1 / 11

The Use of X.509 in E-Healthcare

The Use of X.509 in E-Healthcare. Professor David W Chadwick University of Salford. X.509 Public-key and attribute certificate frameworks. X.509 Public Key Infrastructure (PKI) provides a standard for strong authentication, based on public key certificates and certification authorities

mick
Télécharger la présentation

The Use of X.509 in E-Healthcare

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. The Use of X.509 in E-Healthcare Professor David W Chadwick University of Salford

  2. X.509 Public-key and attribute certificate frameworks • X.509 Public Key Infrastructure (PKI) provides a standard for strong authentication, based on public key certificates and certification authorities • X.509 Privilege Management Infrastructure (PMI) provides a standard for strong authorization, based on attribute certificates and attribute authorities Workshop on Standardization in E-health

  3. E-Healthcare Projects • X.509 PKI - Secure access to a hospital Diabetes Information System for high street opticians and general practitioners via the Internet • Chadwick, D.W.,Cook, P., Young, A.J., McDowell, D.M., and New, J.P., “Can the Internet be used to securely and confidentially access hospital diabetes information systems?” British Medical Journal, Vol 321, 9 Sept 2000, pp 612-614. • X.509 PKI and PMI - Secure authorisations of prescribers, dispensers and patients in the Electronic Transfer of Prescriptions • D.W.Chadwick, D.Mundy, "Policy Based Electronic Transmission of Prescriptions", to be presented at IEEE POLICY 2003, 4-6 June, Lake Como, Italy Workshop on Standardization in E-health

  4. Components of a PKI Certification Authority Registration Authority Public key X.500/LDAP Repository Public key certificate Subscriber Private key Workshop on Standardization in E-health

  5. PKI Access Control Lists • Authentication is External to the Application Application Gateway Digital Signature Public Key Infrastructure One password or pin to access private key Multiple Administrators High cost of administration No overall Security Policy Workshop on Standardization in E-health

  6. DIS Components Entrust Direct Server Proxy MS IIS + CGI scripts Hospital Hospital Firewall Diabetes Intranet (Checkpoint) Information System UoS X.500 Internet Server Entrust Client Netscape/IE Firewall X.509 CA (GP/ + Practice Entrust Direct UoS Nurse) Client Proxy TTP Server Workshop on Standardization in E-health

  7. Components of a PMI Attribute Authority Target Gateway Authorization Policy X.500/LDAP Repository Attribute certificate Privilege Subscriber Workshop on Standardization in E-health

  8. PMI • Authentication and Authorisation are External to the Application Application Gateway Digital Signature Application Public Key Infrastructure One password or pin to access private key Privilege Management Infrastructure Fewer Administrators Lower cost of admin Overall Authorization Policy Workshop on Standardization in E-health

  9. The Salford ETP System Workshop on Standardization in E-health

  10. A Prescription with Bar Codes Workshop on Standardization in E-health

  11. Role= Dentist ETP Policy Role= Doctor Exempt= Child Role= Pharmacist Dept for Work and Pensions Royal CollegeOf Pharmacy General Medical Council Dental Prescribing System PPA System General Dental Council GDC LDAP Prescription Store PPA LDAP RPS LDAP Dispensing System GP Prescribing System GMC LDAP DWP LDAP Workshop on Standardization in E-health

More Related