Abstract
The Internet of Medical Things (IoMT) can be described as connecting everyday devices and wearables to the Internet in order to intelligently link them together, thus enabling new forms of communication between things (medical devices) and people (patients) and between things themselves. This paper describes a context-aware access control model that hinges on the role-based and attribute-based access control (RABAC) and the capability-based access control (CapBAC) models. A prototype access control mechanism based on the model is intended to be incorporated into a personal health record (PHR) platform.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsReferences
Bhide, V.: A survey on the smart homes using Internet of Things (IoT). Int. J. Adv. Res. Comput. Manage. 2(12), 243–246 (2014)
Calvillo, J., Roman, I., Roa, L.M.: Empowering citizens with authorization mechanisms to their personal health resources. Int. J. Med. Inform. 82, 58–72 (2013)
Carrion, I., Aleman, J., Toval, A.: Accessing the HIPAA standard in practice: PHR privacy policies. In: Proceedings of the 33rd Annual International Conference of the IEEE EMBS, Boston, Massachusetts, USA (2011)
Chen, T.S., Liu, C.H., Chen, T.L., Chen, C.S., Bau, J.G., Lin, T.C.: Secure dynamic authorization scheme of PHR in cloud computing. J. Med. Syst. 36(6), 4005–4020 (2012)
Gusmeroli, S., Piccione, S., Rotondi, D.: A capability-based security approach to manage access control in the Internet of Things. Math. Comput. Model. 58(5–6), 1189–1205 (2013)
Hernandez Ramos, J., Jara, A., Marın, L., Skarmeta, A.: Distributed capability-based access control for the Internet of Things. J. Internet Serv. Inf. Secur. (JISIS) 3(3/4), 1–16 (2013)
Jin, X., Sandhu, R., Krishnan, R.: RABAC: role-centric attribute-based access control. In: Kotenko, I., Skormin, V. (eds.) MMM-ACNS 2012. LNCS, vol. 7531, pp. 84–96. Springer, Heidelberg (2012). doi:10.1007/978-3-642-33704-8_8
Li, F., Rahulamathavan, Y., Conti, M., Rajarajan, M.: LSD-ABAC: lightweight static and dynamic attributes based access control scheme for secure data access in mobile environment. In: Proceedings IEEE Local Computer Networks (IEEE LCN 2014), Edmonton, Canada (2014)
Pang, Z., Zheng, L., Tian, J., Kao-Walter, S., Dubrova, E., Chen, Q.: Design of a terminal solution for integration of in-home health care devices and services towards the Internet-of-Things. Enterp. Inf. Syst. 9(1), 86–116 (2015)
Uckelman, D., Harrison, M., Michahelles, F. (eds.): Architecting the Internet of Things. Springer, Heidelberg (2011)
Weber, R.: Internet of Things – new security and privacy challenges. Comput. Law Secur. Rev. 26, 23–30 (2010)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2017 ICST Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
About this paper
Cite this paper
Malamateniou, F., Themistocleous, M., Prentza, A., Papakonstantinou, D., Vassilacopoulos, G. (2017). A Context-Aware, Capability-Based, Role-Centric Access Control Model for IoMT. In: Perego, P., Andreoni, G., Rizzo, G. (eds) Wireless Mobile Communication and Healthcare. MobiHealth 2016. Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol 192. Springer, Cham. https://doi.org/10.1007/978-3-319-58877-3_16
Download citation
DOI: https://doi.org/10.1007/978-3-319-58877-3_16
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-58876-6
Online ISBN: 978-3-319-58877-3
eBook Packages: Computer ScienceComputer Science (R0)