The Crossroads Bank for Social Security, a model for the health care sector ? Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.

Slides:



Advertisements
Similar presentations
© fedict All rights reserved Legal aspects Belgian electronic identity card Samoera Jacobs – November 2008.
Advertisements

Module N° 4 – ICAO SSP framework
Re-use of PSI Data Protection Issues Cécile de Terwangne Professor at the Law Faculty, Research Director at CRIDS University of Namur (Belgium) 2 nd LAPSI.
Research and Innovation Participant Portal Concept for electronic-only grant management in Horizon 2020 Peter HÄRTWICH
E-ID and identity management aspects in the Belgian social sector Frank Robben General Manager Crossroads Bank for Social Security General Manager SmalS-MvM.
The data retention directive: data protection aspects Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg 375 B-1040.
Supporting National e-Health Roadmaps WHO-ITU-WB joint effort WSIS C7 e-Health Facilitation Meeting 13 th May 2010 Hani Eskandar ICT Applications, ITU.
E-government programme of the Belgian social sector for small and medium-sized enterprises Frank Robben General manager Crossroads Bank for Social Security.
© Southampton City Council Sean Dawtry – Southampton City Council The Southampton Pathfinder for Smart Cards in public services.
FIPS 201 Personal Identity Verification For Federal Employees and Contractors National Institute of Standards and Technology Information Technology Laboratory.
Confidentiality and Privacy Controls
E-government. 2 What is E-government ? n E-government is a continuous optimization of service delivery and governance by transforming internal and external.
Page 1 Issues in and perspectives on electronic authentication of health professionals Pascal POITEVIN Marketing and Communication manager GIP-CPS e-Health.
Crossroads Bank for Social Security & eHealth platform How federal institutions support Belgian social and health care sector.
E-government in the Belgian social sector coordinated by the Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social.
David L. Wasley Information Resources & Communications Office of the President University of California Directories and PKI Basic Components of Middleware.
Security Controls – What Works
Conditions for an effective and efficient E-government Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.
Some initiatives of the Belgian government in order to stimulate E-government Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
EGovernment in the Belgian social sector, co-ordinated by the Crossroads Bank for Social Security Peter Maes Head of department for studies Sint-Pieterssteenweg.
Introduction to the data warehouse labour market and social protection CBSS Frank Robben General Manager Crossroads Bank for Social Security
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
Ministry of Transport, Information Technology and Communications Technological base: Interoperability Tsvetanka Kirilova Ministry of TITC Bulgaria.
E-government in the Belgian social security sector: a successful combination of back- office integration and an e-portal solution Crossroads Bank for Social.
The new Belgian legal framework for eHealth Frank Robben General manager eHealth-platform Sint-Pieterssteenweg 375 B-1040 Brussels
National Smartcard Project Work Package 8 – Security Issues Report.
Belgian proposal of an organization model for an electronic identity card Frank Robben General Manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
Auditing Logical Access in a Network Environment Presented By, Eric Booker and Mark Ren New York State Comptroller’s Office Network Security Unit.
1st MODINIS workshop Identity management in eGovernment Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public.
Strategic importance of identity and access management (IAM) The case of the Belgian social and health sector Frank Robben General manager Crossroads Bank.
E-government: from hype to reality Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg.
Integrated Electronic User and Access Management in the Belgian Public, Social and Health Care Sector Frank Robben General manager Crossroads Bank for.
LEFIS W2 Posgraduate Workshop 1 LEFIS, WG 2 Postgraduate studies Meeting, Rotterdam.
How can I trust the rest of Europe ? Requirements and a possible organisation with regard to epSOS and eHealth Frank Robben General manager eHealth platform.
Health Insurance Portability and Accountability Act of 1996 (HIPAA) Proposed Rule: Security and Electronic Signature Standards.
E-government Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public Service for ICT Sint-Pieterssteenweg 375.
Nationwide Health Information Network: Conditions for Trusted Exchange Request For Information (RFI) Steven Posnack, MHS, MS, CISSP Director, Federal Policy.
Be-Health as a driving force of electronic cooperation in the Belgian health care sector, based on the experience in the social sector Frank Robben General.
Electronic information exchange within the Belgian social sector coordinated by the Crossroads Bank for Social Security Frank Robben General manager Crossroads.
State Alliance for e-Health Conference Meeting January 26, 2007.
How to integrate back-office processes to guarantee an optimal service delivery to customers ? Frank Robben General manager Crossroads Bank for Social.
ISO17799 Maturity. Confidentiality Confidentiality relates to the protection of sensitive data from unauthorized use and distribution. Examples include:
Towards a European network for digital preservation Ideas for a proposal Mariella Guercio, University of Urbino.
Electronic identity management for eGovernment Conceptual framework and objectives Frank Robben General manager Crossroads Bank for Social Security Strategic.
Integrated services delivery based on eGovernment Frank Robben General manager Crossroads Bank for Social Security & eHealth-platform Sint-Pieterssteenweg.
E-government in the Belgian social sector, co-ordinated by the Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social.
Integrated information management in the Belgian social sector Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal.
Service oriented E-government in the Belgian social sector Frank Robben General manager SmalS-MvM General manager Crossroads Bank for Social Security
Frank Robben General Manager CBSS and eHealth platform CEO Smals Sint-Pieterssteenweg 375 B-1040 Brussels Website CBSS:
Transboundary Trust Space February 16, 2012 Ensuring trust in information exchange – proposal and approaches from Russia and CIS-states (RCC states) National.
Second Generation Electronic Filing Specifications Legal XML Court Filing Committee April 26, 2004.
Electronic exchange of information within the social sector Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg 375 B-1040.
Some identification needs related to workers’ mobility eGovernment – eIDM ad hoc group meeting 4-5 May 2006 CBSS Crossroads Bank for Social Security Frank.
1 European eGovernment Awards 2007 European eGovernment Awards 2007 Workshop for Finalists July, Brussels LIMOSA Belgium Reference project number.
Copyright © 2013 by The McGraw-Hill Companies, Inc. All rights reserved.McGraw-Hill/Irwin.
Is Service Oriented Architecture delivering its promise ? The case of the Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank.
The pillars of E-government Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public Service for ICT Sint-Pieterssteenweg.
Data protection as an integral part of OOP implementations: The Austrian approach Peter Kustor.
International Security Management Standards. BS ISO/IEC 17799:2005 BS ISO/IEC 27001:2005 First edition – ISO/IEC 17799:2000 Second edition ISO/IEC 17799:2005.
Back office integration for better E-government services Crossroads Bank for Social Security Frank Robben General manager Crossroads Bank for Social Security.
HIT Policy Committee NHIN Workgroup HIE Trust Framework: HIE Trust Framework: Essential Components for Trust April 21, 2010 David Lansky, Chair Farzad.
Interoperability in the Belgian social sector Frank Robben General manager Crossroads Bank for Social Security Strategic advisor Federal Public Service.
Bulding blocks of e- government Ingmar Pappel. Bulding blocks of e-government  Personal Code  Digital Identity  Digital signature  X-Road  Organizations.
A model for electronic data exchange in the public sector Kruispuntbank van de Sociale Zekerheid Banque Carrefour de la Sécurité sociale KSZ-BCSS Frank.
Training for developers of X-Road interfaces
Efficient and secure transborder exchange of patient data
Public Sector Institutional Reform Project
Dashboard eHealth services: actual mockup
Towards a frictionless social security
Presentation transcript:

The Crossroads Bank for Social Security, a model for the health care sector ? Frank Robben General manager Crossroads Bank for Social Security Sint-Pieterssteenweg 375 B-1040 Brussels Website CBSS: Personal website: Crossroads Bank for Social Security

2 12/06/2003 Crossroads Bank for Social Security Structure of the presentation n relevant similarities between the social security sector and the health care sector n the model of the Crossroads Bank -the overall concept -the basic building blocks n critical success factors for an implementation

3 12/06/2003 Crossroads Bank for Social Security Relevant similarities n many actors, each having their own competencies and interests n huge need for electronic exchange of sensitive personal data between those actors, with sufficient guarantees on -interoperability -efficiency -data quality -security (availability, integrity, confidentiality) n a central data storage is not possible or desirable for reasons of -privacy protection -unacceptability for the actors

4 12/06/2003 Crossroads Bank for Social Security The Crossroads Bank model n distributed data storage, conform to a functional task sharing between the actors n the use of common identification keys for every entity that has to be identified n a reference directory, serving as a base for the organization of information exchange n a common technical and functional interoperability framework n a common security framework n a legal framework n the creation of an institution that elaborates the vision, stimulates, co-ordinates and manages the necessary frameworks

5 12/06/2003 Crossroads Bank for Social Security Distributed data storage n functional task sharing concerning -validation of information -storage of information n information is dynamically assembled -in function of business needs -on the initiative of the actor who needs the information or of the concerned person -according to the authorizations -by the use of the common interoperability and security framework

6 12/06/2003 Crossroads Bank for Social Security Common identification keys n characteristics -unicity one entity – one identification key same identification key is not assigned to several entities -exhaustivity every entity to be identified has an identification key -stability through time identification key doesn’t contain variable characteristics of the identified entity identification key doesn’t contain references to the identification key or characteristics of other entities identification key doesn’t change when a capacity or a characteristic of the identified entity changes

7 12/06/2003 Crossroads Bank for Social Security Common identification keys n concrete implementation -citizens social security number (national register number or CBSS-number) (electronically) readable from the SIS-card or the electronic identity card controlled access to basic identification data in National Register and CBSS Belgian Privacy Commission: in health care sector preferable use of common identification key derived from social security number, rather than social security number itself -enterprises, including organizations and professionals enterprise number (based on VAT-number) number for every plant of an enterprise generalized access to basic identification data in the Enterprise Register -regulation on data interconnection

8 12/06/2003 Crossroads Bank for Social Security Reference directory n serves as a base for the organization of information exchange n structure -directory of persons: which actors have data on which persons in which capacities for which periods -data availability table: which actor disposes of which type of data for which capacity -access authorization table: which data may be transmitted to which actors for which capacities n functions -routing of information -preventive access control -automatic communication of changes to information

9 12/06/2003 Crossroads Bank for Social Security Interoperability framework n goal: to guarantee the ability of all actors to share information and to integrate information and business processes by the use of -interconnected physical networks -(open) technical standards -functional agreements -harmonized concepts and data modelling

10 12/06/2003 Crossroads Bank for Social Security Technical standards Interconnection Information Exchange Services Repository TCP/IP SMTP LDAP FTP S/MIME XML XSL SOAP WSDL metadata (RDF, XTM, XMI, …) Security Services Register (~ UDDI) Agreements (~ ebXML) Policies Vocabularia (content + metadata)

11 12/06/2003 Crossroads Bank for Social Security Functional agreements n standardized codification n standardized use of objects and attributes n standardized layout of header of messages, independent from information exchange format and type of information exchange n version management n backwards compatibility n SLA’s on disponibility and performance of services n access autorisation management n anonimization rules n acceptation and production environments n priority management n …

12 12/06/2003 Crossroads Bank for Social Security Security framework: institutional measures n no central data storage n independent Control Committee, assigned by Parliament -supervision of information security -authorizing the information exchange -complaint handling -information security recommendations -extensive investigating powers -annual activity report n publication of the authorizations of information exchange n preventive control on legitimacy of data exchange by Crossroads Bank according to authorizations of the independent Control Committee n information security department in each institution n certified specialized information security service providers n working party on information security

13 12/06/2003 Crossroads Bank for Social Security Security framework: extended ISO n security policy n security organization n asset classification and control n personnel security n physical and environmental security n computer and operations management n access control n system development and maintenance n specific measures with regard to the processing of personal data n business continuity planning n compliance n communication towards the public opinion concerning the security policy and the measures with regard to security and privacy protection

14 12/06/2003 Crossroads Bank for Social Security Security framework: legal measures n obligations of the controller -principles relating to data quality -criteria for making data processing legitimate -specific rules for processing of sensitive data -information to be given to the data subject -confidentiality and security of processing -notification of the processing of personal data n rights of the data subject -right of information -right of access -right of rectification, erasure or blocking -right of a judicial remedy n penalties

15 12/06/2003 Crossroads Bank for Social Security Security framework: authentication n some basic concepts -identification: answer to the question “who are you ?” -authentication: answer to the question “can you proof who or what you pretend to be ?” who: authentication of the identity what: authentication of an attribute (e.g. role, characteristic, mandate,...) -autorisation: answer to the question “what are you allowed to do ?” n authentication -of the identity electronic identity card meanwhile, for some applications user-id – password – token -of an attribute stored in a database or stored in attribute certificate

16 12/06/2003 Crossroads Bank for Social Security SIS card: identification & proof of insurance status name Christian names date of birth sex social security number period of validity of the card card number sickness fund sickness fund registration number insurance period insurance status social exemption status other data to be added in the future, if useful key 1 key 2

17 12/06/2003 Crossroads Bank for Social Security Electronic identity card: identification & authentication name Christian names nationality birth place and date sex national register number main residence place of delivery of the card period of validity of the card card number the photo of the holder identity and signature keys identity and signature certificates accredited certification service furnisher information necesary for authentication of the card and securization of the electronic data

18 12/06/2003 Crossroads Bank for Social Security Harmonized concepts and data modelling n standard elements -with well defined characteristics -used within all services n OO-oriented n version management in an ever changing environment n define once, use many (different presentations) n workflow for validation of standard elements and characteristics n multi criteria search -by element -by scheme -by version -…

19 12/06/2003 Crossroads Bank for Social Security Changes of the legal environment n organization of integrated information management and electronic service delivery -organizational principles of the co-operation -permission or obligation to use common identification keys -rights and obligations of the different actors -role of the Crossroads Bank n liability n ICT-law: only basic principles, technology-neutral, but not technology unaware -data protection -electronic signature -probative value

20 12/06/2003 Crossroads Bank for Social Security Creation of an institution (Crossroads Bank) n managed by representatives of the concerned actors n tasks -elaboration of the common vision in co-operation with the concerned actors -stimulation -co-ordination and program and project management -management of the reference directory the common interoperability framework the common security framework the legal framework -harmonization of the concepts and data modelling

21 12/06/2003 Crossroads Bank for Social Security A proven model n this model has been implemented -with end-to-end integration of electronic processes between public and private social security institutions those institutions and all enterprises -with integrated electronic service delivery via a web portal to all citizens and enterprises n 170 types of structured data exchanges have already been implemented n 242 million messages were exchanged in 2002 n the model is mentioned as best practice in E- government in the last 2 surveys of the European Commission

22 12/06/2003 Crossroads Bank for Social Security Critical success factors n a long term vision deliberated with the concerned actors n respect of the repartition of tasks and competences between the actors: co-operation between all actors rather than centralization of tasks n trust of all actors in the co-operation model and the security of the system n search for win-win situations n sufficient financial means, skills and knowledge n support of and access to policymakers at the highest level n legal framework n creation of an institution that elaborates the common vision, stimulates, co-ordinates and manages the necessary frameworks

you ! Crossroads Bank for Social Security

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.