Presentation is loading. Please wait.

Presentation is loading. Please wait.

Testbed A Sun Microsystems PDP Domain A VMSlice Domain B VMSlice Jericho Systems PDP IP Address: xxx.xxx.xxx.xxx Duane’s Laptop IP Address: xxx.xxx.xxx.xxx.

Published byRoxanne Brown Modified over 8 years ago

Similar presentations

Presentation on theme: "Testbed A Sun Microsystems PDP Domain A VMSlice Domain B VMSlice Jericho Systems PDP IP Address: xxx.xxx.xxx.xxx Duane’s Laptop IP Address: xxx.xxx.xxx.xxx."— Presentation transcript:

1 Testbed A Sun Microsystems PDP Domain A VMSlice Domain B VMSlice Jericho Systems PDP IP Address: xxx.xxx.xxx.xxx Duane’s Laptop IP Address: xxx.xxx.xxx.xxx HIMSS Patient Privacy and Access Control Advanced Technology Demonstration Testbed B Domain A VMSlice Domain B VMSlice Red Hat PDP IP Address: xxx.xxx.xxx.xxx Edmondsci Server IP Address: xxx.xxx.xxx.xxx Schedule: April 4-7 XSPA Profile of SAML April 8 XSPA Profile of WS-TRUST

2 HIMSS Patient Privacy and Access Control Advanced Technology Demonstration C32 Document Assembler TP20 Service Provider Data Masking/ Redaction Service Terminology Services CDA Services Clinical ICDBCALServices Access Control System Patient Service Encounter Service Medication Service VA Developed DoD Developed Assertion Validator Policy Enforcement Point Policy Information Point Attribute Services Audit Service Patient Consent & Organizational Policy Tool Federation PDP Circle of Trust Sun Microsystems Policy Decision Point Jericho Systems Policy Decision Point Red Hat XACML Request Processor Sun Microsystems The Details of Domain B -OR- From Domain A

3 HIMSS Patient Privacy and Access Control Advanced Technology Demonstration The Domain B Story (At a high level) 1)Implement the XSPA Profile of XACML 2)Control all aspects of PHI data delivery outside of the Domain B Healthcare Enterprise 3)Share and consume a common XACML Policy Jericho Systems and Red Hat 1)Delivers standard based interface libraries to produce XACML request and consume its response 2)Provide Circle of Trust for PDPs that conform to the XSPA Profile of XACML Sun Microsystems 1)Delivers the TP20 Service Provider wrapper/enabler 2)Provides ability to consume a Subject and Resource assertion as described by XSPA Profiles of SAML and WS-TRUST 3)Provides ability to augment Subject and Resource assertion with organizational policies and patient consent directives 4)Provides Enforcement of PDP decision 5)Delivers Obligations to Service Provider Dept. of Veterans Affairs 1)Integrate with TP20 Service Provider 2)Generate and deliver NHIN C32 Compliant Clinical Summary 3)Consume and Enforce Data Masking obligations from TP20 Service Provider Dept. of Defense Naval Health Research Center The big Domain B story: Demonstrates the constructs of HITSP TP20 Service Provider, implementing XSPA Profiles of SAML, WS-TRUST, and XACML. Far exceeding the Authorization Framework prescribed for NHIN.

Download ppt "Testbed A Sun Microsystems PDP Domain A VMSlice Domain B VMSlice Jericho Systems PDP IP Address: xxx.xxx.xxx.xxx Duane’s Laptop IP Address: xxx.xxx.xxx.xxx."

Similar presentations

Integrating the Healthcare Enterprise IHE Overview Keith W. Boone Interoperability Architect, GE Healthcare Co-chair, IHE Patient Care Coordination PC.

Integrating the Healthcare Enterprise IHE Overview Keith W. Boone Interoperability Architect, GE Healthcare Co-chair, IHE Patient Care Coordination PC.
National HIT Agenda and HIE - 2007 John W. Loonsk, M.D. Director of Interoperability and Standards Office of the National Coordinator Department of Health.

National HIT Agenda and HIE John W. Loonsk, M.D. Director of Interoperability and Standards Office of the National Coordinator Department of Health.
September, 2005What IHE Delivers 1 Basic Patient Privacy Consents (BPPC) IHE Vendors Workshop 2006 IHE Patient Care Coordination Education

September, 2005What IHE Delivers 1 Basic Patient Privacy Consents (BPPC) IHE Vendors Workshop 2006 IHE Patient Care Coordination Education
PASSPrivacy, Security and Access Services Don Jorgenson Introduction to Security and Privacy Educational Session HL7 WG Meeting- Sept. 2012.

PASSPrivacy, Security and Access Services Don Jorgenson Introduction to Security and Privacy Educational Session HL7 WG Meeting- Sept
GT 4 Security Goals & Plans Sam Meder

GT 4 Security Goals & Plans Sam Meder
Enterprise -> Cloud Outline –Enterprises have many apps outside their control public cloud; business partner applications –Using standards-based SSO (SAML,

Enterprise -> Cloud Outline –Enterprises have many apps outside their control public cloud; business partner applications –Using standards-based SSO (SAML,
Are you ready for HIPPO??? Welcome to HIPAA

Are you ready for HIPPO??? Welcome to HIPAA
Data Segmentation for Privacy VA/SAMHSA/Mitre/Jericho Pilot Sprint 5 Review Sprint #5 Technical Objectives – (2 week sprint ending July 27, 2012) Story:

Data Segmentation for Privacy VA/SAMHSA/Mitre/Jericho Pilot Sprint 5 Review Sprint #5 Technical Objectives – (2 week sprint ending July 27, 2012) Story:
Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D.

Enforceable Specification of Privacy Peter Mork Jean Stanford CEM IR&D.
Health Information Technology Standards Panel Ed Mikoski 19MAR09 TIA Healthcare ICT Section Teleconference.

Health Information Technology Standards Panel Ed Mikoski 19MAR09 TIA Healthcare ICT Section Teleconference.
Direct Implementation Perspective 0 Mark Bamberg, Vice President Research & Development MEDfx.

Direct Implementation Perspective 0 Mark Bamberg, Vice President Research & Development MEDfx.
New Challenges for Access Control April 27, 2005 1 Improving Usability and Expressiveness with Dynamic Policies and Obligations Dennis Kafura Markus Lorch.

New Challenges for Access Control April 27, Improving Usability and Expressiveness with Dynamic Policies and Obligations Dennis Kafura Markus Lorch.
Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.

Access Control Patterns & Practices with WSO2 Middleware Prabath Siriwardena.
Authz work in GGF David Chadwick

Authz work in GGF David Chadwick
T-110.5140 Network Application Frameworks and XML Service Federation 30.04.2007 Sasu Tarkoma.

T Network Application Frameworks and XML Service Federation Sasu Tarkoma.
XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.

XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.
NHIN Specifications Richard Kernan, NHIN Specification Lead (Contractor), Office of the National Coordinator for Health IT Karen Witting, Contractor to.

NHIN Specifications Richard Kernan, NHIN Specification Lead (Contractor), Office of the National Coordinator for Health IT Karen Witting, Contractor to.
95-804 Applied Cryptography Week 13 SAML 1 95-804 Applied Cryptography SAML and XACML Mike McCarthy Week 13.

Applied Cryptography Week 13 SAML Applied Cryptography SAML and XACML Mike McCarthy Week 13.
A Primer on Healthcare Information Exchange John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.

A Primer on Healthcare Information Exchange John D. Halamka MD CIO, Harvard Medical School and Beth Israel Deaconess Medical Center.
Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Combining KMIP and XACML. What is XACML? XML language for access control Coarse or fine-grained Extremely powerful evaluation logic Ability to use any.

Similar presentations

Ads by Google