Context-Sensitive Access Control and Zero Trust for Security in E-Health

In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable...

Full description

Saved in:
Bibliographic Details
Main Authors: Freitas, Lucas L. C., Coelho, Kristtopher K., Nogueira, Michele, Vieira, Alex B., Nacif, Jose Augusto Miranda, Silva, Edelberto F.
Format: Conference Proceeding
Language:English
Subjects:
Access control
Computer architecture
Computers
Context modeling
Decision making
Performance evaluation
Proposals
Protection
Sensitivity
Zero Trust
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In an increasingly connected world, ensuring security in e-health is a challenge. Traditional security models based on perimeter trust are insufficient to guarantee the protection of these systems. Since these models work by directly assigning trust to the user, the entire network becomes vulnerable if the user's credentials or device are compromised. Thus, this work proposes and evaluates a model based on Zero Trust to considerably increase security in e-health environments. The proposed model uses privilege reduction and user confidence analysis to perform access control. The evaluation follows simulation in different scenarios, assessing their assertiveness in delegating access. The results show the effective detection of anomalies in accesses by the model.
ISSN:2642-7389
DOI:10.1109/ISCC61673.2024.10733673