Presentation is loading. Please wait.

Presentation is loading. Please wait.

Rejina Basnet, Subhojeet Mukherjee, Vignesh M. Pagadala, Indrakshi Ray

Published byLisa Richardson Modified over 6 years ago

Similar presentations

Presentation on theme: "Rejina Basnet, Subhojeet Mukherjee, Vignesh M. Pagadala, Indrakshi Ray"— Presentation transcript:

1 An Efficient Implementation of Next Generation Access Control for the Mobile Health Cloud
Rejina Basnet, Subhojeet Mukherjee, Vignesh M. Pagadala, Indrakshi Ray The Third International Conference on Fog and Mobile Edge Computing

2 What is mHealth? mHealth technology has begun to gain traction due to advances in information technology and mobile-computing. An mHealth system is basically one which involves the use of mobile computing devices in discharging healthcare-related services.

3 mHealth System Architecture
Physician Insurance company agent Researcher Patient - Sensor node Body-area network - Mobile node Health Records System

4 Insurance company agent
Problem Description Physician Access control enforcement point - Sensor node Body-area network - Mobile node Insurance company agent Health Records System Researcher Patient

5 mHealth System Requirements
Effective policy representation and enforcement. Fine-grained data access. Fast access decisions.

6 Limitations of the Existing System
RBAC and XACML-based ABAC are used in conventional mHealth systems. Limitations of RBAC: A sizeable organization might have many roles, which makes role management difficult. Is incapable of achieving finer levels of granularity. Limitations of XACML: Slow in making access decisions.

7 Data Model We consider our data to consist of 4 features: Patient ID, Date-Time, Calories and Steps Taken, which are taken from a simulated FitBit dataset. [Furberg, R. D. (2015). Self-generated Fitbit dataset [Data set]. Zenodo.

8 Threat Model Sources of Threats:
Patient (the patient himself or herself) Internal (someone already with authorized access) External (someone without authorized access) Vulnerable Assets: Mobile Internet Device Sensor Nodes Preprocessing Unit Health Record System Possible risks Data quality and integrity Patient confidentiality Availability of data

9 Proposed Approach Our solution is based upon NIST Policy Machine (PM).
PM can effectively represent mHealth-based policies. Fine-grained access control can be achieved. Usage of existing or new graph theoretic approaches can speed up access decisions. Neo4j graph database is used for implementation. Persistent storage of data and access control policies, with relevant indexing. Native storage and processing allows constant time object access. Can easily integrate with most complex graph search and reachability algorithms.

10 Solution Architecture
Physician NIST NGAC enforcement point NGAC - Sensor node Body-area network - Mobile node Insurance company agent Health Records System Researcher Patient

11 Proposed PM Template Subjects can include, but are not restricted to
Physicians, patient, insurance companies and lawyers. Subject attributes can include, but are not restricted to Role: Physicians, patient, insurance companies and lawyers The objects are individual fields of a patient’s data, as received from the Mobile Node. Eg. Calorie recordings at a given time instance. Object attributes can include, but are not restricted to Owner: Patient ID Type: Calories, Steps Time: Time at which the data instance was collected. The Administrator is responsible assigning actual access rights.

12 Example Policy The doctor u5 is allowed read access to patient u2’s ‘steps’ on the date ‘aa/bb/cc’. The researchers u3 and u4 are allowed read access to all fitness-data features of all patients.

13 Technical Challenges Construction of the PM graph:
Adding nodes and edges Objects and object attributes obtained from incoming traffic. Users and user attributes are collected from an access portal. Administrator is responsible for adding associations in the PM graph. Index construction User and object nodes are indexed with reachable operation nodes. Operations nodes are indexed with reachable source nodes.

14 Technical Challenges Types of access requests:
Query of type <u, op, o>: Can Dr Jekyll read the patient Mr Hyde’s data? Query of the type <u, *, *>: What privileges does user u have?

15 Implementation Architecture
4. User ID Body-area network Researcher Registration portal 2. Attributes Access portal 5. Access Request 3. User ID, Attributes Policy machine graph database Policies ownerid, calories = xx, steps = yy 6. Request (u, op, p) (u, *, *) Data 7. Requested Data (after policy evaluation) Physician Administrator Request Can I access X’s calorie data? What access rights do I have?

16 Evaluation of <u1, op2, o1>
Step 1 Get indexes of u1 op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 In this case, they are {op1, op2, op4}

17 Evaluation of <u1, op2, o1>
Step 2 Get indexes of o1 op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 In this case, they are {op2, op3, op4}

18 Evaluation of <u1, op2, o1>
Step 3 Get intersection of both the indexes. op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 Intersection is {op2, op4}. Since op2 belongs to this set, access is granted to u1 to perform operation op2 on object o1.

19 Evaluation of <u1, *, *>
Step 1 Traverse through all op nodes. {op1, op2, op3, op4} op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 For each op node, perform binary search through reachable user nodes. If u1 is found, return the indexed object list. In this case, no object nodes so we return nothing.

20 Evaluation of <u1, *, *>
Step 2 Traverse through all op nodes. {op1, op2, op3, op4} op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 Return {op2, o1}

21 Evaluation of <u1, *, *>
Step 3 Traverse through all op nodes. {op1, op2, op3, op4} op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 Return {}

22 Evaluation of <u1, *, *>
Step 4 Traverse through all op nodes. {op1, op2, op3, op4} op1 oa3 ua3 op2 ua1 oa1 oa4 u1 ua4 o1 ua2 op3 oa2 oa5 ua5 op4 Return {op4, o1}

23 Future Work Delegate permission assignments to data owners and important stakeholders. In PHR systems user’s have administrative control over their records. In EHR systems hospitals/doctors can also have administrative control. Use O-auth/OpenID Connect based authentication and authorization schemes to confirm initial access requests. Integrate spatio-temporal access control Catered to mHeatlh systems.

Download ppt "Rejina Basnet, Subhojeet Mukherjee, Vignesh M. Pagadala, Indrakshi Ray"

Similar presentations

Privacy-Enhancing Models and Mechanisms for Securing Provenance and its Use October 2010 Lead PI: Ravi Sandhu (UT San Antonio) PIs: Elisa Bertino (Purdue),

Privacy-Enhancing Models and Mechanisms for Securing Provenance and its Use October 2010 Lead PI: Ravi Sandhu (UT San Antonio) PIs: Elisa Bertino (Purdue),
Privacy By Design Sample Use Case

Privacy By Design Sample Use Case
Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.

Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.
Secure Systems Research Group - FAU Patterns for access control E.B. Fernandez.

Secure Systems Research Group - FAU Patterns for access control E.B. Fernandez.
XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.

XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.
10/25/2001Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.

10/25/2001Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.
A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.

A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.
2  A system can protect itself in two ways: It can limit who can access the system. This requires the system to implement a two-step process of identification.

2  A system can protect itself in two ways: It can limit who can access the system. This requires the system to implement a two-step process of identification.
Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.

Distributed Computer Security 8.2 Discretionary Access Control Models - Sai Phalgun Tatavarthy.
Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.

Lecture slides prepared for “Computer Security: Principles and Practice”, 2/e, by William Stallings and Lawrie Brown, Chapter 4 “Overview”.
Network security policy: best practices

Network security policy: best practices
Security Architecture Dr. Gabriel. Security Database security: –degree to which data is fully protected from tampering or unauthorized acts –Full understanding.

Security Architecture Dr. Gabriel. Security Database security: –degree to which data is fully protected from tampering or unauthorized acts –Full understanding.
10/5/1999Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.

10/5/1999Database Management -- R. Larson Data Administration and Database Administration University of California, Berkeley School of Information Management.
Extended Role Based Access Control – Based Design and Implementation for a Secure Data Warehouse Dr. Bhavani Thuraisingham Srinivasan Iyer.

Extended Role Based Access Control – Based Design and Implementation for a Secure Data Warehouse Dr. Bhavani Thuraisingham Srinivasan Iyer.
Audumbar. Access control and privacy Who can access what, under what conditions, and for what purpose.

Audumbar. Access control and privacy Who can access what, under what conditions, and for what purpose.
Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.
1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo

1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo
1 A Role Based Administration Model For Attribute Xin Jin, Ram Krishnan, Ravi Sandhu SRAS, Sep 19, 2012 World-Leading Research with Real-World Impact!

1 A Role Based Administration Model For Attribute Xin Jin, Ram Krishnan, Ravi Sandhu SRAS, Sep 19, 2012 World-Leading Research with Real-World Impact!
WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.

WP6: Grid Authorization Service Review meeting in Berlin, March 8 th 2004 Marcin Adamski Michał Chmielewski Sergiusz Fonrobert Jarek Nabrzyski Tomasz Nowocień.
A User Experience-based Cloud Service Redeployment Mechanism KANG Yu.

A User Experience-based Cloud Service Redeployment Mechanism KANG Yu.

Similar presentations

Ads by Google