Presentation is loading. Please wait.

Presentation is loading. Please wait.

September 2009 Dr. Markus Mackenbrock 1 The use of Common Criteria for the German Health System Dr. Markus Mackenbrock Bundesamt für Sicherheit in der.

Published byMagnus Rich Modified over 7 years ago

Similar presentations

Presentation on theme: "September 2009 Dr. Markus Mackenbrock 1 The use of Common Criteria for the German Health System Dr. Markus Mackenbrock Bundesamt für Sicherheit in der."— Presentation transcript:

1 September 2009 Dr. Markus Mackenbrock 1 The use of Common Criteria for the German Health System Dr. Markus Mackenbrock Bundesamt für Sicherheit in der Informationstechnik (BSI) Federal Office for Information Security

2 2 September 2009Dr. Markus Mackenbrock  National Authority for Information Assurance established by law in 1991  Certification according to CC and ITSEC  Development of test requirements like Protection Profiles (PP) and Technical Guidelines (TG)  Accredited evaluation labs: (12 for CC)  Types of products certified: HW, smart card controllers, OS, SW  Protection Profiles released: >40 ... Introduction of the BSI

3 3 September 2009Dr. Markus Mackenbrock Introduction The electronic Health Card (eHC): Due to be rolled-out nation wide in 2009, the electronic health card is one of Germany’s most important public sector IT projects. The card is designed to guarantee the secure exchange of data between - insured parties - doctors - pharmacists and - health insurance companies and will serve to validate patient’s identity rather than to hold their electronic medical record.

4 4 September 2009Dr. Markus Mackenbrock Introduction The eHC is a microprocessor chipcard (SmartCard) with cryptographic functions. The personalized eHC contains essential information about the card-holder, the holder’s picture and signature.

5 5 September 2009Dr. Markus Mackenbrock Introduction Introduction to the German eHealth Card Reasons: Improvement of the quality and availability of health data: - better information systems for medical service providers - more efficient communication - better availability of relevant data for treatment - prevention against fraud - increase of treatment quality - higher cost efficiency

6 6 September 2009Dr. Markus Mackenbrock Design of the eHC Prof. Dr. Friedrich Mustermann Musterkrankenkasse 123456789 A123456789 Reverse side Specified in accordance with the European Electronic Health Card

7 7 September 2009Dr. Markus Mackenbrock Applications Mandatory applications: - identity data / cardholder identification - e-prescription - EHIC - European Health Insurance Card Optional applications: - Emergency data - Doctor's notes - Patient's medicine data - Patient records -... For these optional applications the patient has to give his consent.

8 8 September 2009Dr. Markus Mackenbrock Development of IT security testing requirements at the instigation of the government. - In agreement with different ministries BSI develops evaluation requirements in cooperation with its accredited test laboratories and the IT industry In detail: Development of - Protection Profiles and - Technical Guidelines (In German: Technische Richtlinien TR) for the evaluation and certification of products and components Role of BSI

9 9 September 2009Dr. Markus Mackenbrock Laws and Provisions Test Requirements  TG, PP Conformity testing scheme Certified Products Bodies e.g.Ministry of Health BSI Testing Requirements/ Protection Profiles

10 10 September 2009Dr. Markus Mackenbrock The Concept Functional Requirements Assurance Requirements CC-Protection Profile Requirements for functionality, assurance, rationales Specifications for procurement CC-Protection Profile Further requirements

11 11 September 2009Dr. Markus Mackenbrock eHC - Specification The eHC specification defines:  Mandatory commands of the eHC  the crypto algorithms used, e.g. RSA, DES, SHA-1  Crypto protocols, e.g. Secure Messaging  Required data structures within the eHC  Data access rules For a PP these elements have to be defined by the “Security Functional Requirements” of the CC

12 12 September 2009Dr. Markus Mackenbrock Approvel of Components for the Telematic- Infrastructure Functional Tests Conformity tests Integration tests Interoperability tests by gematik Security tests IT security certification Approved certification body BSI Material tests/ Safety Tests Electrical, physical and mechanical tests Test laboratories gematik Approval body, oversees the German e-health card project Legal basis for the eHC: § 291 SGB V - Krankenversichertenkarte

13 13 September 2009Dr. Markus Mackenbrock Roles and Tasks gematik Approval of all components of the telematic infrastructure BSI Certification of components and products Approval based on electronic signature act Development of test requirements like Protection Profiles and Technical Guidelines gematik Specification of IT components BMG (Ministry for Health) laws and regulations

14 14 September 2009Dr. Markus Mackenbrock Key Security Components to be certified: eHC – Insurance card for 80 mill. patients. It replaces the KVK (magnetic strip only) in 2009 HPC - Health professional card for some 500.000 doctors, pharmacists etc. (for all health care providers and medical service providers) SMC – Secure module card; card to be used by an institution (doctor's practice, hospital etc.) Connector – Connects and controls the doctor's practice and the Telematic Infrastructure (access rights etc.) Card Terminal – Write and read the different cards eKiosk – Terminal for the patient to read and set permissions on the eHC Protection Profiles for the German Health System

15 15 September 2009Dr. Markus Mackenbrock Health Professional Card (HPC) HPC: Functions and Tasks: - Authentication of the card holder by means of a PIN, - Mutual authentication between the HPC and an electronic Health Card (eHC) - Mutual authentication between the HPC and a Security Module Card (SMC) - Decipherment of health data for external applications - Client-server authentication for a client - Qualified electronic signature

16 16 September 2009Dr. Markus Mackenbrock SMC Typ A eHC/SMC Authentication HPC/SMC Authentication SMC ‏ SMC Typ B eHC/SMC Authentication HPC/SMC Authentication Decryption of documents Authentication against server SMC (Secure Module Card)

17 17 September 2009Dr. Markus Mackenbrock Connector The communications infrastructure is protected against access by several gateways. The connector provides the functionality of a VPN-client and includes a packet filter. 4 Different connector types/parts: - SM-K (secure module) - Network connector - Application connector “enhanced basic“ - Application connector “high“

18 18 September 2009Dr. Markus Mackenbrock These PPs are developed for CCv2.3 as well as for CCv3.1. All PPs for eHC, HPC and SMC require: CC Version 2.3: EAL4, SOF high and augmented by AVA_MSU.3 and AVA_VLA.4 CC Version 3.1: EAL4, augmented by AVA_VAN.5 These requirements are state of the art for chip cards/ smart cards. Protection Profiles for the German Health System

19 19 September 2009Dr. Markus Mackenbrock normative and operative tasks gematik Doctor's pratice eHC, HPC Pharmacy eHC, HPC Hospital eKiosk eHC, HPC eHC C C C C Health insurance C Medical association C Telematic Platform provides superordinated services - time services - number assignments C Connecto r Health Professional Cardelectronic Heath Card Card Application management system Trust center Infrastructure

20 20 September 2009Dr. Markus Mackenbrock Special Problem: Number of signatures for prescriptions Each prescription must be signed by using a qualified electronic signature. This may be about hundred signatures each day. The German electronic signature act describes only the single signature in detail. Other use cases have to be interpreted: - Batch signature - Convenience signature Digital Signature of Prescriptions

21 21 September 2009Dr. Markus Mackenbrock Batch signature Conventional PIN method: - each electronic prescription has to be signed electronically by a 6-digit PIN Batch signature method: The single input of a 6-digit PIN enables the electronic signature of - multiple electronic prescriptions within a fixed time scale or - a definite number of electronic prescriptions

22 22 September 2009Dr. Markus Mackenbrock In detail: A number of documents/lots of data have to be signed The Secure Viewer Component enables the inspection of the documents to be signed. - Confirmation of the documents chosen - One-time input of the PIN on a terminal - Signing the documents and closing the signature card after completion Batch Signature

23 23 September 2009Dr. Markus Mackenbrock Input of the PIN (one time) at the beginning of working hours (to activate the signature card)‏. The number of documents which have to be signed is not yet fixed at this time. - Selection of documents during working hours - Possibility to display the document(s) Activation of the signature during working hours by an additional authentication by a token - by using a biometric device or - by presentation of a shortened PIN (e.g. 3 digits) Convenience Signature

24 24 September 2009Dr. Markus Mackenbrock A combination of both methods is possible. A batch of documents to be signed can be signed by using the convenience signature method. This methods will be used for the HPC within the German health system. BSI has developed two Technical Guidelines (TR 03114 and TR 03115). The implementation of these methods requires cryptographic functions. For the application within the German health system BSI has developed and published the Technical Guideline BSI-TR-03116 for all eCard projects of the government. Batch- and Convenience Signature

25 25 September 2009Dr. Markus Mackenbrock Certification at BSI Product list for the German eHealth System in evaluation/finalised (June 2009): Product TypeProducts eHC7 HPC8 HSM-module2 SMC2 Connector 4 VPN-concentrator 1 Terminals16

26 26 September 2009Dr. Markus Mackenbrock Conclusions CC CC are more and more required for public procurements like: US-Gov‘t Directive, G8-CIP-Principles, EU, NATO. In Germany: Health system, electronic signature law, passports, ID-card... The concept of Protection Profiles and Technical Guidelines provides IT developers an adequate specification/methode of their IT security requirements.

27 27 September 2009Dr. Markus Mackenbrock Conclusions The German Health System All security relevant components of the Telematic Infrastructure will be evaluated and certified, based on testing requirements like PPs and TRs of BSI. Based on this fact almost every citizen in Germany will own at least one Common Criteria certified product. This is a big outcome and success for the Common Criteria !

28 28 September 2009Dr. Markus Mackenbrock Further Information - for the Protection Profiles and Technical Guidelines: www.bsi.bund.de.www.bsi.bund.de - for the functional specifications of the German health system: www.gematik.de.www.gematik.de

29 29 September 2009Dr. Markus Mackenbrock Contact Bundesamt für Sicherheit in der Informationstechnik (BSI)‏ Dr. Markus Mackenbrock Godesberger Allee 185 - 189 D- 53175 Bonn Tel: +49 228-9582-5334 Fax: +49 228-10-9582-5334 Markus.Mackenbrock@bsi.bund.de www.bsi.bund.de www.bsi-fuer-buerger.de

Download ppt "September 2009 Dr. Markus Mackenbrock 1 The use of Common Criteria for the German Health System Dr. Markus Mackenbrock Bundesamt für Sicherheit in der."

Similar presentations

Kristiina Rebane Ministry of Social Affairs of Estonia eHealth in Estonia.

Kristiina Rebane Ministry of Social Affairs of Estonia eHealth in Estonia.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
Bundesamt für Sicherheit in der Informationstechnik EESSI - WS May 11.-12., 2000, Paris, Folie 1/18Klaus J. Keus, BSI Electronic Signatures in Germany,

Bundesamt für Sicherheit in der Informationstechnik EESSI - WS May , 2000, Paris, Folie 1/18Klaus J. Keus, BSI Electronic Signatures in Germany,
Secure Electronic Health Records: The German Experience By Michael Deighan.

Secure Electronic Health Records: The German Experience By Michael Deighan.
Security Infrastructure and National Patient Summary Mats Hagner. Project Manager Carelink AB

Security Infrastructure and National Patient Summary Mats Hagner. Project Manager Carelink AB
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.

© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.

FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
BSI activities in developing PPs and the BSI-PP/ST-Guide Bundesamt für Sicherheit in der Informationstechnik / Federal Office for Information Security.

BSI activities in developing PPs and the BSI-PP/ST-Guide Bundesamt für Sicherheit in der Informationstechnik / Federal Office for Information Security.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Building of Secured Integrated Infrastructure trough Introducing eHealth Cards 17.06.2008 – Jörg Stadler.

Building of Secured Integrated Infrastructure trough Introducing eHealth Cards – Jörg Stadler.
Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,

Jaroslav Pinkava May 2001 Certification Authority in Praxis. Security Aspects. Conference Security and Protection of Information Ing. Jaroslav Pinkava,
2002 10 21 Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.

Implementation of Electronic Signature Law Kęstutis Andrijauskas Information Society Development Committee under the Government of the Republic.
Massachusetts: Transforming the Healthcare Economy John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.

Massachusetts: Transforming the Healthcare Economy John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.
Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.

Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.
Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.

Federal Information Processing Standard (FIPS) 201, Personal Identity Verification for Federal Employees and Contractors Tim Polk May.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Information Security of Embedded Systems 3.2.2010: Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
Electronic Data Interchange (EDI)

Electronic Data Interchange (EDI)
CAMP - June 4-6, 2003 1 Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin 2003. This work is the intellectual property of the authors.

CAMP - June 4-6, Copyright Statement Copyright Robert J. Brentrup and Mark J. Franklin This work is the intellectual property of the authors.

Similar presentations

Ads by Google