Projects per year
Abstract
The architectural design of a healthcare data sharing system must cope with security requirements especially when the system integrates different data sources and patient-centric features. The design choices come with different risks, where vulnerabilities and threats highly depend on how the system components interact and depend on each other to operate as well as how it handles the external connections. This paper focuses on security aspects arising early in the design phase of a patient-centric system. The system presents a blend of emergent technologies such as novel authentication methods, blockchain for access control, and a data lake for patient metadata storage and retrieval based on access rules. We exploit a model-based approach to tackle security assessment using attack-defense trees (ADtrees) formalism and other support diagrams altogether as a way to model and analyse potential attack paths to the system and its countermeasures. The modelling approach helps creating a framework to support the attack vectors analysis and the proposal of appropriate defense mechanisms within the system architecture.
Original language | English |
---|---|
Title of host publication | From data to models and back |
Subtitle of host publication | 10th international symposium, DataMod 2021 virtual event, December 6–7, 2021 revised selected papers |
Editors | Juliana Bowles, Giovanna Broccia, Roberto Pellungrini |
Place of Publication | Cham |
Publisher | Springer Science and Business Media |
Pages | 61–77 |
Number of pages | 17 |
ISBN (Electronic) | 9783031160110 |
ISBN (Print) | 9783031160103 |
DOIs | |
Publication status | Published - 7 Dec 2022 |
Event | International Symposium: From Data to Models and Back - Virtual Duration: 6 Dec 2021 → 7 Dec 2021 Conference number: 10 |
Publication series
Name | Lecture notes in computer science |
---|---|
Volume | 13268 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Conference
Conference | International Symposium: From Data to Models and Back |
---|---|
Abbreviated title | DataMod 2021 |
Period | 6/12/21 → 7/12/21 |
Keywords
- Attack-defense trees
- Data sharing
- Healthcare systems
- Patient-centric system
- Security assessment
Fingerprint
Dive into the research topics of 'Model-based security assessment on the design of a patient-centric data sharing platform'. Together they form a unique fingerprint.Projects
- 1 Finished