Access Control Realities As Observed in a Clinical Medical Setting

Authors

Sara Sinclair, Dartmouth College
Sean Smith, Dartmouth College

Document Type

Technical Report

Publication Date

4-1-2012

Technical Report Number

TR2012-714

Abstract

Effective computer security requires looking not just at technology, but also at how it meshes with users in the real-world enterprises depending on it. As part of a longer-term series of projects, we have been looking at these issues-- particularly access control-- in a variety of real-world enterprises. In previous work, we looked at companies in the finance and software industries; this paper reports on a study of a hospital's access control systems. Both studies employ ethnographic methods to elicit observations on the failures of current access control technologies in large, dynamic organizations; participants in the corporate study were largely drawn from IT staff members, whereas this clinical study involved a larger number of end users.

Dartmouth Digital Commons Citation

Sinclair, Sara and Smith, Sean, "Access Control Realities As Observed in a Clinical Medical Setting" (2012). Computer Science Technical Report TR2012-714. https://digitalcommons.dartmouth.edu/cs_tr/355