Developing a Security Protocol for a Distributed Decision Support System in a Healthcare Environment
Developing a Security Protocol for a Distributed Decision Support System in a Healthcare Environment
In this paper, we describe the unique security issues involved in healthcare domains. These have been addressed to the needs of the HealthAgents project. In the proposed approach, several levels of security have been provided in accordance with Software Engineering principles, ethical regulations for healthcare data, as well as the security requirements usually raised from the distributed clinical settings. The result is the production of a secure and maintainable Multi-Agent System that enables secure communication, uniform home site authentication, and customised resource access authorisation. A security policy rule scheme has been designed for agent interaction modelling. This separates the functional and non-functional (security) requirements but let security policy constraints integrate into the running of the agents via a unified role notion. Each user/agent can play a function role only when its assigned social rights roles permit the access to resources of various types and geographical locations, as specified in the function role behaviour. The approach is illustrated using a comprehensive secure access case.
978-1-60558-079-1
673-682
Xiao, Liang
bb4e3fd9-f69e-4bdc-aad8-6eecbe58c8c6
Lewis, Paul
7aa6c6d9-bc69-4e19-b2ac-a6e20558c020
Gibb, Alex
98688a75-a6d1-4ba3-9c6e-927434d47117
2008
Xiao, Liang
bb4e3fd9-f69e-4bdc-aad8-6eecbe58c8c6
Lewis, Paul
7aa6c6d9-bc69-4e19-b2ac-a6e20558c020
Gibb, Alex
98688a75-a6d1-4ba3-9c6e-927434d47117
Xiao, Liang, Lewis, Paul and Gibb, Alex
(2008)
Developing a Security Protocol for a Distributed Decision Support System in a Healthcare Environment.
The 30th International Conference on Software Engineering (ICSE'08), Leipzig, Germany.
.
Record type:
Conference or Workshop Item
(Paper)
Abstract
In this paper, we describe the unique security issues involved in healthcare domains. These have been addressed to the needs of the HealthAgents project. In the proposed approach, several levels of security have been provided in accordance with Software Engineering principles, ethical regulations for healthcare data, as well as the security requirements usually raised from the distributed clinical settings. The result is the production of a secure and maintainable Multi-Agent System that enables secure communication, uniform home site authentication, and customised resource access authorisation. A security policy rule scheme has been designed for agent interaction modelling. This separates the functional and non-functional (security) requirements but let security policy constraints integrate into the running of the agents via a unified role notion. Each user/agent can play a function role only when its assigned social rights roles permit the access to resources of various types and geographical locations, as specified in the function role behaviour. The approach is illustrated using a comprehensive secure access case.
Text
ht11p10-xiao.pdf
- Version of Record
More information
Published date: 2008
Additional Information:
Event Dates: May 2008
Venue - Dates:
The 30th International Conference on Software Engineering (ICSE'08), Leipzig, Germany, 2008-05-01
Organisations:
Web & Internet Science
Identifiers
Local EPrints ID: 265626
URI: http://eprints.soton.ac.uk/id/eprint/265626
ISBN: 978-1-60558-079-1
PURE UUID: 24c47d88-6973-4d0a-af34-67e87210e2e9
Catalogue record
Date deposited: 28 Apr 2008 15:04
Last modified: 14 Mar 2024 08:11
Export record
Contributors
Author:
Liang Xiao
Author:
Paul Lewis
Author:
Alex Gibb
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics