Sariyar, Murat; Holm, Jürgen (2022). Embedding Risk-Based Anonymization into Data Access Control for Providing Individual-Level Health Data in a Secure Way Studies in Health Technology and Informatics, 289, pp. 443-446. IOS Press 10.3233/SHTI210953
|
Text
SHTI-289-SHTI210953.pdf - Published Version Available under License Creative Commons: Attribution-Noncommercial (CC-BY-NC). Download (139kB) | Preview |
Especially in biomedical research, individual-level data must be protected due to the sensitivity of the data that is associated with patients. The broad goal of scientific data re-use is to allow many researchers to derive new hypotheses and insights from the data while preserving privacy. Data usage control (DUC) as an attribute-based access mechanism promises to overcome the limitations of traditional access control models achieving that goal. Park and Sandhu provided the usage control (UCON) model as an instance of DUC, which defines policies that evaluate certain attributes. Here, we present an UCON-based architecture, which is augmented with risk-based anonymization as provided by the R package sdcMicro and an extensible Access Control Markup Language (XACML) environment with a core policy decision point as implemented by authzforce.
Item Type: |
Journal Article (Original Article) |
|---|---|
Division/Institute: |
School of Engineering and Computer Science > Institut für Medizininformatik I4MI School of Engineering and Computer Science |
Name: |
Sariyar, Murat and Holm, Jürgen |
Subjects: |
Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
ISSN: |
1879-8365 |
ISBN: |
9781643682501 |
Series: |
Studies in Health Technology and Informatics |
Publisher: |
IOS Press |
Language: |
English |
Submitter: |
Murat Sariyar |
Date Deposited: |
20 Dec 2022 15:30 |
Last Modified: |
15 Jan 2024 15:24 |
Publisher DOI: |
10.3233/SHTI210953 |
ARBOR DOI: |
10.24451/arbor.18473 |
URI: |
https://arbor.bfh.ch/id/eprint/18473 |
Actions (login required)
 |
View Item |