Quips, MD: Query Information Privacy and Security, for Medical Data
6 Pages Posted: 12 Mar 2009
Date Written: December 13, 2008
As large volumes of medical information are stored in digital format, maintaining data security and privacy becomes increasingly important. Our work considers the mechanism of fine-grained access control (FGAC). Current techniques suffer from the possibility of revealing too much information or giving incorrect answers to aggregate queries. We propose improvements by considering properties of good security, defining levels of information revelation, and developing a query evaluation algorithm (with policies specified in SQL). Our algorithm can be used for policy integration as well.
Keywords: access control, data privacy, database security, fine grained access control
Suggested Citation: Suggested Citation