Presentation is loading. Please wait.

Presentation is loading. Please wait.

Functional requirements for non- repudiation in eHealth domain For potential eHealth dispute resolution we need the following (among possible other data):

Published byWill Attebury Modified over 9 years ago

Similar presentations

Presentation on theme: "Functional requirements for non- repudiation in eHealth domain For potential eHealth dispute resolution we need the following (among possible other data):"— Presentation transcript:

1 Functional requirements for non- repudiation in eHealth domain For potential eHealth dispute resolution we need the following (among possible other data): – Query contents Like patient identity traits in XCPD Like id of the document requested in XCA Includes document and its metadata in XDR – Response contents Patient demographical data in XCPD Document metadata or full document in XCA OK/Error in XDR (and in fact also in XCPD and XCA) – When this happened and who were involved HCP Patient NCPs

2 What is in the non-rep token? From ISO 13888-1, Non-Repudiation of Origin token (NROT), and assumptions for its implementation in OpenNCP: – Identifier of the non-rep policy – assume constant – Flag indicating the non-rep of the origin – assume constant – Identifier of the originator – assume HCID of the originating NCP – Identifier of the recipient – assume HCID of the target NCP – Timestamp – assume generated by the originating NCP – Optional additional info such as message id, signature and hash algorithm ids, certificates – assume not needed, as it is included in XML Digital Signature. – Message itself (like query or response data, including possible documents) or its hash – assume this is the message itself, with possible documents, as message contents is needed for dispute resolution – The signature on everything listed above – assume this is an enveloped XML Digital Signature. Data missing from the current implementation is bolded. The timestamp is present, but not precise enough (only date). The contents of the token must be stored by the NCP or NI for dispute resolution

3 Response Query Current implementation, Patient Identification (XCPD) NCP BNCP A HCP ID assertion Query data Patient id, name, etc. Basic ATNA audit data HCP ID assertion Signed data in italics

4 Response Query Implementation with Non-rep BB, Patient Identification (XCPD) NCP BNCP A HCP ID assertion Query data Patient id, name, etc. ATNA audit incl. assertions Non-rep token B Non-rep token A Full query and full response Signed data in italics ATNA audit incl. assertions

5 Response Query Current implementation, Document retrieve (XCA) NCP BNCP A HCP ID assertion Document ID, reg. ID, HCID Document metadata Basic ATNA audit data HCP ID assertion TRC assertion Basic ATNA audit data HCP ID assertion TRC assertion Document Signed data in italics

6 Response Query Implementation with Non-rep BB, Document retrieve (XCA) NCP BNCP A HCP ID assertion Document ID, reg. ID, HCID Document metadata TRC assertion Document Non-rep token B Non-rep token A Full query and full response Signed data in italics ATNA audit incl. assertions

7 Disclaimer to the previous images Only Non-Repudiation of Origin (NRO) is covered. – However, in synchronous communication the NRO token of the response may be considered for Non- Repudiation of Delivery (NRD), as the response includes the query ID and other data (but not in XDR). – Might as well include the full NRD token in the response for stronger non-repudiation of delivery.

8 What if… As most of the data required by the non-rep token is already included in the messages exchanged by the NCP, Could we add any missing data in the messages and sign the messages (XML Digital Signature)? Then we need to store full messages on the evidence log (in NCP if legally possible or in NI) Perhaps this is too simple? – Might as well skip ETSI REM – Might as well skip XACML policies – Might as well skip ATNA extensions – But still it seems to fulfil the functional requirements

9 Need to better understand what is brought by these standards ETSI REM helps us to be politically closer to other eSENS use cases. Techically: – Other eSENS use cases use asynchronous communication, in which ETSI REM protocol is suitable (but not suitable as a communication type/protocol in eHealth). – Is OpenNCP planned to be used for implementing other eSENS use cases? Does it need to support asynchronous communication and full ETSI REM? – ETSI REM has an extensible schema for writing evidence data. We might or might not use it. Using only the schema defined in REM without any other REM functionality does not bring OpenNCP much closer to eSENS – what should be done to make this happen?

10 Need to better understand what is brought by these standards Support for XACML policies makes it possible to define different processing rules for different NCPs – Currently no XACML policy engine is implemented in OpenNCP, this was discussed last in winter 2012-2013. – No clear PEP PIP PDP PAP services, though implementation of the assertion validator is a separate module (Java API). – Implementing a full XACML policy engine is a considerable effort for OpenNCP. – Most of the policy rules are mandated by epSOS. There is support for certain variation country-by-country (DefaultPolicyManager provided by OpenNCP, may be overridden in each country). – Do we define a standard non-rep policy for eHealth or do we need to support varying policies?

11 Need to better understand what is brought by these standards IHE ATNA extensions: need to better understand what they are. – IHE ATNA has progressed since OpenNCP implementation, new version of the standard needs to be accommodated? – Are there any extensions related to the non-rep solution? If there are, need to understand their function.

12 Some other stupid questions If the target of CEF is to establish a common message exchange infrastructure, do we need to define a common set of rules, protocols, and a common implementation? – Like Estonian X-Road – Or Microsoft BizTalk but without a central server – Or any other ESB-type solution Communicatoin protocols vary by domains, do we define a common message exchange protocol instead of, or in addition to, or on top of them? Is OpenNCP thought as a start of the European ”information backbone”? It only supports eHealth and synchronous communication at the moment.

Download ppt "Functional requirements for non- repudiation in eHealth domain For potential eHealth dispute resolution we need the following (among possible other data):"

Similar presentations

IHE ITI Profile Proposal XCA Query and Retrieve Fraunhofer ISST and Tiani Spirit on behalf of epSOS Consortium and epSOS Industry Team.

IHE ITI Profile Proposal XCA Query and Retrieve Fraunhofer ISST and Tiani Spirit on behalf of epSOS Consortium and epSOS Industry Team.
1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.

1 Key Exchange Solutions Diffie-Hellman Protocol Needham Schroeder Protocol X.509 Certification.
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.

Public Key Infrastructure A Quick Look Inside PKI Technology Investigation Center 3/27/2002.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.

CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
EsMD Harmonization Use Case 1: Initial Technical Approach HPD Plus Erik Pupo.

EsMD Harmonization Use Case 1: Initial Technical Approach HPD Plus Erik Pupo.
1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.

1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.
M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.

M.Sc. Hrvoje Brzica Boris Herceg, MBA Financial Agency – FINA Ph.D. Hrvoje Stancic, assoc. prof. Faculty of Humanities and Social Sciences Long-term Preservation.
This presentation prepared for Now is the time to initiate the one change that will have the most leverage across your business systems Patient Identity.

This presentation prepared for Now is the time to initiate the one change that will have the most leverage across your business systems Patient Identity.
OpenNCP technology, architecture and use in a real pilot environment

OpenNCP technology, architecture and use in a real pilot environment
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Authz work in GGF David Chadwick

Authz work in GGF David Chadwick
Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.

Web Services and the Semantic Web: Open Discussion Session Diana Geangalau Ryan Layfield.
E-SENS Electronic Simple European Networked Services e-SENS CC5.2 F2F Porto, May 12/13, 2015 SMP & SML Massimiliano Masi.

E-SENS Electronic Simple European Networked Services e-SENS CC5.2 F2F Porto, May 12/13, 2015 SMP & SML Massimiliano Masi.
1 Regulating the Synchronous Interaction of Web-Services Constantin Serban Department of Computer Science Rutgers University.

1 Regulating the Synchronous Interaction of Web-Services Constantin Serban Department of Computer Science Rutgers University.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Homework #5 Solutions Brian A. LaMacchia Portions © 2002-2006, Brian A. LaMacchia. This material is provided without.

Homework #5 Solutions Brian A. LaMacchia Portions © , Brian A. LaMacchia. This material is provided without.
Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.

Long-term Archive Service Requirements draft-ietf-ltans-reqs-00.txt.
Web services security I

Web services security I
Pay As You Go – Associating Costs with Jini Leases By: Peer Hasselmeyer and Markus Schumacher Presented By: Nathan Balon.

Pay As You Go – Associating Costs with Jini Leases By: Peer Hasselmeyer and Markus Schumacher Presented By: Nathan Balon.

Similar presentations

Ads by Google