DESIGN AND IMPLEMENTATION OF A PRACTICAL SECURE DISTRIBUTED HEALTHCARE APPLICATION

Zaobin Gan, Vijay Varadharajan

Abstract

Security plays a vital role in the design and practical deployment of distributed applications. All companies have to repeatedly spend considerable time, capital and effort on the implementation of the security mechanism for their applications, and the result is also unsatisfactory. Nowadays, more and more integrated security management tools are emerging. If we can properly use these tools in our practical applications, the development schedule of applications will be greatly cut down, the cost will be reduced considerably as well as the security of the applications can be guaranteed. In this paper, we investigate an integrated security management tool - ManageSecure, present a formal description of the healthcare system requirements. and then describe how to implement the healthcare system security objectives by means of ManageSecure. The result shows that the use of the integrated security management tool in the practice application is economical and feasible.

References

  1. Bai, Y. and Varadharajan, V. (1997). A logic for state transformations in authorization policies. In Proceedings of the 10th Computer Security Foundations Workshop, pages 173-182, Rockpor, USA. IEEE CS Press.
  2. Cantor, S., Kemp, J., and Philpott, R. (2005). Security assertion markup language saml 20. Technical report, thr.
  3. Ferraiolo, D. F., Barkley, J. F., and Kuhn, D. R. (1999). A role-based access control model and reference implementation within a corporate intranet. ACM Transactions on Information and System Security, 2(1):34-64.
  4. Gallaher, M. P., OConnor, A. C., and Kropp, B. (2002). The economic impact of role-based access control. Technical report, U.S Department of Commerce Technology Administration.
  5. Kailar, R. (2005). Managesecure c an integrated enterprise web security system. Technical report, Business Networks International Inc.
  6. Park, J. S., Sandhu, R., and Ahn, G.-J. (2001). Role-based access control on the web. ACM Transactions on Information and System Security, 4(1):37-71.
Download


Paper Citation


in Harvard Style

Gan Z. and Varadharajan V. (2006). DESIGN AND IMPLEMENTATION OF A PRACTICAL SECURE DISTRIBUTED HEALTHCARE APPLICATION . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006) ISBN 978-972-8865-63-4, pages 431-436. DOI: 10.5220/0002096104310436


in Bibtex Style

@conference{secrypt06,
author={Zaobin Gan and Vijay Varadharajan},
title={DESIGN AND IMPLEMENTATION OF A PRACTICAL SECURE DISTRIBUTED HEALTHCARE APPLICATION},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)},
year={2006},
pages={431-436},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002096104310436},
isbn={978-972-8865-63-4},
}


in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)
TI - DESIGN AND IMPLEMENTATION OF A PRACTICAL SECURE DISTRIBUTED HEALTHCARE APPLICATION
SN - 978-972-8865-63-4
AU - Gan Z.
AU - Varadharajan V.
PY - 2006
SP - 431
EP - 436
DO - 10.5220/0002096104310436