Multi-level privacy-preserving access control as a service for personal healthcare monitoring

Usama Salama; Lina Yao; Xianzhi Wang; Hye Young Paik; Amin Beheshti

doi:10.1109/ICWS.2017.111

Multi-level privacy-preserving access control as a service for personal healthcare monitoring

Usama Salama, Lina Yao, Xianzhi Wang, Hye Young Paik, Amin Beheshti

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

20 Citations (Scopus)

Abstract

The Internet of Things (IoT) changes many sectors of our lives. In the healthcare domain, IoT presents as mobile medical applications over various sensors that update healthcare professionals on patients' health information. However, IoT-based healthcare systems also face major challenges in protecting patients' privacy via an effective access control system. This paper presents an ambient home solution framework for privacy-preserving monitoring of patients' health status. We focus on two major points: 1) how to use the data collected from ambient and biometric sensors, to perform the high-level task of activity recognition, and 2) how to secure the collected healthcare data via effective access control. We achieve multi-level access control by using Public Key Infrastructure (PKI) for authentication and Attribute-Based Access Control (ABAC) for authorisation. Our access control system regulates access to healthcare data by classification over healthcare professionals and data. Our system provides guidelines to define data classes and healthcare professional groups and specifies security policies to control access to the data classes. The system is flexible and can incorporate more policy rules, professionals, and data classes.

Original language	English
Title of host publication	Proceedings - 2017 IEEE 24th International Conference on Web Services
Subtitle of host publication	ICWS 2017
Editors	Ilkay Altintas, Shiping Chen
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	878-881
Number of pages	4
ISBN (Electronic)	9781538607527
DOIs	https://doi.org/10.1109/ICWS.2017.111
Publication status	Published - 7 Sept 2017
Externally published	Yes
Event	24th IEEE International Conference on Web Services, ICWS 2017 - Honolulu, United States Duration: 25 Jun 2017 → 30 Jun 2017

Conference

Conference	24th IEEE International Conference on Web Services, ICWS 2017
Country/Territory	United States
City	Honolulu
Period	25/06/17 → 30/06/17

Keywords

Access control
ambient assisted living
authentication
Internet of Things
multi-level access control

Access to Document

10.1109/ICWS.2017.111

Cite this

Salama, U., Yao, L., Wang, X., Paik, H. Y., & Beheshti, A. (2017). Multi-level privacy-preserving access control as a service for personal healthcare monitoring. In I. Altintas, & S. Chen (Eds.), Proceedings - 2017 IEEE 24th International Conference on Web Services: ICWS 2017 (pp. 878-881). Article 8029854 Institute of Electrical and Electronics Engineers (IEEE). https://doi.org/10.1109/ICWS.2017.111

@inproceedings{08fa857dacd8482382d687e2c441ccb6,

title = "Multi-level privacy-preserving access control as a service for personal healthcare monitoring",

abstract = "The Internet of Things (IoT) changes many sectors of our lives. In the healthcare domain, IoT presents as mobile medical applications over various sensors that update healthcare professionals on patients' health information. However, IoT-based healthcare systems also face major challenges in protecting patients' privacy via an effective access control system. This paper presents an ambient home solution framework for privacy-preserving monitoring of patients' health status. We focus on two major points: 1) how to use the data collected from ambient and biometric sensors, to perform the high-level task of activity recognition, and 2) how to secure the collected healthcare data via effective access control. We achieve multi-level access control by using Public Key Infrastructure (PKI) for authentication and Attribute-Based Access Control (ABAC) for authorisation. Our access control system regulates access to healthcare data by classification over healthcare professionals and data. Our system provides guidelines to define data classes and healthcare professional groups and specifies security policies to control access to the data classes. The system is flexible and can incorporate more policy rules, professionals, and data classes.",

keywords = "Access control, ambient assisted living, authentication, Internet of Things, multi-level access control",

author = "Usama Salama and Lina Yao and Xianzhi Wang and Paik, {Hye Young} and Amin Beheshti",

year = "2017",

month = sep,

day = "7",

doi = "10.1109/ICWS.2017.111",

language = "English",

pages = "878--881",

editor = "Ilkay Altintas and Shiping Chen",

booktitle = "Proceedings - 2017 IEEE 24th International Conference on Web Services",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

note = "24th IEEE International Conference on Web Services, ICWS 2017 ; Conference date: 25-06-2017 Through 30-06-2017",

}

Salama, U, Yao, L, Wang, X, Paik, HY & Beheshti, A 2017, Multi-level privacy-preserving access control as a service for personal healthcare monitoring. in I Altintas & S Chen (eds), Proceedings - 2017 IEEE 24th International Conference on Web Services: ICWS 2017., 8029854, Institute of Electrical and Electronics Engineers (IEEE), pp. 878-881, 24th IEEE International Conference on Web Services, ICWS 2017, Honolulu, United States, 25/06/17. https://doi.org/10.1109/ICWS.2017.111

Multi-level privacy-preserving access control as a service for personal healthcare monitoring. / Salama, Usama; Yao, Lina; Wang, Xianzhi et al.
Proceedings - 2017 IEEE 24th International Conference on Web Services: ICWS 2017. ed. / Ilkay Altintas; Shiping Chen. Institute of Electrical and Electronics Engineers (IEEE), 2017. p. 878-881 8029854.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Multi-level privacy-preserving access control as a service for personal healthcare monitoring

AU - Salama, Usama

AU - Yao, Lina

AU - Wang, Xianzhi

AU - Paik, Hye Young

AU - Beheshti, Amin

PY - 2017/9/7

Y1 - 2017/9/7

N2 - The Internet of Things (IoT) changes many sectors of our lives. In the healthcare domain, IoT presents as mobile medical applications over various sensors that update healthcare professionals on patients' health information. However, IoT-based healthcare systems also face major challenges in protecting patients' privacy via an effective access control system. This paper presents an ambient home solution framework for privacy-preserving monitoring of patients' health status. We focus on two major points: 1) how to use the data collected from ambient and biometric sensors, to perform the high-level task of activity recognition, and 2) how to secure the collected healthcare data via effective access control. We achieve multi-level access control by using Public Key Infrastructure (PKI) for authentication and Attribute-Based Access Control (ABAC) for authorisation. Our access control system regulates access to healthcare data by classification over healthcare professionals and data. Our system provides guidelines to define data classes and healthcare professional groups and specifies security policies to control access to the data classes. The system is flexible and can incorporate more policy rules, professionals, and data classes.

AB - The Internet of Things (IoT) changes many sectors of our lives. In the healthcare domain, IoT presents as mobile medical applications over various sensors that update healthcare professionals on patients' health information. However, IoT-based healthcare systems also face major challenges in protecting patients' privacy via an effective access control system. This paper presents an ambient home solution framework for privacy-preserving monitoring of patients' health status. We focus on two major points: 1) how to use the data collected from ambient and biometric sensors, to perform the high-level task of activity recognition, and 2) how to secure the collected healthcare data via effective access control. We achieve multi-level access control by using Public Key Infrastructure (PKI) for authentication and Attribute-Based Access Control (ABAC) for authorisation. Our access control system regulates access to healthcare data by classification over healthcare professionals and data. Our system provides guidelines to define data classes and healthcare professional groups and specifies security policies to control access to the data classes. The system is flexible and can incorporate more policy rules, professionals, and data classes.

KW - Access control

KW - ambient assisted living

KW - authentication

KW - Internet of Things

KW - multi-level access control

UR - http://www.scopus.com/inward/record.url?scp=85032367546&partnerID=8YFLogxK

U2 - 10.1109/ICWS.2017.111

DO - 10.1109/ICWS.2017.111

M3 - Conference proceeding contribution

AN - SCOPUS:85032367546

SP - 878

EP - 881

BT - Proceedings - 2017 IEEE 24th International Conference on Web Services

A2 - Altintas, Ilkay

A2 - Chen, Shiping

PB - Institute of Electrical and Electronics Engineers (IEEE)

T2 - 24th IEEE International Conference on Web Services, ICWS 2017

Y2 - 25 June 2017 through 30 June 2017

ER -

Multi-level privacy-preserving access control as a service for personal healthcare monitoring

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this