A Mediation Framework for the Implementation of Context-Aware Access Control in Pervasive Grid-Based Healthcare Systems | SpringerLink
Skip to main content
Springer Nature Link
Log in

A Mediation Framework for the Implementation of Context-Aware Access Control in Pervasive Grid-Based Healthcare Systems

  • Conference paper
Advances in Grid and Pervasive Computing (GPC 2009)

Part of the book series: Lecture Notes in Computer Science ((LNTCS,volume 5529))

Included in the following conference series:

Abstract

Healthcare is an increasingly collaborative enterprise involving many individuals and organizations that coordinate their efforts toward promoting quality and efficient delivery of healthcare through the use of pervasive healthcare systems. In such systems, interoperability is highly demanded in all the levels including the service and data levels. This paper presents a distributed context-aware access control mechanism for pervasive process-based healthcare systems built on a Grid infrastructure. The system uses the Business Process Execution Language (BPEL) to automate healthcare processes on a Grid infrastructure. Client applications are portal-based, operate on mobile devices and can use radio frequency identification (RFID) technology for wireless capture of identification data. The proposed access control mechanism acts as a mediator between the clients and the underlying system and adheres to the least privilege principle by allowing authorized access to integrated data in a ubiquitous and pervasive manner. The mechanism is built on a software platform that exploits agent and workflow technology, thus providing robustness, high flexibility and fault tolerance in authorization procedures.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Malamateniou, F., Vassilacopoulos, G.: Developing a virtual patient record using XML and web-based workflow technologies. Int. J. Med. Inform. 70(2-3), 131–139 (2003)

    Article  Google Scholar 

  2. Open Grid Services Architecture - Data Access and Integration (OGSA-DAI), http://www.ogsadai.org.uk/

  3. The Globus Toolkit, http://www.globus.org/

  4. Antonioletti, M., Hong, N.C., Hume, A., Jackson, M., Krause, A., Nowell, J.: Experiences designing and implementing Grid database services in the OGSA-DAI project. In: Designing and Building Grid Services Workshop, Global Grid Forum (2003)

    Google Scholar 

  5. Emmerich, W., Butchart, B., Chen, L., Wassermann, B., Price, S.: Grid Service Orchestration Using the Business Process Execution Language (BPEL). J. Grid Comp. 3, 283–304 (2006)

    Article  Google Scholar 

  6. Caire, G., Gotta, D., Banzi, M.: WADE: A Software Platform to Develop Mission Critical Applications Exploiting Agents and Workflows. In: 7th International Conference on Autonomous Agents and Multiagent Systems - Industry and Applications Track, Estoril, Portugal, pp. 29–36 (2008)

    Google Scholar 

  7. National Institute of Standards and Technology (NIST) RBAC, http://csrc.nist.gov/groups/SNS/rbac/

  8. Buhler, P.A., Vidal, J.M.: Towards Adaptive Workflow Enactment Using Multiagent Systems. J. Inf. Technol. Manag. 6(1), 61–87 (2005)

    Article  Google Scholar 

  9. Poggi, A., Tomaiuolo, M., Turci, P.: An Agent-Based Service Oriented Architecture. In: WOA 2007, Genova (2007)

    Google Scholar 

  10. Foster, I., Jennings, N.R., Kesselman, C.: Brain Meets Brawn: Why Grid and Agents Need Each Other. In: Autonomous Agents and Multi Agent Systems, pp. 8–15 (2004)

    Google Scholar 

  11. Greenwood, D., Callisti, M.: Engineering Web Service-Agent Integration. In: IEEE Conference of Systems, Man and Cybernetics, The Hague (2004)

    Google Scholar 

  12. Savarimuthu, B.T.R., Purvis, M., Purvis, M., Cranefield, S.: Integrating Web services with agent based workflow management system (WfMS). In: 2005 IEEE/WIC/ACM International Conference on Web Intelligence, France (2005)

    Google Scholar 

  13. Negri, A., Poggi, A., Tomaiuolo, M., Turci, P.: Dynamic Grid Tasks Composition and Distribution through Agents. Concurr. Comp. - Pract. E 18(8), 875–885 (2006)

    Article  Google Scholar 

  14. Java Agent Development Framework, http://jade.tilab.com/

  15. Liu, Z., Naldurg, P., Yi, S., Qian, T., Campbell, R.H., Mickunas, M.D.: An Agent Based Architecture for Supporting Application Level Security. In: DARPA Information Survivability Conference and Exposition, Hilton Head Island, S.C. (2000)

    Google Scholar 

  16. Zhang, G., Parashar, M.: Context-aware Dynamic Access Control for Pervasive Applications. In: Communication Networks and Distributed Systems Modeling and Simulation Conference, San Diego (2004)

    Google Scholar 

  17. Pimentao, J.P., Sousal, P.A.C., Amaral, P., Steiger-Garcao, A.: Agent-based communication security. In: Lindemann, G., Denzinger, J., Timm, I.J., Unland, R. (eds.) MATES 2004. LNCS, vol. 3187, pp. 73–84. Springer, Heidelberg (2004)

    Chapter  Google Scholar 

  18. Altiris Security Expressions Technology Overview: Agent-based and Agentless Vulnerability Management. Technical Report (2005)

    Google Scholar 

  19. Mendling, J., Strembeck, M., Stermsek, G., Neumann, G.: An Approach to Extract RBAC Models for BPEL4WS Processes. In: 13th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, Modena (2004)

    Google Scholar 

  20. Thomas, J., Paci, F., Bertino, E., Eugster, P.: User Tasks and Access Control over Web Services. In: IEEE International Conference on Web Services, Utah (2007)

    Google Scholar 

  21. Bertino, E., Crampton, J., Paci, F.: Access Control and Authorization Constraints for WS-BPEL. In: IEEE International Conference on Web Services, Chicago (2006)

    Google Scholar 

  22. Dou, W., Cheung, S.C., Chen, G., Cai, S.: Certificate-Driven Grid Workflow Paradigm Based on Service Computing. In: Zhuge, H., Fox, G.C. (eds.) GCC 2005. LNCS, vol. 3795, pp. 155–160. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  23. Adamski, M., Kulczewski, M., Kurowski, K., Nabrzyski, J., Hume, A.: Security and Performance Enhancements to OGSA-DAI for Grid Data Virtualization. Concurr. Comp. - Pract. E 19(16), 2171–2182 (2007)

    Article  Google Scholar 

  24. Power, D., Slaymaker, M., Politou, E., Simpson, A.: A Secure Wrapper for OGSA-DAI. In: Sloot, P.M.A., Hoekstra, A.G., Priol, T., Reinefeld, A., Bubak, M. (eds.) EGC 2005. LNCS, vol. 3470, pp. 485–494. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  25. IBM Corporation: IBM Websphere Workflow-Getting Started with Buildtime V. 3.6 (2005)

    Google Scholar 

  26. Polymenopoulou, M., Malamateniou, F., Vassilacopoulos, G.: Emergency Healthcare Process Automation using Workflow Technology and Web Services. Int. J. Med. Inform. 28(3), 195–207 (2005)

    Google Scholar 

  27. Pearlman, L., Welch, V., Foster, I., Kesselman, C., Tuecke, S.: A Community Authorization Service for Group Collaboration. In: 3rd IEEE International Workshop on Policies for Distributed Systems and Networks (2002)

    Google Scholar 

  28. OASIS Standards, http://www.oasis-open.org/

  29. Caire, G., Porta, M., Quarantotto, M., Sacchi, G.: Wolf - an Eclipse Plug-In for WADE. In: ACEC, Canberra (2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Digital Systems, University of Piraeus, 80, Karaoli & Dimitriou Str., 18534, Piraeus, Greece

    Vassiliki Koufi, Flora Malamateniou & George Vassilacopoulos

Authors
  1. Vassiliki Koufi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Flora Malamateniou
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. George Vassilacopoulos
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. University of Applied Sicences, Western Switzerland (HES-SO), Rue Prairie 4, 1202, Geneva, Switzerland

    Nabil Abdennadher

  2. Computer Science Department, West University of Timisoara, Timisoara, Romania

    Dana Petcu

Rights and permissions

Reprints and permissions

Copyright information

© 2009 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Koufi, V., Malamateniou, F., Vassilacopoulos, G. (2009). A Mediation Framework for the Implementation of Context-Aware Access Control in Pervasive Grid-Based Healthcare Systems. In: Abdennadher, N., Petcu, D. (eds) Advances in Grid and Pervasive Computing. GPC 2009. Lecture Notes in Computer Science, vol 5529. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-01671-4_26

Download citation

  • DOI: https://doi.org/10.1007/978-3-642-01671-4_26

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-642-01670-7

  • Online ISBN: 978-3-642-01671-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation