Situation, Team and Role based Access Control

2011 Journal of Computer Science  
Problem statement: An emergency system of sharing and exchanging user's personal information is demanded in medical treatment and disaster situations. Approach: In such a system, personal information access control depending on user situations is greatly necessary. However, it is complicated to manage personal information access control directly, because the existing access control methods only support regular access control, not for an emergency case. Results: In this study, we propose a new
more » ... we propose a new access control model, called STRAC, which stands for Situation, Team and Role based Access Control. The STRAC enables access control of user personal information with consideration of context changes. Conclusion/Recommendations: In our proposed model, a concept of situations is introduced. Moreover, the proposed model is based on a concept of TMAC, which is an extension of a conventional RBAC model.
doi:10.3844/jcssp.2011.629.637 fatcat:w4az5l43yfewjaqy6mux3qz5kq