Maxwell  Young                                                                                       Homepage:
Location: David R. Cheriton School of Computer Science


This page serves to document the topics of security, privacy, access control and role management in health informatics via the documents and materials I have encountered throughout the summer term of 2007 whilst enrolled in CS 898 Health Informatics taught by Dr. Ian McKillop. I have attempted to provide some structure to these materials through catagorization; however, this organization should not be viewed as a rigid structure since some papers could easily belong to more than one category. Each document is available either via pdf/ps format (the files have been uploaded to this site) and each external website is referenced via a (currently) functioning hyperlink. Commentary accompanies each item listed below, via the `Notes' link. Clicking this link will bring you directly to the anchored text relevant to the paper of interest; reference information is also included. These notes should not be perceived as a replacement for the paper itself; instead they serve to highlight and discuss those topics of interest to me and it is my hope that they will aid other readers in the identification of relevant material. Enjoy!

Papers and Websites on Access Control and Role Management

Introductory Works

Access Control Models: DAC, MAC and RBAC

Access Control Overrides: Exception Mechanisms

Challenges in Implementing Access Control

Issues of Interoperability and Coordination in Access Control

Access Control Over the Internet

Below are links to websites and materials that the interested reader may find useful. Clicking on the link will open a new browser window at the site of interest.

Other Relevant Websites and Materials:

  • CS 898 Twiki Site This site contains resources compiled by members of the class on a variety of topics covered during the term.
  • Lecture Slides My lecture slides on access control and role management.
  • Health Privacy Project This site is dedicated to the prevention of medical privacy violations. The page documenting past security breaches is particularly illuminating.
  • National Institute of Standards and Technology This is the website for the National Institute of Standards and Technology (NIST).
  • National Initiative for Telehealth Project This is the website for the National Initiative for Telehealth (NIFTE) project.
  • Policy and Peer Permission Project This is the website for the Policy and Peer Permission (PPP) project.
  • Ultra-Scan, Corp. This is the website for Ultra-Scan, a manufacturer of finger printing security technology. Their products are used for access control in several hospitals in the US.
  • St. Vincent's Hospital This is the website for St. Vincent's Hospital based in Birmingham, Alabama. This hospital was recently named as one of the top 100 most wired hospitals in part, for their adoption of biometric devices in establishing reliable access control.
Edit | Attach | Watch | Print version | History: r15 < r14 < r13 < r12 < r11 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r15 - 2007-10-05 - MaxwellYoung
This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2024 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback