Abstract
One truth holds for the healthcare industry - nothing should interfere with the delivery of care. Given this fact, the access control mechanisms used in healthcare to regulate and restrict the disclosure of data are often bypassed. This "break the glass" phenomenon is an established pattern in healthcare organizations and, though quite useful and mandatory in emergency situations, it represents a serious system weakness. In this paper, we propose an access control solution aimed at a better management of exceptions that occur in healthcare. Our solution is based on the definition of different policy spaces regulating access to patient data and used to balance the rigorous nature of traditional access control systems with the prioritization of care delivery. © 2008 Springer-Verlag Berlin Heidelberg.
Cite
CITATION STYLE
Ardagna, C. A., De Capitani Di Vimercati, S., Grandison, T., Jajodia, S., & Samarati, P. (2008). Regulating exceptions in healthcare using policy spaces. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5094 LNCS, pp. 254–267). https://doi.org/10.1007/978-3-540-70567-3_20
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
