Abstract
When building cross-organisation data sharing environments in the clinical domain, one is confronted with high security demands. Although at the present time, a broad range of security technology is available, typically not all desired functionality can be easily met. One of these requirements is managing access over dynamically instantiated contexts in collaborative environments. This requirement was encountered during the EU funded projects INTEGRATE and EURECA. This paper presents a solution which enriches XACML with context awareness without changing the policy language itself. Furthermore, it is shown that the presented mechanism (XACML request modification) can also be used for uniformly addressing other security challenges.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Cuggia, M., Besana, P., Glasspool, D.: Comparing semi-automatic systems for recruitment of patients to clinical trials. I. J. Med. Inf. (IJMI) 80(6), 371–388 (2011)
Rüping, S., Anguita, A., Bucur, A., Cirstea, T.C., Jacobs, B., Torge, A.: Improving the implementation of clinical decision support systems. In: EMBC’13, Osaka, Japan, 3–7 July 2013
INTEGRATE: Driving Excellence in Integrative Cancer Research. http://www.fp7-integrate.eu
EURECA: Enabling information re-Use by linking clinical REsearch and Care. http://www.eurecaproject.eu/
Breast International Group (BIG). http://www.breastinternationalgroup.org/
Vdovjak, R., Claerhout, B., Bucur, A.: Bridging the gap between clinical research and care - approaches to semantic interoperability, security & privacy. In: HEALTHINF 2012, pp. 281–286 (2012)
eXtensible Access Control Markup Language (XACML), Version 2.0, February 2005. http://docs.oasis-open.org/xacml/2.0/access_control-xacml-2.0-core-spec-os.pdf
Ciuciu, I., Claerhout, B., Schilders, L., Meersman, R.: Ontology-based matching of security attributes for personal data access in e-health. In: Meersman, R., et al. (eds.) OTM 2011, Part II. LNCS, vol. 7045, pp. 605–616. Springer, Heidelberg (2011)
XACML Profile for Role Based Access Control (ABAC), Draft 01, February 2004. http://docs.oasis-open.org/xacml/cd-xacml-rbac-profile-01.pdf
Acknowledgements
This work is partially funded by the European Commission under the 7th Framework Programme (FP7-ICT-2009-6-270253) and (FP7-ICT-20011-7-288048).
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Claerhout, B., De Schepper, K., Perez-Rey, D., Bucur, A. (2014). Supporting Contextualisation of ABAC Attributes Through a Generic XACML Request Handling Mechanism. In: Fernández-Chimeno, M., et al. Biomedical Engineering Systems and Technologies. BIOSTEC 2013. Communications in Computer and Information Science, vol 452. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-662-44485-6_25
Download citation
DOI: https://doi.org/10.1007/978-3-662-44485-6_25
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-662-44484-9
Online ISBN: 978-3-662-44485-6
eBook Packages: Computer ScienceComputer Science (R0)