Presentation is loading. Please wait.

Presentation is loading. Please wait.

International Telecommunication Union Workshop on Standardization in E-health Geneva, 23-25 May 2003 The Use of X.509 in E-Healthcare Professor David W.

Similar presentations


Presentation on theme: "International Telecommunication Union Workshop on Standardization in E-health Geneva, 23-25 May 2003 The Use of X.509 in E-Healthcare Professor David W."— Presentation transcript:

1 International Telecommunication Union Workshop on Standardization in E-health Geneva, May 2003 The Use of X.509 in E-Healthcare Professor David W Chadwick University of Salford

2 ITU-T May 2003 Workshop on Standardization in E-health X.509 Public-key and attribute certificate frameworks o X.509 Public Key Infrastructure (PKI) provides a standard for strong authentication, based on public key certificates and certification authorities o X.509 Privilege Management Infrastructure (PMI) provides a standard for strong authorization, based on attribute certificates and attribute authorities

3 ITU-T May 2003 Workshop on Standardization in E-health E-Healthcare Projects o X.509 PKI - Secure access to a hospital Diabetes Information System for high street opticians and general practitioners via the Internet Chadwick, D.W.,Cook, P., Young, A.J., McDowell, D.M., and New, J.P., Can the Internet be used to securely and confidentially access hospital diabetes information systems? British Medical Journal, Vol 321, 9 Sept 2000, pp o X.509 PKI and PMI - Secure authorisations of prescribers, dispensers and patients in the Electronic Transfer of Prescriptions D.W.Chadwick, D.Mundy, "Policy Based Electronic Transmission of Prescriptions", to be presented at IEEE POLICY 2003, 4-6 June, Lake Como, Italy

4 ITU-T May 2003 Workshop on Standardization in E-health X.500/LDAP Repository Registration Authority Subscriber Certification Authority Components of a PKI Public key Private key Public key certificate

5 ITU-T May 2003 Workshop on Standardization in E-health PKI o Authentication is External to the Application Access Control Lists One password or pin to access private key Multiple Administrators High cost of administration No overall Security Policy Digital Signature Public Key Infrastructure Application Gateway

6 ITU-T May 2003 Workshop on Standardization in E-health Client (GP/ Practice Nurse) Netscape/IE + Entrust Direct Client Proxy Hospital Firewall (Checkpoint) Entrust Direct Server Proxy Hospital Diabetes Information System Intranet Internet UoS TTP Server UoS X.500 Server Entrust X.509 CA Firewall MS IIS + CGI scripts DIS Components

7 ITU-T May 2003 Workshop on Standardization in E-health Components of a PMI X.500/LDAP Repository Attribute Authority Attribute certificate Subscriber Target Gateway Privilege Authorization Policy

8 ITU-T May 2003 Workshop on Standardization in E-health PMI o Authentication and Authorisation are External to the Application One password or pin to access private key Fewer Administrators Lower cost of admin Overall Authorization Policy Digital Signature Public Key Infrastructure Application Gateway Privilege Management Infrastructure

9 ITU-T May 2003 Workshop on Standardization in E-health The Salford ETP System

10 ITU-T May 2003 Workshop on Standardization in E-health A Prescription with Bar Codes

11 ITU-T May 2003 Workshop on Standardization in E-health Prescription Store ETP Policy GP Prescribing System Dispensing System PPA System PPA LDAP GMC LDAP RPS LDAP DWP LDAP Dental Prescribing System GDC LDAP Dept for Work and Pensions Exempt= Child Role= Dentist General Dental Council Role= Pharmacist Royal CollegeOf Pharmacy Role= Doctor General Medical Council


Download ppt "International Telecommunication Union Workshop on Standardization in E-health Geneva, 23-25 May 2003 The Use of X.509 in E-Healthcare Professor David W."

Similar presentations


Ads by Google