To search, Click below search items. |
| All Published Papers Search Service |
|
|
|
Title |
AWAR: An Awareness Security Model for E-Health Systems |
|
Author |
Israa Ahmed Zriqat and Ahmad Mousa Altamimi |
| Citation |
Vol. 25 No. 7 pp. 69-78 |
|
Abstract |
Recent years have witnessed a widespread availability of electronic healthcare data record (EHR) systems. Vast amounts of health data were generated in the process of treatment in medical centers such as hospitals, clinics, or other institutions. To improve the quality of healthcare service, EHRs could be potentially shared by a variety of users. This results in significant privacy issues that should be addressed to make the use of EHR practical. In fact, despite the recent research in designing standards and regulations directives concerning security and privacy in EHR systems, it is still, however, not completely settled out the privacy challenges. In this paper, an Awareness Security Model (AWAR) is proposed to support the security fundamentals of healthcare systems such as the access control. Specifically, AWAR handles not only on the normal situations where the policies are applied according to the users roles but also the abnormal situations where users are permitted to override the access restrictions they assigned as responding to emergency or critical incidents. Moreover, because patients health data could be exposed during the transmission process to the medical server. It should be encrypted, so if any attackers/intruder get access to the data, attacker cannot disclosed it. To do this and motivated by the advantages of using symmetric encryption techniques, AWAR utilizes the AES encryption technique to encrypt the stored healthcare information. |
|
Keywords |
Electronic health records; Access control; Security policies; encryption |
|
URL |
