{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,12]],"date-time":"2025-10-12T03:59:11Z","timestamp":1760241551563,"version":"build-2065373602"},"reference-count":18,"publisher":"MDPI AG","issue":"2","license":[{"start":{"date-parts":[[2018,5,3]],"date-time":"2018-05-03T00:00:00Z","timestamp":1525305600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Informatics"],"abstract":"<jats:p>The presence of the Internet of Things (IoT) in healthcare through the use of mobile medical applications and wearable devices allows patients to capture their healthcare data and enables healthcare professionals to be up-to-date with a patient\u2019s status. Ambient Assisted Living (AAL), which is considered as one of the major applications of IoT, is a home environment augmented with embedded ambient sensors to help improve an individual\u2019s quality of life. This domain faces major challenges in providing safety and security when accessing sensitive health data. This paper presents an access control framework for AAL which considers multi-level access and privacy preservation. We focus on two major points: (1) how to use the data collected from ambient sensors and biometric sensors to perform the high-level task of activity recognition; and (2) how to secure the collected private healthcare data via effective access control. We achieve multi-level access control by extending Public Key Infrastructure (PKI) for secure authentication and utilizing Attribute-Based Access Control (ABAC) for authorization. The proposed access control system regulates access to healthcare data by defining policy attributes over healthcare professional groups and data classes classifications. We provide guidelines to classify the data classes and healthcare professional groups and describe security policies to control access to the data classes.<\/jats:p>","DOI":"10.3390\/informatics5020023","type":"journal-article","created":{"date-parts":[[2018,5,4]],"date-time":"2018-05-04T03:08:21Z","timestamp":1525403301000},"page":"23","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["An Internet of Things Based Multi-Level Privacy-Preserving Access Control for Smart Living"],"prefix":"10.3390","volume":"5","author":[{"given":"Usama","family":"Salama","sequence":"first","affiliation":[{"name":"School of Computer Science and Engineering, University of New South Wales, Sydney, NSW 2052, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lina","family":"Yao","sequence":"additional","affiliation":[{"name":"School of Computer Science and Engineering, University of New South Wales, Sydney, NSW 2052, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4425-7388","authenticated-orcid":false,"given":"Hye-young","family":"Paik","sequence":"additional","affiliation":[{"name":"School of Computer Science and Engineering, University of New South Wales, Sydney, NSW 2052, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2018,5,3]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"369","DOI":"10.1007\/s00607-018-0603-z","article-title":"WITS: An IoT-endowed computational framework for activity recognition in personalized smart homes","volume":"100","author":"Yao","year":"2018","journal-title":"Computing"},{"key":"ref_2","unstructured":"Memon, M., Wagne, S.R., and Hansen, F.O. (2013, January 20). Ambient assisted living ecosystems of personal healthcare systems, applications, and devices. Proceedings of the Scandinavian Conference on Health Informatics, Copenhagen, Denmark."},{"key":"ref_3","doi-asserted-by":"crossref","first-page":"131","DOI":"10.1109\/TPDS.2012.97","article-title":"Scalable and secure sharing of personal health records in cloud computing using attribute-based encryption","volume":"24","author":"Li","year":"2013","journal-title":"IEEE Trans. Parallel Distrib. Syst."},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Park, N. (2011, January 22\u201324). Customized healthcare infrastructure using privacy weight level based on smart device. Proceedings of the International Conference on Hybrid Information Technology, Daejeon, Korea.","DOI":"10.1007\/978-3-642-24106-2_60"},{"key":"ref_5","doi-asserted-by":"crossref","first-page":"58","DOI":"10.1109\/MCC.2016.76","article-title":"Hybrid cryptographic access control for cloud-based EHR systems","volume":"3","author":"Premarathne","year":"2016","journal-title":"IEEE Cloud Comput."},{"key":"ref_6","first-page":"e15","article-title":"Privacy oriented access control for electronic health records","volume":"8","author":"Gajanayake","year":"2014","journal-title":"Electron. J. Health Inform."},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Abbas, A., and Khan, S.U. (2015). e-Health Cloud: Privacy Concerns and Mitigation Strategies. Medical Data Privacy Handbook, Springer.","DOI":"10.1007\/978-3-319-23633-9_15"},{"key":"ref_8","unstructured":"Begum, M., Mamun, Q., and Kaosar, M. (2013, January 2\u20134). A privacy-preserving framework for personally controlled electronic health record (PCEHR) system. Proceedings of the 2nd Australian eHealth Informatics and Security Conference, Perth, Australia."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"132","DOI":"10.1016\/j.is.2014.05.004","article-title":"Collaborative and secure sharing of healthcare data in multi-clouds","volume":"48","author":"Fabian","year":"2015","journal-title":"Inf. Syst."},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Zhang, R., and Liu, L. (2010, January 5\u201310). Security models and requirements for healthcare application clouds. Proceedings of the 2010 IEEE 3rd International Conference on Cloud Computing (CLOUD), Miami, FL, USA.","DOI":"10.1109\/CLOUD.2010.62"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Yao, L., Ruan, W., Sheng, Q.Z., Li, X., and Falkner, N.J.G. (2014, January 3\u20137). Exploring tag-free RFID-based passive localization and tracking via learning-based probabilistic approaches. Proceedings of the 23rd ACM International Conference on Information and Knowledge Management, Shanghai, China.","DOI":"10.1145\/2661829.2661873"},{"key":"ref_12","doi-asserted-by":"crossref","first-page":"293","DOI":"10.1109\/TMC.2017.2706282","article-title":"Compressive representation for device-free activity recognition with passive RFID signal strength","volume":"17","author":"Yao","year":"2018","journal-title":"IEEE Trans. Mob. Comput."},{"key":"ref_13","unstructured":"Mandal, A. (2018, February 10). Symptoms of Movement Disorders. News Medical 2012. Available online: http:\/\/www.news-medical.net\/health\/Symptoms-of-movement-disorders.aspx."},{"key":"ref_14","doi-asserted-by":"crossref","first-page":"583","DOI":"10.1016\/j.future.2010.12.006","article-title":"Addressing cloud computing security issues","volume":"28","author":"Zissis","year":"2012","journal-title":"Future Gener. Comput. Syst."},{"key":"ref_15","unstructured":"Fido-Alliance (2018, February 28). Simpler, Stronger Authentication. Available online: https:\/\/fidoalliance.org."},{"key":"ref_16","doi-asserted-by":"crossref","unstructured":"Seitz, L., Pierson, J.M., and Brunie, L. (2003, January 2\u20135). Semantic access control for medical applications in grid environments. Proceedings of the Euro-Par 2003 Parallel Processing, Berlin, Germany.","DOI":"10.1007\/978-3-540-45209-6_56"},{"key":"ref_17","unstructured":"Strickland, M. (2018, January 31). Patients Know Best: A Changemaker Health Case Study. Available online: https:\/\/medium.com\/change-maker\/patients-know-best-a-changemaker-health-case-study-2f203b0971ae."},{"key":"ref_18","unstructured":"Australian Government (2018, January 31). National Authentication Service for Health, D.H.S., Available online: https:\/\/www.humanservices.gov.au\/organisations\/health-professionals\/services\/medicare\/national-authentication-service-health."}],"container-title":["Informatics"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2227-9709\/5\/2\/23\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T15:03:03Z","timestamp":1760194983000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2227-9709\/5\/2\/23"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,5,3]]},"references-count":18,"journal-issue":{"issue":"2","published-online":{"date-parts":[[2018,6]]}},"alternative-id":["informatics5020023"],"URL":"https:\/\/doi.org\/10.3390\/informatics5020023","relation":{},"ISSN":["2227-9709"],"issn-type":[{"type":"electronic","value":"2227-9709"}],"subject":[],"published":{"date-parts":[[2018,5,3]]}}}