{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,8]],"date-time":"2026-05-08T14:15:53Z","timestamp":1778249753438,"version":"3.51.4"},"publisher-location":"Berlin, Heidelberg","reference-count":16,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540405153","type":"print"},{"value":"9783540450672","type":"electronic"}],"license":[{"start":{"date-parts":[[2003,1,1]],"date-time":"2003-01-01T00:00:00Z","timestamp":1041379200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2003,1,1]],"date-time":"2003-01-01T00:00:00Z","timestamp":1041379200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2003]]},"DOI":"10.1007\/3-540-45067-x_35","type":"book-chapter","created":{"date-parts":[[2007,10,24]],"date-time":"2007-10-24T20:29:51Z","timestamp":1193257791000},"page":"403-415","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":22,"title":["A Novel Use of RBAC to Protect Privacy in Distributed Health Care Information Systems"],"prefix":"10.1007","author":[{"given":"Jason","family":"Reid","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ian","family":"Cheong","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Matthew","family":"Henricksen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jason","family":"Smit","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2003,6,18]]},"reference":[{"key":"35_CR1","doi-asserted-by":"crossref","unstructured":"J. Bacon, M. Lloyd, and K. Moody. Translating role-based access control policy within context. In Policy 2001, Workshop on Policies for Distributed Systems and Networks, pages 107\u2013120. Springer-Verlag, 2001.","DOI":"10.1007\/3-540-44569-2_7"},{"key":"35_CR2","doi-asserted-by":"crossref","unstructured":"Y. Bartal, A. J. Mayer, K. Nissim, and A. Wool. Firmato: A novel firewall management toolkit. In IEEE Symposium on Security and Privacy, pages 17\u201331, 1999.","DOI":"10.1109\/SECPRI.1999.766714"},{"key":"35_CR3","unstructured":"R. Chandramouli. A framework for multiple authorization types in a healthcare application system. In 17th Annual Computer Security Applications Conference (ACSAC), December 2001."},{"key":"35_CR4","unstructured":"R. Clarke. e-Consent: a critical element of trust in e-business. In 15th Bled Electronic Commerce Conference. e-Reality: Constructing the e-Economy \u2014 Research Volume, 2002."},{"key":"35_CR5","unstructured":"E. Coeira. \u201ce-Consent\u201d Consumer Consent in Electronic Health Data Exchange. downloaded from http:\/\/www.health.gov.au\/hsdd\/primcare\/it\/pdf\/coiera.pdf on 3 February 2003."},{"key":"35_CR6","doi-asserted-by":"crossref","first-page":"1328","DOI":"10.1136\/bmj.318.7194.1328","volume":"318","author":"I. Denley","year":"1999","unstructured":"I. Denley and S. Weston Smith. Privacy in clinical information systems in secondary care. British Medical Journal, 318:1328\u20131331, May 1999.","journal-title":"British Medical Journal"},{"issue":"1","key":"35_CR7","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1145\/300830.300834","volume":"2","author":"D. Ferraiolo","year":"1999","unstructured":"D. Ferraiolo, J. Barkley, and D. Kuhn. A role-based access control model and reference implementation within a corporate intranet. ACM Transactions on Information and System Security, 2(1):34\u201364, February 1999.","journal-title":"ACM Transactions on Information and System Security"},{"key":"35_CR8","unstructured":"D. Ferraiolo, J. Cugini and R. Kuhn. Role based access control (RBAC): Features and motivations. In Annual Computer Security Applications Conference. IEEE Computer Society Press, 1995."},{"key":"35_CR9","unstructured":"D. Ferraiolo and R. Kuhn. Role-based access controls. In 15th NIST-NCSC National Computer Security Conference, pages 554\u2013563, 1992."},{"issue":"3","key":"35_CR10","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"D. Ferraiolo","year":"2001","unstructured":"D. Ferraiolo, R. Sandhu, S. Gavrila, D. Kuhn, and R. Chandramouli. Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security (TISSEC), 4(3):224\u2013274, 2001.","journal-title":"ACM Transactions on Information and System Security (TISSEC)"},{"key":"35_CR11","unstructured":"L. Giuri and P. Iglio. A formal model for role-based access control with constraints. In 9th IEEE Computer Security Foundations Workshop, pages 136\u2013145, 1996."},{"key":"35_CR12","doi-asserted-by":"crossref","unstructured":"R.J. Hayton, J.M. Bacon, and K. Moody. Access control in an open distributed environment. In 19th IEEE Computer Society Symposium on Research in Security and Privacy, pages 3\u201314.","DOI":"10.1109\/SECPRI.1998.674819"},{"key":"35_CR13","doi-asserted-by":"crossref","unstructured":"J. J. Longstaff, M. A. Lockyer, and M. G. Thick. A model of accountability, confidentiality and override for healthcare and other applications. In 5th ACM workshop on Role-based access control, pages 71\u201376. ACM Press, 2000.","DOI":"10.1145\/344287.344304"},{"key":"35_CR14","doi-asserted-by":"crossref","unstructured":"I. Mavridis, G. Pangalos, and M. Khair. eMEDAC: Role-based access control supporting discretionary and mandatory features. In 13th IFIP WG 11.3 Working Conference on Database Security, 1999.","DOI":"10.1007\/978-0-387-35508-5_5"},{"issue":"8","key":"35_CR15","doi-asserted-by":"publisher","first-page":"93","DOI":"10.1145\/257874.257896","volume":"40","author":"T. Rindfleisch","year":"1997","unstructured":"T. Rindfleisch. Privacy, information technology, and health care. Communications of the ACM, 40(8):93\u2013100, August 1997.","journal-title":"Communications of the ACM"},{"key":"35_CR16","doi-asserted-by":"crossref","unstructured":"R. Simon and M. E. Zurko. Separation of duty in role-based environments. In IEEE Computer Security Foundations Workshop, pages 183\u2013194, 1997.","DOI":"10.1109\/CSFW.1997.596811"}],"container-title":["Lecture Notes in Computer Science","Information Security and Privacy"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/3-540-45067-X_35","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,8]],"date-time":"2026-05-08T13:48:16Z","timestamp":1778248096000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/3-540-45067-X_35"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2003]]},"ISBN":["9783540405153","9783540450672"],"references-count":16,"URL":"https:\/\/doi.org\/10.1007\/3-540-45067-x_35","relation":{},"ISSN":["0302-9743"],"issn-type":[{"value":"0302-9743","type":"print"}],"subject":[],"published":{"date-parts":[[2003]]},"assertion":[{"value":"18 June 2003","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}}]}}