AI research assistant for academics. Run systematic literature reviews on 280M+ papers, and write papers with cited sources. Trusted by 1M+ students, PhDs & researchers.

SciSpace | AI for Research

Analyze PDFs

Code & Manuscripts

Funding & Grants

Literature & Patents

Medical & Clinical Data

Systematic Review

Visualize & Present

Web & Data

Build a Google Scholar-like website for your research.

Build a website

Create charts and images for your research

Create a Chart

Write a paper for submission to a journal

Draft a manuscript

Patent Search

Design eye-catching scientific posters in minutes.

Scientific Poster Generation

Systematic Literature Review

One task is running at the moment. Your messages will be shown right after.

Drag and drop or click here to browse

Loved by <highlight>1 million+</highlight> researchers

Extract a list of specific topics and their sources from unstructured text

Topics

Compare and analyze relevant papers that matches with your search

Papers

Get insights from PDFs and bookmarked papers from your library

My library

Recent searches

Try searching for:

Catch AI-generated content in scholarly and non-scholarly content

{ai} Detector

Ai Writer

Get PDF Summaries, highlighted text explanations 

Chat with PDF

Effortlessly create in-text citations and bibliographies in APA and 2,500 other formats

Citation generator

Get explanations, summaries, and answers on academic papers

Ease up your research workflow with {scispace}'s cohort of exciting AI tools

Elevate your academic writing skills and convey your ideas the way you want

Paraphraser

Explore our range of reading and writing tools

Your file is being prepared and should be ready in a few minutes. If it's a large file, it might take a bit longer. You can close this window, and we'll email you the file when it's done.

You have reached a maximum limit of <strong>{limit}</strong> columns in the table. Remove at least <strong>1</strong> column to add or create another one.

David Keppler

Author Tools

Chat about Author

Papers

System and method for vetting mobile phone software applications

Hygienic charging station for mobile device security

Redirection policies for mission-based information sharing

Cyber-physical system evaluation