Cargando…
Health Information System Role-Based Access Control Current Security Trends and Challenges
OBJECTIVE: This article objective is to highlight implementation characteristics, concerns, or limitations over role-based access control (RBAC) use on health information system (HIS) using industry-focused literature review of current publishing for that purpose. Based on the findings, assessment f...
Autores principales: | , |
---|---|
Formato: | Online Artículo Texto |
Lenguaje: | English |
Publicado: |
Hindawi
2018
|
Materias: | |
Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC5836325/ https://www.ncbi.nlm.nih.gov/pubmed/29670743 http://dx.doi.org/10.1155/2018/6510249 |
_version_ | 1783303941563351040 |
---|---|
author | de Carvalho Junior, Marcelo Antonio Bandiera-Paiva, Paulo |
author_facet | de Carvalho Junior, Marcelo Antonio Bandiera-Paiva, Paulo |
author_sort | de Carvalho Junior, Marcelo Antonio |
collection | PubMed |
description | OBJECTIVE: This article objective is to highlight implementation characteristics, concerns, or limitations over role-based access control (RBAC) use on health information system (HIS) using industry-focused literature review of current publishing for that purpose. Based on the findings, assessment for indication of RBAC is obsolete considering HIS authorization control needs. METHOD: We have selected articles related to our investigation theme “RBAC trends and limitations” in 4 different sources related to health informatics or to the engineering technical field. To do so, we have applied the following search query string: “Role-Based Access Control” OR “RBAC” AND “Health information System” OR “EHR” AND “Trends” OR “Challenges” OR “Security” OR “Authorization” OR “Attacks” OR “Permission Assignment” OR “Permission Relation” OR “Permission Mapping” OR “Constraint”. We followed PRISMA applicable flow and general methodology used on software engineering for systematic review. RESULTS: 20 articles were selected after applying inclusion and exclusion criteria resulting contributions from 10 different countries. 17 articles advocate RBAC adaptations. The main security trends and limitations mapped were related to emergency access, grant delegation, and interdomain access control. CONCLUSION: Several publishing proposed RBAC adaptations and enhancements in order to cope current HIS use characteristics. Most of the existent RBAC studies are not related to health informatics industry though. There is no clear indication of RBAC obsolescence for HIS use. |
format | Online Article Text |
id | pubmed-5836325 |
institution | National Center for Biotechnology Information |
language | English |
publishDate | 2018 |
publisher | Hindawi |
record_format | MEDLINE/PubMed |
spelling | pubmed-58363252018-04-18 Health Information System Role-Based Access Control Current Security Trends and Challenges de Carvalho Junior, Marcelo Antonio Bandiera-Paiva, Paulo J Healthc Eng Review Article OBJECTIVE: This article objective is to highlight implementation characteristics, concerns, or limitations over role-based access control (RBAC) use on health information system (HIS) using industry-focused literature review of current publishing for that purpose. Based on the findings, assessment for indication of RBAC is obsolete considering HIS authorization control needs. METHOD: We have selected articles related to our investigation theme “RBAC trends and limitations” in 4 different sources related to health informatics or to the engineering technical field. To do so, we have applied the following search query string: “Role-Based Access Control” OR “RBAC” AND “Health information System” OR “EHR” AND “Trends” OR “Challenges” OR “Security” OR “Authorization” OR “Attacks” OR “Permission Assignment” OR “Permission Relation” OR “Permission Mapping” OR “Constraint”. We followed PRISMA applicable flow and general methodology used on software engineering for systematic review. RESULTS: 20 articles were selected after applying inclusion and exclusion criteria resulting contributions from 10 different countries. 17 articles advocate RBAC adaptations. The main security trends and limitations mapped were related to emergency access, grant delegation, and interdomain access control. CONCLUSION: Several publishing proposed RBAC adaptations and enhancements in order to cope current HIS use characteristics. Most of the existent RBAC studies are not related to health informatics industry though. There is no clear indication of RBAC obsolescence for HIS use. Hindawi 2018-02-19 /pmc/articles/PMC5836325/ /pubmed/29670743 http://dx.doi.org/10.1155/2018/6510249 Text en Copyright © 2018 Marcelo Antonio de Carvalho Junior and Paulo Bandiera-Paiva. http://creativecommons.org/licenses/by/4.0/ This is an open access article distributed under the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. |
spellingShingle | Review Article de Carvalho Junior, Marcelo Antonio Bandiera-Paiva, Paulo Health Information System Role-Based Access Control Current Security Trends and Challenges |
title | Health Information System Role-Based Access Control Current Security Trends and Challenges |
title_full | Health Information System Role-Based Access Control Current Security Trends and Challenges |
title_fullStr | Health Information System Role-Based Access Control Current Security Trends and Challenges |
title_full_unstemmed | Health Information System Role-Based Access Control Current Security Trends and Challenges |
title_short | Health Information System Role-Based Access Control Current Security Trends and Challenges |
title_sort | health information system role-based access control current security trends and challenges |
topic | Review Article |
url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC5836325/ https://www.ncbi.nlm.nih.gov/pubmed/29670743 http://dx.doi.org/10.1155/2018/6510249 |
work_keys_str_mv | AT decarvalhojuniormarceloantonio healthinformationsystemrolebasedaccesscontrolcurrentsecuritytrendsandchallenges AT bandierapaivapaulo healthinformationsystemrolebasedaccesscontrolcurrentsecuritytrendsandchallenges |