The tees confidentiality model

Mechanisms for implementing the sealed envelope

Jim Longstaff, Mike Lockyer

Research output: Contribution to journalArticleResearchpeer-review

1 Citation (Scopus)

Abstract

This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.

Original languageEnglish
Pages (from-to)157-166
Number of pages10
JournalMedical Informatics and the Internet in Medicine
Volume30
Issue number2
DOIs
Publication statusPublished - 1 Jun 2005

Fingerprint

Confidentiality
Emergencies

Cite this

@article{657177bd751248f9813cf127e92b22ff,
title = "The tees confidentiality model: Mechanisms for implementing the sealed envelope",
abstract = "This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.",
author = "Jim Longstaff and Mike Lockyer",
year = "2005",
month = "6",
day = "1",
doi = "10.1080/14639230500298792",
language = "English",
volume = "30",
pages = "157--166",
journal = "Informatics for Health and Social Care",
issn = "1753-8157",
publisher = "Informa Healthcare",
number = "2",

}

The tees confidentiality model : Mechanisms for implementing the sealed envelope. / Longstaff, Jim; Lockyer, Mike.

In: Medical Informatics and the Internet in Medicine, Vol. 30, No. 2, 01.06.2005, p. 157-166.

Research output: Contribution to journalArticleResearchpeer-review

TY - JOUR

T1 - The tees confidentiality model

T2 - Mechanisms for implementing the sealed envelope

AU - Longstaff, Jim

AU - Lockyer, Mike

PY - 2005/6/1

Y1 - 2005/6/1

N2 - This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.

AB - This paper offers mechanisms capable of implementing the authorization functionality to be supported by the NHS Care Records Service. The patient-confidentiality model for the Care Records Service includes restricting access to data by placing the data in a Sealed Envelope; providing access to data based on Legitimate Relationship, and other concepts; and the overriding of access restrictions in extraordinary or emergency situations. We informally show through examples how the Tees Confidentiality Model, a sophisticated model of authorization, can be used to implement Care Records Service authorization functionality to the level currently proposed, and also to much greater levels if they ever were to be required. The mechanisms discussed include using a range of permission types, called Confidentiality Permission Types; processing Confidentiality Permissions in a defined order according to complexity of type; using negative permissions to deny access; and providing override mechanisms for negative permissions.

UR - http://www.scopus.com/inward/record.url?scp=28944442031&partnerID=8YFLogxK

U2 - 10.1080/14639230500298792

DO - 10.1080/14639230500298792

M3 - Article

VL - 30

SP - 157

EP - 166

JO - Informatics for Health and Social Care

JF - Informatics for Health and Social Care

SN - 1753-8157

IS - 2

ER -