An actor-based framework for verifiable privacy policy enforcement: assume-guarantee specification of an actor-component architecture

dc.contributor.advisorNiu, Jianwei
dc.contributor.authorJohnson, Claiborne
dc.contributor.committeeMemberNiu, Jianwei
dc.contributor.committeeMembervon Ronne, Jeffery
dc.contributor.committeeMemberWong, Xiaoyin
dc.date.accessioned2024-02-12T14:41:45Z
dc.date.available2024-02-12T14:41:45Z
dc.date.issued2016
dc.descriptionThis item is available only to currently enrolled UTSA students, faculty or staff. To download, navigate to Log In in the top right-hand corner of this screen, then select Log in with my UTSA ID.
dc.description.abstractOrganizations that hold private information about individuals are required to obey privacy policies that dictate how that information can be handled. However, the systems that hold this information are often complex, and the organizations face the difficult task of ensuring that these systems behave correctly, or else face great penalty. A formal approach to solving this problem is to implement the information system in an actor-based architectural style that can be mechanically checked. This thesis aims to display the feasibility of this approach by developing privacy policy specifications for actors which can be provably composed to show that privacy policies are satisfied for the entire system. The contribution towards this goal is an actor-component architecture design for an Electronic Medical Record System, and a developed language for and implementation of assume-guarantee specifications for the actors which captures HIPAA-compliant behavior for a reasonable set of use cases. Finally, methods for evaluating the specifications are discussed and some intermediate steps are provided.
dc.description.departmentComputer Science
dc.format.extent136 pages
dc.format.mimetypeapplication/pdf
dc.identifier.isbn9781369060966
dc.identifier.urihttps://hdl.handle.net/20.500.12588/4161
dc.languageen
dc.subject.classificationComputer science
dc.subject.classificationHealth care management
dc.subject.lcshMedical records -- Management -- Information technology
dc.subject.lcshMedical records -- Access control
dc.titleAn actor-based framework for verifiable privacy policy enforcement: assume-guarantee specification of an actor-component architecture
dc.typeThesis
dc.type.dcmiText
dcterms.accessRightspq_closed
thesis.degree.departmentComputer Science
thesis.degree.grantorUniversity of Texas at San Antonio
thesis.degree.levelMasters
thesis.degree.nameMaster of Science

Files

Original bundle

Now showing 1 - 1 of 1
No Thumbnail Available
Name:
Johnson_utsa_1283M_12026.pdf
Size:
481.98 KB
Format:
Adobe Portable Document Format