A web-enabled framework for smart card applications in health services
Communications of the ACM
A context-related authorization and access control method based on RBAC:
SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
The use of smart devices in eHealth
ISICT '03 Proceedings of the 1st international symposium on Information and communication technologies
Audit-Based Access Control for Electronic Health Records
Electronic Notes in Theoretical Computer Science (ENTCS)
An Initial Model and a Discussion of Access Control in Patient Controlled Health Records
ARES '08 Proceedings of the 2008 Third International Conference on Availability, Reliability and Security
Design and implementation of a smart card based healthcare information system
Computer Methods and Programs in Biomedicine
Securing medical records on smart phones
Proceedings of the first ACM workshop on Security and privacy in medical and home-care systems
Virtual walls: protecting digital privacy in pervasive environments
PERVASIVE'07 Proceedings of the 5th international conference on Pervasive computing
Enhancing accountability of electronic health record usage via patient-centric monitoring
Proceedings of the 2nd ACM SIGHIT International Health Informatics Symposium
Are you exposed?: conveying information exposure
Proceedings of the ACM 2012 conference on Computer Supported Cooperative Work Companion
Hi-index | 0.00 |
Electronic health records (EHR) are poised to replace paper- based medical health records--EHRs show the promise of improving medical care by providing immediate access to a patient's records without having to worry about human-introduced delays. At the same time, mobile devices such as smartphones enable users to maintain their own medical information such as personal health records (PHR) as well as control the dissemination and sharing of their EHRs with medical personnel. Deciding what records to share with which medical personnel, however, is complicated by the many different types of records and users' varying privacy preferences. Thus, a usable model is needed to allow users to control the sharing of EHRs. In this paper we describe and evaluate MeD-Lights, a model that leverages the metaphor of traffic light colors (red, yellow, and green) to portray sensitivity levels of records, and how they should be shared with medical personnel. We implemented a MeD-Lights application on the Android platform and performed a user study using smartphones and show that the semantics of sharing we attach to these colors are indeed intuitive to users and users can use them effectively to manage access to their EHRs.