| A key issue in any information security system is to protect information againstunauthorized access. Innovative access control model is now becoming a need forapplication and system due to emerging acts. Role based access control (RBAC) is afeasible alternative to traditional Discretionary Access control (DAC) and MandatoryAccess Control (MAC). RBAC has been presented to be cost operative and is beingemployed in different application domains on account of its characteristics: policyneutrality, separation of duty relations, rich specification, principal of least privilege, andease of managerial issues. Managing the hospital workers, assigning duties and keepingconfidential health records effectively is a big huddle these days. Accordingly, theadministration of different security levels, resources, users, tasks etc. is indispensable.In this thesis, the focus is on Hospital management system by using Role BasedAccess Control (RBAC). The design architecture is based on the RBAC concepts,according to the concept only administrator has the privilege to manage or administer thedata. He/she provides all types privileges required to maintain users, their authorizationand access, and the authorized resources. The administrator has the largest informationincluding access to health care worker’s information and has sole access to all potentialworkers and their assigned duties. The study also discusses the security access control, andsecurity policies and methods integrated into the RBAC that is appropriate for hospitalmanagement system. RBAC (Role-based-access-control) security is used to control theaccess to patients’ medical records files and the hospital resources and eliminates securityviolations. In the design, the language C++/Qt framework was used to implement thesecurity workflow for different login process. |
PDF Full Text Request