Skip to main content

Advertisement

SpringerLink
Log in

A Parser to Support the Definition of Access Control Policies and Rules Using Natural Languages

  • Patient Facing Systems
  • Published:
Journal of Medical Systems Aims and scope Submit manuscript

Abstract

As a consequence of the epidemiological transition towards non-communicable diseases, integrated care approaches are required, not solely focused on medical purposes, but also on a range of essential activities for the maintenance of the individuals’ quality of life. In order to allow the exchange of information, these integrated approaches might be supported by digital platforms, which need to provide trustful environments and to guarantee the integrity of the information exchanged. Therefore, together with mechanisms such as authentication, logging or auditing, the definition of access control policies assumes a paramount importance. This article focuses on the development of a parser as a component of a platform to support the care of community-dwelling older adults, the SOCIAL platform, to allow the definition of access control policies and rules using natural languages.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3
Fig. 4
Fig. 5
Fig. 6
Fig. 7

Similar content being viewed by others

References

  1. Rosa M, Barraca JP, Rocha (2019) access control for social care platforms using fast healthcare interoperability resources. In world conference on information systems and technologies (pp. 94-104). Springer, Cham.

    Google Scholar 

  2. Sousa M, Arieira L, Queirós A, Martins AI, Rocha NP, Augusto F, Duarte F, Neves T, Damasceno A (2018). In Advances in Intelligent Systems and Computing, 746: 1162–1168. (2018).

    Google Scholar 

  3. Baines, S., Hill, P., and Garrety, K., What happens when digital information systems are brought into health and social care? Comparing approaches to social policy in England and Australia. Social Policy and Society 13(4):569–578, 2014.

    Article  Google Scholar 

  4. Apperta Foundation (2017) Defining an Open Platform.

  5. Mandl, K. D., Mandel, J. C., Murphy, S. N., Bernstam, E. V., Ramoni, R. L., Kreda, D. A. et al., The SMART platform: Early experience enabling substitutable applications for electronic health records. J Am Med Informatics Assoc 19(4):597–603, 2012.

    Article  Google Scholar 

  6. Chaballout, B. H., Shaw, R. J., and Reuter-Rice, K., The SMART healthcare solution. Advances in Precision Medicine 2(1):1–3, 2017.

    Google Scholar 

  7. Rigby, M., Integrating health and social care informatics to enable holistic health care. Stud Health Technol Inform. 177:41–51, 2012.

    PubMed  Google Scholar 

  8. Kristal L Senior Care Connect Inc. [Online]. Available: https://www.seniorcareconnect.co/ (visited on 2019/06/22).

  9. Metatheke Software: Ankira. [Online]. Available: https://ankira.pt/en/platform/ (visited on 2019/06/22).

  10. Smith CS, Gerrish WG, Weppner WG (2015). The argument for the patient-centered medical home: Replicating good primary care. In Interprofessional Education in Patient-Centered Medical Homes (pp. 11–25). Springer, Cham.

    Chapter  Google Scholar 

  11. Kendall, D., and Quill, E., A lifetime electronic health record for every American. Washington, DC: Third Way, 2015.

    Google Scholar 

  12. Bender D, Sartipi K (2013) HL7 FHIR: An Agile and RESTful approach to healthcare information exchange. In proceedings of the 26th IEEE international symposium on computer-based medical systems (pp. 326-331). IEEE.

  13. Benson T, Grieve G (2016) Hl7 version 2. In Principles of health interoperability (pp. 223-242). Springer, Cham.

    Chapter  Google Scholar 

  14. Benson T, Grieve G. (2016). Principles of health interoperability: SNOMED CT, HL7 and FHIR. Springer.

  15. Dolin, R. H., Alschuler, L., Boyer, S., Beebe, C., Behlen, F. M., Biron, P. V., and Shabo, A., HL7 clinical document architecture, release 2. Journal of the American Medical Informatics Association 13(1):30–39, 2006.

    Article  Google Scholar 

  16. Hoeksma J (2018) System C commits to ‘full FHIR support’ to drive interoperability. Available: https://www.digitalhealth.net/2018/09/system-c-commits-to-full-fhir-support-to-drive-interoperability/ (visited on 2019/06/22).

  17. Chu D SocialCare. [Online]. Available: https://www.socialcare.com/ (visited on 2019/06/22).

  18. Ayoola, I., Wetzels, M., Peters, P., van Berlo, S., and Feijs, L., Do CHANGE platform: A service-based architecture for secure aggregation and distribution of health and wellbeing data. International journal of medical informatics 117:103–111, 2018.

    Article  Google Scholar 

  19. Alterovitz, G., Warner, J., Zhang, P., Chen, Y., Ullman-Cullere, M., Kreda, D., and Kohane, I. S., SMART on FHIR genomics: Facilitating standardized clinico-genomic apps. Journal of the American Medical Informatics Association 22(6):1173–1178, 2015.

    PubMed  Google Scholar 

  20. Wagholikar, B. et al., SMART-on-FHIR implemented over i2b2. Journal of the American Medical Informatics Association 24(2):398–402, 2017.

    PubMed  Google Scholar 

  21. Chronaki, CE et al. (2011) Interoperability in disaster medicine and emergency management. Journal of health informatics 3(especial): 87-99.

  22. Pecoraro, F., Luzi, D., and Ricci, F., An integrated model to capture the provision of health and social care services based on the ContSys and FHIR standards. EJBI 13(1):17–26, 2017.

    Google Scholar 

  23. Tourani, R., Misra, S., Mick, T., and Panwar, G., Security, privacy, and access control in information-centric networking: A survey. IEEE communications surveys & tutorials 20(1):566–600, 2017.

    Article  Google Scholar 

  24. Hu, V. C., Kuhn, D. R., Ferraiolo, D. F., and Voas, J., Attribute-based access control. Computer 48(2):85–88, 2015.

    Article  Google Scholar 

  25. Matulevičius R (2017) Role-based access control. In fundamentals of secure system Modelling (pp. 147-169). Springer, Cham.

    Chapter  Google Scholar 

  26. Elliott Bell, D., Bell–la padula model. Encyclopedia of cryptography and security:74–79, 2011.

  27. Blake, S. Q., The Clark-Wilson security model. Library Resources: Indiana University of Pennsylvania, 2000.

    Google Scholar 

  28. Bernd Blobel, Mike Davis, Pekka Ruotsalainen (2014), Policy Management Standards Enabling Trustworthy pHealth, Proceedings of the 11th International Conference on Wearable and Implantable Body Sensor Networks.

  29. OASIS, XACML (2013). [Online]. Available: http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.html (visited on 2019/06/22).

  30. OASIS, Security Assertion Markup Language. [Online]. Available: https://wiki.oasis- open.org/security/FrontPage (visited on 2019/06/22).

  31. Vora J et al (2018) Ensuring privacy and security in E- health records. In international conference on computer, information and telecommunication systems (pp. 1-5) IEEE, Colmar, France.

  32. Ray I et al (2016) Applying attribute based access control for privacy preserving health data disclosure. IEEE-EMBS international conference on biomedical and health informatics (pp. 1-4), IEEE, Las Vegas, Nevada, USA.

  33. Atiq AM, Alsulaiman LA (2016) Using XACML to enhance compliance with privacy regulations in health sector. In 2016 world symposium on computer applications & research (WSCAR) (pp. 53-58), IEEE, Cairo, Egypt (2016).

  34. Winter A et al. (2018). Smart medical information technology for healthcare (SMITH). Methods of information in medicine, 57(S 01): e92-e105.

    Article  Google Scholar 

  35. Ciampi M, Esposito A, De Pietro G, Masciari E, Sicuranza M (2018) Big data and health care: A lesson learned. 2018 IEEE international conference on bioinformatics and biomedicine (BIBM), Madrid, Spain, 2018, (pp. 2068-2075). doi: https://doi.org/10.1109/BIBM.2018.8621169

  36. Bialke, M., Bahls, T., Geidel, L., Rau, H., Blumentritt, A., Pasewald, S., Wolff, R., Steinmann, J., Bronsch, T., Bergh, B., Tremper, G., Lablans, M., Ückert, F., Lang, S., Idris, T., and Hoffmann, W., MAGIC: Once upon a time in consent management - a FHIR tale. Journal of Translational Medicine 16(1):1–11, 2018. https://doi.org/10.1186/s12967-018-1631-3.

  37. Conley Ed, Pocs M (2018) GDPR Compliance Challenges for Interoperable Health Information Exchanges (HIEs) and Trustworthy Research Environments (TREs). European Journal for Biomedical Informatics. 14. doi https://doi.org/10.24105/ejbi.2018.14.3.7.

  38. Turner RC (2017) Proposed model for natural language ABAC authoring. In proceedings of the 2nd ACM workshop on attribute-based access control - ABAC ‘17, (pp. 61-72), ACM, Scottsdale, Arizona, USA.

  39. Stepien B. et al. (2014) A non-technical XACML target editor for dynamic access control systems. In 2014 international conference on collaboration technologies and systems (pp. 150-157), IEEE, Minneapolis, Minnesota, USA.

  40. Santana, S., Dias, A., Souza, E., and Rocha, N., The domiciliary support Service in Portugal and the change of paradigm in care provision. International journal of integrated care 7(1), 2007.

  41. Rocha, N. P., Queirós, A., Martins, A. I., Sousa, M., Arieira, L., Damasceno, A., Duarte, F., Filipe, J., and Urbauer, P., The social platform: Profiling FHIR to support community-dwelling older adults. Journal of medical systems 43(4):86, 2019.

    Article  Google Scholar 

  42. Martins AI, Caravau H, Rosa AF, Queirós A, Rocha NP (2019). Applications to help local authorities to support community-dwelling older adults. In International Conference on Information Technology & Systems (pp. 720–729). Springer, Cham.

Download references

Acknowledgments

This work was supported by Sistema de Incentivos à Investigação e Desenvolvimento Tecnológico (SI I&DT) of the Programa Portugal 2020, through Programa Operacional Competitividade e Internacionalização and/or Programa Operacional do Centro do FEDER - Fundo Europeu de Desenvolvimento Regional, under Social Cooperation for Integrated Assisted Living (SOCIAL), project number 017861.

Author information

Authors and Affiliations

  1. Department of Electronic, Telecommunications and Informatics - Institute of Electronics and Informatics Engineering of Aveiro, University of Aveiro, Campo Universitário de Santiago, Aveiro, 3810-193, Portugal

    Marco Rosa & André Zuquete

  2. Department of Electronic, Telecommunications and Informatics - Instituto de Telecomunicações, University of Aveiro, Campo Universitário de Santiago, Aveiro, 3810-193, Portugal

    João Paulo Barraca

  3. Department of Medical Sciences - Institute of Electronics and Informatics Engineering of Aveiro, University of Aveiro, Campo Universitário de Santiago, Aveiro, 3810-193, Portugal

    Nelson Pacheco Rocha

Authors
  1. Marco Rosa
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. João Paulo Barraca
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. André Zuquete
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Nelson Pacheco Rocha
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Nelson Pacheco Rocha.

Ethics declarations

This article does not contain any studies with human participants or animals performed by any of the authors.

Conflict of Interests

All the authors declare that they have no conflict of interest.

Additional information

Publisher’s Note

Springer Nature remains neutral with regard to jurisdictional claims in published maps and institutional affiliations.

This article is part of the Topical Collection on Patient Facing Systems

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Rosa, M., Barraca, J.P., Zuquete, A. et al. A Parser to Support the Definition of Access Control Policies and Rules Using Natural Languages. J Med Syst 44, 41 (2020). https://doi.org/10.1007/s10916-019-1467-2

Download citation

  • Received:

  • Accepted:

  • Published:

  • DOI: https://doi.org/10.1007/s10916-019-1467-2

Keywords

Search

Navigation