cdaefa:EFA Sicherheitsanforderungen
Version vom 12. März 2013, 23:39 Uhr von Jcaumanns (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „== Identifizierung und Authentifizierung von EFA-Teilnehmern == === Anforderungen === * The requesting HP MUST have been authenticated at the point of care. A de…“)
Inhaltsverzeichnis
Identifizierung und Authentifizierung von EFA-Teilnehmern
Anforderungen
- The requesting HP MUST have been authenticated at the point of care. A dedicated identity service provider MUST be able to verify the attesting HP identity assertion.
- The requesting party MUST deliver the requesting HP authentication claim in a form of an in-band (i.e. sent along an EFA business transaction) authentication assertion.
- The service provider MUST NOT deliver access to a medical data to a EFA client if the HP authentication assertion is valid, but not trusted (i.e., authentication mean considered as insecure).
- The in-band authentication assertion MUST contain additional identity attributes that MUST be used by the EFA provider for authorization decisions and patient consent enforcement. If an additional Admission assertion is needed, it MUST be issued using as security claim the HP authentication assertion. If an additional Access assertion is needed, it MUST be issued using as security claim the HP authentication assertion or an Admission assertion.
HP Identity Assertion
Verweis auf das entsprechende Kapitel im IHE Cookbook
Autorisierung von EFA-Teilnehmern
Anforderungen
…
EFA Access Assertion und EFA Policy Assertion
Verweis auf das entsprechende Kapitel im IHE Cookbook
Vertraulichkeit =
Anforderungen
- Medical data MUST NOT be disclosed to persons or organizations unless they have been authorized by the patient and the disclosure is legally or explicitly required for fulfilling the treatment.
- Medical data MUST NOT be disclosed to others than healthcare professionals or healthcare professional organizations in any case.
- Medical data MUST NOT be transferred to other destinations unless this disclosure has been authorized by the patient or is mandated by national law. In case that data processing outside the original destination is mandated by national law, the patient SHOULD be informed about this data processing before he authorizes the disclosure of his medical data.
- The legitimate disclosure and secure transfer of medical data MUST be safeguarded by appropriate means.
The proper enforcement of the willful disclosure MUST be controllable and verifiable by the patient.
EFA Secure Channels
Use of TLS and/or WS SecureConversation
Authentizität und Integrität von EFA Daten
Anforderungen
- The intended recipient of a medical data communication MUST be able to determine the originator and level of authenticity of the medical data received.
- Information on the identity and authenticity of the data originator that is assigned to the data or its metadata MUST NOT be altered during transfer.
Digital Signature
Als future extension, wenn HBA und SMC flächendeckend verfügbar….
Nicht-Abstreitbarkeit
Anforderungen
- Every EFA mediated exchange of medical data MUST be documented in a fully traceable, reconstructable, and seamless fashion.
- Every EFA mediated exchange of medical data MUST produce a usable chain of digital evidence that enables both, the patient and his assigned DPA, to pursue, enforce, and proof any assumed or detected violation of the patient’s data protection and privacy rights.
- The chain of digital evidence MUST disclose the minimum of personal health data required to serve its purpose and MUST be specifically safeguarded against wrongdoing. Part of these safeguards MUST be a protocol that is not accessible to HPs.