In an e-health environment, medical data is shared electronically between different parties. Improper access to such a data can have the possibility of adversely affecting some participants as this data often represents private and sensitive information that should only be accessed by authorised organizations and individuals. Most existing solutions either focus on user access control or object- based granular data access control rather than both. On the other hand, data sharing, such as medical data, in cross-domain environments is widely used, while the issue of improper access in such a 'roaming' environment has not received enough attention. In this paper, a novel access control mechanism has been proposed to address these issues. After the implementation, an example is given to explain use of the proposed approach to manage and share data in collaborative and cross-domain environments.


privacy-aware, granular data, access control, cross-domain


ISBN: [978-1-86435-644-1]; Full paper