发明名称 |
Healthcare privacy breach prevention through integrated audit and access control |
摘要 |
A computer-implemented method for compliance with a privacy requirement. The method comprises analyzing, using one or more processors, an access log related to a history of users accessing records; deriving a plurality of roles assigned to the users and a plurality of accesses reflecting actions taken by the users; and deriving from the access log a mapped log comprising a plurality of mapping records including a plurality of mapped role-access pairs. The method further comprises generating, using the one or more processors, a reduced log including a plurality of reduced records comprising a mapped role-access pair and statistics that are associated with the mapped role-access pair, the statistics being derived from a subset of the mapping records that include the mapped role-access pair; and deriving an access policy based on the reduced log, wherein the access policy includes a plurality of proposed role-access pairs. |
申请公布号 |
US8984583(B2) |
申请公布日期 |
2015.03.17 |
申请号 |
US201313800883 |
申请日期 |
2013.03.13 |
申请人 |
Accenture Global Services Limited |
发明人 |
Bhatti Rafae;Martin Paul D. |
分类号 |
G06F17/30;G06F21/62;G06F19/00;G06Q10/06;G06Q50/24;G06F7/04 |
主分类号 |
G06F17/30 |
代理机构 |
Finnegan, Henderson, Farabow, Garrett & Dunner, LLP |
代理人 |
Finnegan, Henderson, Farabow, Garrett & Dunner, LLP |
主权项 |
1. A computer-implemented method for compliance with a privacy requirement, the method comprising:
analyzing, using one or more processors, an access log related to a history of users accessing records; deriving a plurality of roles assigned to the users and a plurality of accesses reflecting actions taken by the users; deriving from the access log a mapped log comprising a plurality of mapping records including a plurality of mapped role-access pairs; generating, using the one or more processors,
a reduced log including a plurality of reduced records comprising a mapped role-access pair and user identifications, andstatistics that are associated with the mapped role-access pair, the statistics being derived from a subset of the mapping records that include the mapped role-access pair; identifying the mapped role-access pair as underrepresented based on the user identifications; and deriving an access policy based on the reduced log, wherein the access policy includes a plurality of proposed role-access pairs. |
地址 |
Dublin IE |