Abstract—Authorization models have become a hot topic for debate in recent years because of sharing healthcare data among different resources. Although authorization models have been developed and applied to various applications to prevent unauthorized access to sensitive healthcare data, there is no system model on cross-domain access control and combined context of team collaboration and workflow. This paper describes a cross-domain healthcare scenario based on current issues and interaction of relevant entities. This work has led us to propose a new fully decentralized access control framework for a dynamic cross-domain authorization model, where this framework is policy based to meet the requirements of cross-domain in healthcare environments.