1 / 19

Personnel Management V3.0

HL7 Working Group Meeting 21-26 May 2000, Cleveland Ohio. Personnel Management V3.0. Out of scope at the moment. Out of scope at the moment. Request Health Professional Card (Key-bound Certificates). Request Attribute Certificates. Concepts to be Considered. GCPR Project

lanai
Télécharger la présentation

Personnel Management V3.0

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HL7 Working Group Meeting 21-26 May 2000, Cleveland Ohio Personnel Management V3.0

  2. Out of scope at the moment

  3. Out of scope at the moment

  4. Request Health Professional Card (Key-bound Certificates)

  5. Request Attribute Certificates

  6. Concepts to be Considered GCPR Project CEN prENV 13606 Electronic Health Care Record Communication CORBAmed Services HL7 Secure Transactions Work (Audit, Policy Modelling, ...) ...

  7. Access Log Item (III:5.14) Architectural Component (I:6.4) certificate : S *access type : E (from I:Architectural Component Subsystem) access method : C *access status : E access type : *time of access : TOCD *architectural component UID : Identifier *distribution rule reference UID : Identifier Distribution Rule Reference (III:5.3, I:8.4.4) *distribution rule unique identifier : Identifier *applied date and time : TOCD access status : valid from : TOCD valid to : TOCD *negation statement : B access type : *basic distribution rule : B country of application : C Read only +purpose of use Modify Block Healthcare Agent (I:8.4.7, IV:7.10.10) (from I:Healthcare Agent Subsystem) apply DR access : 0..1 0..1 apply new rule +healthcare agent 0..1 invalidate rule purpose of use apply new rule and Who (III:5.5) Distribution Rule (III:5.4) 0..* 0..* code : invalidate previous profession : C *distribution rule unique identifier : Identifier specialisation : C access type : E *engaged in care : B apply DR access : E When (III:5.6) 0..1 0..1 *episode of care : B 0..1 0..1 1..* 1..* episode reference : Identifier episode description : Text Why (III:5.8) Purpose Of Use (III:5.10) 0..* 0..* 0..* 0..* 0..1 0..1 healthcare process code : C *purpose of use code : E healthcare process text : Text purpose of use text : Text Where (III:5.7) How (III:5.9) sensitivity class : C specific purpose of use : C subject of care : B activity : C country specificity : LIST[C] access method : C *legal requirement : B Country codes are specified in EN23166 0..1 0..1 0..1 0..1 0..1 0..1 Consent Required (III:5.13) Healthcare Party Role (III:5.11) 0..1 0..1 Security Policy (III:5.12) consent method code : C healthcare party role text : Text consent method text : Text healthcare party role code : LIST[C] security policy text : Text *signed : B *encrypted distribution : B *encrypted storage : B operating system security rating : C 0..1 0..1 physical security rating : C software security rating : C Healthcare Party (I:8.4.12, IV:7.10.13) (from I:Healthcare Agent Subsystem) 0..* 0..* distribution rule reference 1 0..1 0..1 +Invalidated by 0..1 0..1 Healthcare Agent In Context (I:8.4.8, IV:7.10.11) (from I:Healthcare Agent Subsystem) consent demonstration reference : Identifier 1 1 1 1 +applied by Consent Demonstration +rule author 0..1 1 1 CEN prENV 13606 Electronic Health Care Record Communication

  8. Abstract Use Case: AccessControl Specification of Requested Rights Information Requestor Checking Role TTP Checking Rule Information Decision Administrator Granting Rights Rights Control

  9. Use Case Refinement: RecourceAccessDecision PolicyEvaluatorLocator Administrator Policy Document PolicyEvaluator DecisionCombinator Policy DynamicAttributeService AccessDecision SecuredRecource

  10. Zertifikate nach X.509v3 Certificate ::=SEQUENCE { tbsCertificate TBCCertificate, signatureAlgorithm AlgorithmIdentifier, signature BITString } TBSCertificate::=SEQUENCE { version [0] Version DEFAULT v1, serialNumber CertificateSerialNumber, signature AlgorithmIdentifier, issuer Name, validity Validity, subject Name, subjectPublicKeyInfo SubjectPublicKeyInfo issuerUniqueID [1] IMPLICIT UniqueIdentifier OPTIONAL, (v2 or v3) subjectUniqueID [2] IMPLICIT UniqueIdentifier OPTIONAL (v2 or v3) extensions [3] Extension OPTIONAL, (v3)

More Related