1 / 11

Deployment Models

Deployment Models. e-Mail client (no S/MIME) NHIN-Direct developed security agent off-the-shelf S/MIME proxy e-Mail client using Native S/MIME Internet e-Mail Service Provider Healthcare specific e-Mail Service Provider Web Portal to common Internet e-Mail service with S/MIME support

laurie
Télécharger la présentation

Deployment Models

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Deployment Models e-Mail client (no S/MIME) NHIN-Direct developed security agent off-the-shelf S/MIME proxy e-Mail client using Native S/MIME Internet e-Mail Service Provider Healthcare specific e-Mail Service Provider Web Portal to common Internet e-Mail service with S/MIME support to Healthcare specific messaging service with S/MIME support EHR/PHR with integrated S/MIME functionality deployed inside the Provider deployed as SaaS NHIN Direct to/from NHIN Exchange Trusted NHIN Gateway End to End secure

  2. A) e-Mail client with Full Service HISP Source Client Source Full Service HISP Destination Full Service HISP Destination Client Document Or XDM Document Or XDM A.3 Locate Destination Certificate A.10 POP/IMAP + TLS A.1 A.4 A.11 Locate Destination Address S/MIME Sign w/ Private Key S/MIME Verify w/ Source Cert Private Key Store A.9 Private Key Store SMTP + MIME+ TLS A.2 S/MIME Decrypt w/ Private Key A.5 A.8 S/MIME Encrypt w/ Destination Cert Encrypted Content A.7 A.6 SMTP + S/MIME Send Receive

  3. B) e-Mail client using Native S/MIME Source Client Destination HISP Destination Client Document Or XDM Document Or XDM B.1 B.9 Locate Destination Address + Certificate S/MIME Verify w/ Source Cert B.8 B.2 Private Key Store S/MIME Decrypt w/ Private Key S/MIME Sign w/ Private Key Private Key Store B.7 B.6 POP/IMAP + TLS B.3 S/MIME Encrypt w/ Destination Cert Encrypted Content B.4 B.5 SMTP + S/MIME Send Receive

  4. C) Web Portal Source Client Source web HISP Destination web HISP Destination Client C.2 Document Or XDM Upload Document(s) Document Or XDM C.3 Build XDM C.1 Download Document(s) HTTP + TLS C.12 HTTP + TLS C.4 C.11 Find Destination Address + Certificate S/MIME Verify w/ Source Cert Private Key Store C.10 Private Key Store C.5 S/MIME Sign w/ Private Key S/MIME Decrypt w/ Private Key C.6 C.9 S/MIME Encrypt w/ Destination Cert Encrypted Content C.8 C.7 SMTP + S/MIME Send Receive

  5. D) EHR/PHR with integrated S/MIME Source Client Destination HISP Destination Client Document Or XDM Document Or XDM D.1 D.9 Locate Destination Address + Certificate S/MIME Verify w/ Source Cert D.8 Private Key Store Private Key Store D.2 S/MIME Decrypt w/ Private Key S/MIME Sign w/ Private Key D.6 POP/IMAP + TLS D.7 D.3 Encrypted Content S/MIME Encrypt w/ Destination Cert D.4 D.5 SMTP + S/MIME Send Receive

  6. E) Direct Project sending to XDR with Trusted Service Provider (e.g. NHIN Exchange) Gateway: Direct Project to XDR (Destination HISP) Endpoint in XDR Exchange E.1.7 Convert XDM metadata and content to XDR format XDR + TLS Address Book w/ Certs E.1.6 E.1.5 S/MIME Verify w/ Source Cert E.1.4 E.1.3 S/MIME Decrypt w/ Private Key Private Key Store Direct Project Sender E.1.2 Destination Certificate is shared with all XDR destinations in XDR Exchange SMTP + S/MIME E.1.1 Receive

  7. E) Direct Project receiving from XDR with Trusted Service Provider (e.g. NHIN Exchange) Endpoint in XDR Exchange Gateway: Direct Project from XDR (Source HISP) Convert XDR Metadata and Documents to XDM Zip file E.2.1 XDR + TLS E.2.2 Extract Destination Address from XDR metadata Address Book w/ Certs E.2.3 E.2.4 Locate Destination Certificate E.2.5 E.2.6 S/MIME Sign w/ Private Key Private Key Store Direct Project Recipient E.2.7 S/MIME Encrypt w/ Destination Cert SMTP + S/MIME E.2.8 E.2.9 Send

  8. E) NHIN Direct sending to non-trusted NHIN Exchange (End-to-End Secure) NHIN Direct to NHIN Exchange (Destination HISP) NHIN Exchange Place S/MIME message as XDR content XDR + TLS Destination Certificate is Individual or Organization NHIN Direct SMTP + S/MIME Receive

  9. E) NHIN Direct sending to NHIN Exchange NHIN Direct to NHIN Exchange (Destination HISP) NHIN Exchange Convert XDM metadata and content to XDR format Place S/MIME message as XDR content XDR + TLS S/MIME Verify w/ Source Cert Destination Certificate is Individual or Organization S/MIME Decrypt w/ Private Key NHIN Direct Destination Certificate is Group NHIN Exchange SMTP + S/MIME Receive

  10. E) NHIN-Direct receiving from non-Trusted NHIN Exchange (End-to-End Secure) NHIN Exchange Non Trusted NHIN Exchange Gateway Source Certificate is individual or organizational Source Client Extract from XDM metadata the To and From addresses XDM Zip file Locate Destination Address + Certificate NHIN Direct Extract S/MIME message from XDR content S/MIME Sign w/ Private Key XDR + TLS S/MIME Encrypt w/ Destination Cert SMTP + S/MIME

  11. E) NHIN-Direct receiving from NHIN Exchange NHIN Exchange Non Trusted NHIN Exchange Gateway Trusted NHIN Exchange Gateway Convert XDR Metadata and Documents to XDM Zip file XDR + TLS Source Certificate is NHIN Exchange Group Certificate Extract Destination Address from XDR metadata Source Certificate is individual or organizational Source Client Locate Destination Certificate Extract from XDM metadata the To and From addresses XDM Zip file Locate Destination Address + Certificate S/MIME Sign w/ Private Key NHIN Direct Extract S/MIME message from XDR content S/MIME Sign w/ Private Key S/MIME Encrypt w/ Destination Cert XDR + TLS S/MIME Encrypt w/ Destination Cert SMTP + S/MIME Send

More Related