• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

GPT、本体论与CAABAC:一种以合规性、上下文和属性为支撑的三方个性化访问控制模型。

GPT, ontology, and CAABAC: A tripartite personalized access control model anchored by compliance, context and attribute.

作者信息

Nowrozy Raza, Ahmed Khandakar, Wang Hua

机构信息

Victoria University, Melbourne, VIC, Australia.

出版信息

PLoS One. 2025 Jan 6;20(1):e0310553. doi: 10.1371/journal.pone.0310553. eCollection 2025.

DOI:10.1371/journal.pone.0310553
PMID:39761253
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC11703090/
Abstract

As digital healthcare evolves, the security of electronic health records (EHR) becomes increasingly crucial. This study presents the GPT-Onto-CAABAC framework, integrating Generative Pretrained Transformer (GPT), medical-legal ontologies and Context-Aware Attribute-Based Access Control (CAABAC) to enhance EHR access security. Unlike traditional models, GPT-Onto-CAABAC dynamically interprets policies and adapts to changing healthcare and legal environments, offering customized access control solutions. Through empirical evaluation, this framework is shown to be effective in improving EHR security by accurately aligning access decisions with complex regulatory and situational requirements. The findings suggest its broader applicability in sectors where access control must meet stringent compliance and adaptability standards.

摘要

随着数字医疗的发展,电子健康记录(EHR)的安全性变得越来越重要。本研究提出了GPT-Onto-CAABAC框架,该框架集成了生成式预训练变换器(GPT)、医学法律本体和上下文感知属性基访问控制(CAABAC),以增强电子健康记录访问安全性。与传统模型不同,GPT-Onto-CAABAC能够动态解释策略并适应不断变化的医疗和法律环境,提供定制化的访问控制解决方案。通过实证评估,该框架被证明能通过使访问决策与复杂的法规和情境要求精确匹配,有效提高电子健康记录的安全性。研究结果表明,它在访问控制必须符合严格合规性和适应性标准的领域具有更广泛的适用性。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/10beceb18878/pone.0310553.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/0cee4b473fd3/pone.0310553.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/1045b661d227/pone.0310553.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/03aaa7c6afbf/pone.0310553.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/7dc996125ef8/pone.0310553.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/4a63912e4c5b/pone.0310553.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/10beceb18878/pone.0310553.g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/0cee4b473fd3/pone.0310553.g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/1045b661d227/pone.0310553.g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/03aaa7c6afbf/pone.0310553.g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/7dc996125ef8/pone.0310553.g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/4a63912e4c5b/pone.0310553.g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/4e9c/11703090/10beceb18878/pone.0310553.g006.jpg

相似文献

1
GPT, ontology, and CAABAC: A tripartite personalized access control model anchored by compliance, context and attribute.GPT、本体论与CAABAC:一种以合规性、上下文和属性为支撑的三方个性化访问控制模型。
PLoS One. 2025 Jan 6;20(1):e0310553. doi: 10.1371/journal.pone.0310553. eCollection 2025.
2
Meeting EHR security requirements: SeAAS approach.满足电子健康记录(EHR)安全要求:SeAAS方法。
Stud Health Technol Inform. 2010;155:85-91.
3
A large language model-based generative natural language processing framework fine-tuned on clinical notes accurately extracts headache frequency from electronic health records.基于大型语言模型的生成式自然语言处理框架,在临床笔记上进行了微调,能够从电子健康记录中准确提取头痛频率。
Headache. 2024 Apr;64(4):400-409. doi: 10.1111/head.14702. Epub 2024 Mar 25.
4
Permissioned blockchain network for proactive access control to electronic health records.许可区块链网络,实现对电子健康记录的主动访问控制。
BMC Med Inform Decis Mak. 2024 Oct 15;24(1):303. doi: 10.1186/s12911-024-02708-8.
5
A systematic literature review on security and privacy of electronic health record systems: technical perspectives.电子健康记录系统的安全性与隐私性:技术视角的系统文献综述
Health Inf Manag. 2015;44(3):23-38. doi: 10.1177/183335831504400304.
6
A GPT-based EHR modeling system for unsupervised novel disease detection.基于 GPT 的电子健康记录建模系统,用于无监督的新型疾病检测。
J Biomed Inform. 2024 Sep;157:104706. doi: 10.1016/j.jbi.2024.104706. Epub 2024 Aug 8.
7
Distributed clinical data sharing via dynamic access-control policy transformation.通过动态访问控制策略转换实现分布式临床数据共享。
Int J Med Inform. 2016 May;89:25-31. doi: 10.1016/j.ijmedinf.2016.02.002. Epub 2016 Feb 12.
8
Efficient Privacy-Preserving Access Control Scheme in Electronic Health Records System.电子健康记录系统中的高效隐私保护访问控制方案。
Sensors (Basel). 2018 Oct 18;18(10):3520. doi: 10.3390/s18103520.
9
Large-scale identification of social and behavioral determinants of health from clinical notes: comparison of Latent Semantic Indexing and Generative Pretrained Transformer (GPT) models.从临床记录中大规模识别健康的社会和行为决定因素:潜在语义索引和生成式预训练转换器 (GPT) 模型的比较。
BMC Med Inform Decis Mak. 2024 Oct 10;24(1):296. doi: 10.1186/s12911-024-02705-x.
10
Security and privacy in electronic health records: a systematic literature review.电子健康记录中的安全性和隐私保护:系统文献综述。
J Biomed Inform. 2013 Jun;46(3):541-62. doi: 10.1016/j.jbi.2012.12.003. Epub 2013 Jan 8.

引用本文的文献

1
Enhancing security in electromagnetic radiation therapy using fuzzy graph theory.运用模糊图论增强电磁辐射治疗中的安全性。
Sci Rep. 2025 Apr 16;15(1):13139. doi: 10.1038/s41598-025-98110-z.

本文引用的文献

1
Generative Artificial Intelligence Through ChatGPT and Other Large Language Models in Ophthalmology: Clinical Applications and Challenges.通过ChatGPT和其他大语言模型实现的生成式人工智能在眼科中的临床应用与挑战
Ophthalmol Sci. 2023 Sep 9;3(4):100394. doi: 10.1016/j.xops.2023.100394. eCollection 2023 Dec.
2
The imperative for regulatory oversight of large language models (or generative AI) in healthcare.对医疗保健领域的大语言模型(或生成式人工智能)进行监管监督的必要性。
NPJ Digit Med. 2023 Jul 6;6(1):120. doi: 10.1038/s41746-023-00873-0.
3
Supply chain traceability and counterfeit detection of COVID-19 vaccines using novel blockchain-based system.
使用基于区块链的新型系统对新冠疫苗进行供应链可追溯性和假冒检测。
Expert Syst Appl. 2023 Oct 15;228:120293. doi: 10.1016/j.eswa.2023.120293. Epub 2023 May 9.
4
The Integrated Electronic Health System in Iranian health centers: benefits and challenges.伊朗医疗中心的综合电子健康系统:效益与挑战。
BMC Prim Care. 2023 Feb 18;24(1):53. doi: 10.1186/s12875-023-02011-x.
5
Health Records Database and Inherent Security Concerns: A Review of the Literature.健康记录数据库与内在安全问题:文献综述
Cureus. 2022 Oct 11;14(10):e30168. doi: 10.7759/cureus.30168. eCollection 2022 Oct.
6
Blockchain Framework for Secure COVID-19 Pandemic Data Handling and Protection.区块链框架用于安全处理和保护 COVID-19 大流行数据。
Comput Intell Neurosci. 2022 Sep 14;2022:7025485. doi: 10.1155/2022/7025485. eCollection 2022.
7
Integrating a New Dietetic Care Process in a Health Information System: A System and Process Analysis and Assessment.将新的饮食护理流程整合到健康信息系统中:系统和流程分析与评估。
Int J Environ Res Public Health. 2022 Feb 22;19(5):2491. doi: 10.3390/ijerph19052491.
8
Believing in black boxes: machine learning for healthcare does not need explainability to be evidence-based.相信黑盒:医疗保健的机器学习不需要可解释性即可成为基于证据的。
J Clin Epidemiol. 2022 Feb;142:252-257. doi: 10.1016/j.jclinepi.2021.11.001. Epub 2021 Nov 5.
9
Electronic Health Records and Genomics: Perspectives from the Association for Molecular Pathology Electronic Health Record (EHR) Interoperability for Clinical Genomics Data Working Group.电子健康记录与基因组学:来自分子病理学协会的观点 电子健康记录 (EHR) 临床基因组学数据互操作性工作组。
J Mol Diagn. 2022 Jan;24(1):1-17. doi: 10.1016/j.jmoldx.2021.09.009. Epub 2021 Oct 15.
10
Considering the possibilities and pitfalls of Generative Pre-trained Transformer 3 (GPT-3) in healthcare delivery.考虑生成式预训练变换器3(GPT-3)在医疗服务中的可能性和潜在问题。
NPJ Digit Med. 2021 Jun 3;4(1):93. doi: 10.1038/s41746-021-00464-x.