WS eHealth MediPrima Service presentation. 2 21/08/2012 Access to the WS  Access to the webservice “eCarmed” Certificate required Cfr : Schema eCarmed_WSDL_v1_0_4.zip.

Slides:



Advertisements
Similar presentations
TWO STEP EQUATIONS 1. SOLVE FOR X 2. DO THE ADDITION STEP FIRST
Advertisements

Chapter 10 Encryption: A Matter of Trust. Awad –Electronic Commerce 1/e © 2002 Prentice Hall 2 OBJECTIVES What is Encryption? Basic Cryptographic Algorithm.
Art Foundations Exam 1.What are the Elements of Art? List & write a COMPLETE definition; you may supplement your written definition with Illustrations.
Feichter_DPG-SYKL03_Bild-01. Feichter_DPG-SYKL03_Bild-02.
DIGITAL CERTIFICATES Prof. Ravi Sandhu. 2 © Ravi Sandhu PUBLIC-KEY CERTIFICATES reliable distribution of public-keys public-key encryption sender needs.
Assurance Services Independent professional services that “improve the quality of information, or its context, for decision makers” Assurance service encompass.
1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.
1 Copyright © 2010, Elsevier Inc. All rights Reserved Fig 2.1 Chapter 2.
1 Copyright © 2013 Elsevier Inc. All rights reserved. Chapter 38.
By D. Fisher Geometric Transformations. Reflection, Rotation, or Translation 1.
Chapter 1 Image Slides Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
FpML REPORTING WORKING GROUP Copyright © 2010 International Swaps and Derivatives Association, Inc. JANUARY 2010 – SLIDE 1 ISDA FpML Update Brian Lynn.
REQ Enrollment in Demand Response Programs Process Flow Engineering Firm Retail Customer Demand Response Service Provider (DRSP) Distribution Company.
REQ Drop from Demand Response Programs Process Flow Retail Customer Demand Response Service Provider (DRSP) Distribution Company 1 Drop Request.
Document #07-12G 1 RXQ Customer Enrollment Using a Registration Agent Process Flow Diagram (Switch) Customer Supplier Customer authorizes Enrollment.
Document #07-12G 1 RXQ Customer Enrollment Using a Registration Agent Process Flow Diagram (Switch) Customer Supplier Customer authorizes Enrollment.
Document #07-2I RXQ Customer Enrollment Using a Registration Agent (RA) Process Flow Diagram (Move-In) (mod 7/25 & clean-up 8/20) Customer Supplier.
PASSPrivacy, Security and Access Services Don Jorgenson Introduction to Security and Privacy Educational Session HL7 WG Meeting- Sept
SAML CCOW Work Item: Task 2
WS-Policy F2F Austin, TX July 2006 Report on WS-Policy Interop Workshop of April 2006 (Round 3) Toufic Boubez Layer 7 Technologies.
Presented to: By: Date: Federal Aviation Administration Registry/Repository in a SOA Environment SOA Brown Bag #5 SWIM Team March 9, 2011.
The Managing Authority –Keystone of the Control System
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Jeopardy Q 1 Q 6 Q 11 Q 16 Q 21 Q 2 Q 7 Q 12 Q 17 Q 22 Q 3 Q 8 Q 13
Determine Eligibility Chapter 4. Determine Eligibility 4-2 Objectives Search for Customer on database Enter application signed date and eligibility determination.
Michigan Electronic Grants System Plus
0 - 0.
DIVIDING INTEGERS 1. IF THE SIGNS ARE THE SAME THE ANSWER IS POSITIVE 2. IF THE SIGNS ARE DIFFERENT THE ANSWER IS NEGATIVE.
ADDING INTEGERS 1. POS. + POS. = POS. 2. NEG. + NEG. = NEG. 3. POS. + NEG. OR NEG. + POS. SUBTRACT TAKE SIGN OF BIGGER ABSOLUTE VALUE.
SUBTRACTING INTEGERS 1. CHANGE THE SUBTRACTION SIGN TO ADDITION
MULT. INTEGERS 1. IF THE SIGNS ARE THE SAME THE ANSWER IS POSITIVE 2. IF THE SIGNS ARE DIFFERENT THE ANSWER IS NEGATIVE.
Addition Facts
ZMQS ZMQS
Report Card P Only 4 files are exported in SAMS, but there are at least 7 tables could be exported in WebSAMS. Report Card P contains 4 functions: Extract,
Service Bus Service Bus Access Control.
REGULATIONS for SUPPLIES, EQUIPMENT, REAGENTS and TESTING JILL HOAG BS, SBB(ASCP) CQA(ASQ) AABB STAFF LEAD ASSESSOR 1.
Destaff Overview – A reduction form is used for destaffs for Certified and Administrative positions. Please remember to indicate the current position/location,
15. Oktober Oktober Oktober 2012.
WS-Policy Brian Garback. 2 Agenda  Introduction  Domain Terminology  Policy Expressions  Policy Assertions  Policy Attachments  Conclusion  Policy.
Quality Manual for Interoperability Testing Morten Bruun-Rasmussen Presented by Milan Zoric, ETSI.
31242/32549 Advanced Internet Programming Advanced Java Programming
Past Tense Probe. Past Tense Probe Past Tense Probe – Practice 1.
EMI Development Plans for Identity Management Henri Mikkonen / HIP Moonshot, Grid and HPC Workshop London, UK.
WS-SecureConversation Xiuduan Fang. 2 Agenda Introduction Security Context Token Establishing Security Context Deriving Keys SecureCoversation in Action.
SIMOCODE-DP Software.
The European Organisation for the Safety of Air Navigation AIRM Review Forum AIRM Status Report.
LP Seminar – Madrid – 20 October 2008 EUROPEAN REGIONAL DEVELOPMENT FUND REPORTING & MONITORING PROCEDURES Lead Partner Seminar Madrid, 20 October 2008.
Addition 1’s to 20.
25 seconds left…...
Copyright © 2003 Jorgen Thelin / Cape Clear Software Identity, Security and XML Web Services Jorgen Thelin Chief Scientist Cape Clear Software Inc.
Test B, 100 Subtraction Facts
Week 1.
We will resume in: 25 Minutes.
1 Unit 1 Kinematics Chapter 1 Day
VPN AND REMOTE ACCESS Mohammad S. Hasan 1 VPN and Remote Access.
- 1 - Defense Security Service Background: During the Fall of 2012 Defense Security Service will be integrating ISFD with the Identity Management (IdM)
GFIPM Web Services Concept and Normative Standards GFIPM Delivery Team Meeting November 2011.
Security Standards under Review for esMD. Transaction Timeline An esMD transaction begins with the creation of some type of electronic content (e.g. X12.
1 © Talend 2014 XACML Authorization Training Slides 2014 Jan Bernhardt Zsolt Beothy-Elo
Cross-Enterprise User Assertion IHE Educational Workshop 2007 Cross-Enterprise User Assertion IHE Educational Workshop 2007 John F. Moehrke GE Healthcare.
Dr. Bhavani Thuraisingham October 2006 Trustworthy Semantic Webs Lecture #16: Web Services and Security.
17 March 2008 © 2008 The University of Edinburgh, European Microsoft Innovation Center and University of Southampton IT Innovation Centre 1 NextGRID Security.
Shibboleth Akylbek Zhumabayev September Agenda Introduction Related Standards: SAML, WS-Trust, WS-Federation Overview: Shibboleth, GSI, GridShib.
WS-Trust “From each,according to his ability;to each, according to his need. “ Karl marx Ahmet Emre Naza Selçuk Durna
Copyright © 2003 Jorgen Thelin / Cape Clear Software 1 A Web Services Security Framework Jorgen Thelin Chief Scientist Cape Clear Software Inc.
ESRIN, 15 December 2009 Slide 1 Web Service Security in HMA-T HMA-T Final Presentation 14 December 2009 S. Gianfranceschi, Intecs.
The electronic prescription of medication inside hospitals (ePrescription) General overview 1.
Integrated User and Access Management
Presentation transcript:

WS eHealth MediPrima Service presentation

2 21/08/2012 Access to the WS  Access to the webservice “eCarmed” Certificate required Cfr : Schema eCarmed_WSDL_v1_0_4.zip  eHealth certificates  STS call ( SSO)

3 21/08/2012 Operation available  ConsultCarmedIntervention : obtain information about the intervention accorded (an electronic decision support) and, if applicable, an approval number to guarantee payment Inputs : -Cover identifier (eCarmed number) -OR Patient identifier + Period/Reference date Outputs (if results exist): -Medical card identifier -Medical card content -Approval number

4 21/08/2012 Request specification

5 21/08/2012 Request example test BCSS rights eCarmed

6 21/08/2012 Response specification

7 21/08/2012 eHealth-Certificates: specifications  x509v3 certificate  Issued by GovernmentCA (fedict)  Current Subject specifications CN = Logical name of the certificate O = Official name of the organization OU = Type of identification no. e.g. CBE / NIHII / … SerialNumber = Identification no. of the organization

8 21/08/2012 web services

9 21/08/2012 SSO general principles (1/2)  Purpose Completes the "Integrated user and access management" Access to various services within a single session  Main features Supports ABAC and ZBAC principles Based on SAML protocol  Terminology WSC : web service consumer WSP : web service provider STS : Secure Token Service

10 21/08/2012 SSO general principles (2/2)

11 21/08/2012 STS Request/Response (1/5)  Description of the flows (1) and (2)  Illustration with the set of attributes Recognized pharmacy Recognized pharmacist  Other rules will be supported in the same way Attribute or access oriented

12 21/08/2012 STS Request/Response (2/5) Request general structure  Header deals with 'security of the call to the STS service'  x509 Identification certificate eID eHealth certificate Federal Government  Example: x509:identification of the hospital

13 21/08/2012 STS Request/Response (3/5) Request : SAML elements  Confirmation method: Holder-of-Key Sender-Vouches  Subject SAML assertion Identification Attr. Policy Attr  Attribute to confirm Attributetype  Example claim: recognized general practitioner claim: recognized hospital

14 21/08/2012 STS Request/Response(4/5) Response general structure  General characteristic global Status assertion signed by eH Response to requested claims  Example claim: recognized general practitioner -TRUE claim: recognized hospital -TRUE

15 21/08/2012 STS Request/Response (5/5) Remarks  Attributes not certified Example -claim: recognized pharmacyTRUE -claim: recognized pharmacistFALSE  Technical errors when error occurred while processing request -abort request -error message send to WSC Example -REQ-01: Checks on ConfirmationMethod failed  Time validity each attribute is certified for a certain period

16 21/08/2012 WSC/WSP communication (1/3)  Description of the flow (3)  Illustration with the set of attributes -Recognized hospital -Recognized general practitioner

17 21/08/2012 WSC/WSP communication (2/3) Request general structure  Header deals with 'security of the call to the WSP service'  Identification based on SAML assertion  Example: SAML assertion delivered by eHealth

18 21/08/2012 WSC/WSP communication (3/3) Remark  Verifications to perform by the WSP Validity of x509 certificate -Certificate Revocation List (CRL) -Trusted Certificate Authority Check SAML assertion -Signed by eHealth -Assertion still valid (cfr. Time Validity) Check Holder-Of-Key profile -SAML assertion & x509 and, obviously, its further access rules

19 21/08/2012 SSO specification  The SAML token request is secured with the eHealth certificate of the nihii organization. The certificate used by the Holder-Of-Key verification mechanism is the same eHealth certificate.  Needed attributes : (AttributeNamespace: "urn:be:fgov:identification- namespace"): urn:be:fgov:person:ssin (social security identification number of the person) urn:be:fgov:ehealth:1.0:certificateholder:hospital:nihii-number urn:be:fgov:ehealth:1.0:hospital:nihii-number  Information which must be asserted by eHealth (AttributeNamespace: urn:be:fgov:certifiednamespace:ehealth): urn:be:fgov:person:ssin (social security identification number of the person) urn:be:fgov:ehealth:1.0:certificateholder:hospital:nihii-number urn:be:fgov:ehealth:1.0:hospital:nihii-number urn:be:fgov:ehealth:1.0:hospital:nihii-number:recognisedhopsital: nihii11 (NIHII number of the organization)

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.