AUGMENTATION IN UCON MODEL

Abstract

In this dissertation, we have presented a new architecture of UCON access control model for e-healthcare domain. This enhanced UCON model can scale effectively as per user demand, perform isolation of sensitive data from non-sensitive data and data transmission between different modules is via secure model and thus helps in achieving high availability, performance, scalability, resilience and security. Features of Cloud computing have also been explored and used to achieve some of the features listed above. Existing implementation of UCON for e-healthcare domain do not cater for all of these requirements, for an e-healthcare system it is imperative to have an access control model which fulfills all of these. New architecture comprises of a client application, user platform on local network and policy server on cloud platform. Sensitive and Non-sensitive data has been segregated to maintain data isolation. Sensitive data is kept on local network of hospital and non-sensitive data on cloud. Multiple UCON policy servers are available on cloud to cope with component failures and to provide resilience. Data communication from user platform to cloud is through SSL to maintain data security. Feature of Sun XACML has been used in the implementation of policy server. All features of UCON model related to authorization, condition, obligation, continuity and attribute mutability has been incorporated in the proposed model.