Document Confidentiality Milan Petkovic, Ray Krasinski Structured Documents / Security WGs HL-7 Cambridge Meeting October, 2010.

Slides:

Advertisements

Similar presentations

Integrating the Healthcare Enterprise IHE Overview Keith W. Boone Interoperability Architect, GE Healthcare Co-chair, IHE Patient Care Coordination PC.

Advertisements

Integrating the Healthcare Enterprise

XDM / XDR Point-to-Point Transmission of Documents

Interoperability 101 Bridget A. Moorman, CCE Technical Manager Industry Advisory Board Renewing Health The Continua Alliance.

Emmanuel Cordonnier, John Donnelly Point-to-Point and Media Document Interchange (PMI) or Cross-Enterprise Document Interchange (XDI)

A Plan for a Sustainable Community Behavioral Health Information Network Western States Health-e Connection Summit & Trade Show September 10, 2013.

S&I Framework Provider Directories Initiative esMD Work Group October 19, 2011.

Overview Enabling electronic health record (EHR) exchange when patients are transferred between participating hospitals during a disaster involving mass.

S&I Data Provenance Initiative Questions for the HITSC on the S&I Data Provenance Initiative November 18, 2014 Julie Anne Chua, PMP, CAP, CISSP Office.

EsMD Harmonization WG Meeting Wednesday, June 13 th, 2012.

Organizing IHE Integration Profiles related to the Electronic Health Record Input to the IHE ITI Tech Committee November 2002 Charles Parisot, GE Medical.

EHR Systems Use and Quality in EHR Systems Use and Quality in Austria EHR Systems Quality Labelling and Certification November 2011, Belgrade FH-Prof.

Sage Channel Alliance David Lomax Channel Alliance Manager.

1 Lecture 18: Security issues specific to security key management services –privacy –integrity/authentication –nonrepudiation/plausible deniability.

Security and DICOM Lawrence Tarbox, Ph.D. Chair, DICOM Working Group 14 Siemens Corporate Research.

NHIN Direct Project Communications Work Group Messages for Physicians August 24, 2010.

© 2009 The MITRE Corporation. All rights Reserved. Healthcare Interoperability: Simplified Health Data Standard Andrew Gregorowicz Beth Halley Joy Keeler.

Health Information Technology Basics January 8, 2011 by Leola McNeill adapted from Information Technology Basics by June 2009, Kayla Calhoun & Dr. Frank.

Cardiac Episode with PCP referral to Cardiologist with Remote Monitoring & Follow-up Care Care Theme: Transitions of Care Use Case 9 Interoperability Showcase.

HL7 HL7  Health Level Seven (HL7) is a non-profit organization involved in the development of international healthcare.

An XMPP (Extensible Message and Presence Protocol) based implementation for NHIN Direct 1.

Publication and Discovery XDS IHE IT Infrastructure Webinar Series.

Digital Enterprise Research Institute HADA – An Access Controlled Application for Publishing and Discovering Linked Government Data Owen Sacco.

Toolkit for Planning an EHR-based Surveillance Program | HL7 Clinical Document Architecture An Introduction.

TripCom: Development of a patient summary at European level E. Della Valle, D. Cerizza, D. Foxvog, R. Krummenacher, L. J. B. Nixon, E.

Working with Health IT Systems Component 7/ Unit 31Health IT Workforce.

Interoperability Showcase In collaboration with IHE Use Case 3 Care Theme: Leveraging National Healthcare Registries in Care Delivery Biosurveillance Monitoring.

September, 2005What IHE Delivers 1 IT Infrastructure Planning Committee Chris Kenworthy - Siemens XDM / XDR Point-to-Point Push of Documents.

1 Integrating the Healthcare Enterprise Audit Trail and Node Authentication Profile IHE IT Technical and Planning Committee June 15 th – July 15 th 2004.

September, 2005What IHE Delivers 1 Mike Schmidt, Carl Zeiss Meditec IHE Eye Care Webinar Business Overview of IHE Eye Care June 6-7, 2006.

September, 2005What IHE Delivers 1 Cross-Enterprise Document Point-to-point Interchange (XDP) IHE Vendors Workshop 2006 IHE IT Infrastructure Education.

METU-SRDCEUROREC Meeting, Geneva, October 10, 2006 RIDE Overview Asuman Dogac Middle East Technical University Ankara, Turkey.

Integrating the Healthcare Enterprise Audit Trail and Node Authentication Profile Name of Presenter IHE affiliation.

Network Security Lecture 20 Presented by: Dr. Munam Ali Shah.

Interoperability Still the Barrier to Patient Portal Implementations October 23, 2013.

September, 2005Cardio - June 2007 IHE for Regional Health Information Networks Cardiology Uses.

This material was developed by Duke University, funded by the Department of Health and Human Services, Office of the National Coordinator for Health Information.

HIT Standards Committee Technical Review of The Direct Project Dixie Baker December 17, 2010.

Technology Issues : Getting Communities Connected Continuity of Care Record (CCR) in Connected Health Communities Get Connected Knowledge Forum June 27-29,

ONE® Pages Training Presentation North York General Hospital.

Federated Directory Service (FDS) IHE IT Profile Proposal Sören Bittins (eCR, Fraunhofer ISST) November, 18th 2008.

Draft-ono-sipping-end2middle-security-00 1 End-to-middle Security in SIP Kumiko Ono NTT Corporation July 17, 2003.

September, 2005What IHE Delivers 1 Cross-Enterprise Document Point-to-point Interchange (XDM) IHE Vendors Workshop 2006 IHE IT Infrastructure Education.

Open Source & Interoperability Profit Proprietary Closed Free Collaborative Open.

September, 2005What IHE Delivers 1 Presenters Scanned Documents.

Working with Health IT Systems Unit 3: Understanding Information Exchange in HIT Systems This material was developed by Johns Hopkins University, funded.

Document Encryption Profile Brief Profile Proposal for 2009/10 presented to the IT Infrastructure Planning Committee Martin Rosner, Paul Koster October.

XDS P2P (revised) Brief Profile Proposal for 2008/09 presented to the IT Infrastructure Planning Committee A. Kassner (IHE-D), J. Caumanns (eCR) 01 October.

Basic Security Cor Loef Philips Medical Systems Co-Chair IHE Radiology Technical Committee.

CDA Overview HL7 CDA IHE Meeting, February 5, 2002 Slides from Liora Alschuler, alschuler.spinosa Co-chair HL7.

CDA encryption Brief Profile Proposal for 2009/10 presented to the IT Infrastructure Planning Committee Martin Rosner, Paul Koster Sept 24, 2010.

CCD and CCR Executive Summary Jacob Reider, MD Medical Director, Allscripts.

Tung Tran, Ph.D. What is the EMR? Computerized legal medical record created by healthcare organizations Enables storage and retrieval of patient information.

© 2014 By Katherine Downing, MA, RHIA, CHPS, PMP.

Cristian Lieneck and Eric Weaver  By the end of this class, the student should be able to:  Examine the data reporting advantages of electronic medical.

Metadata Michael J. Watts

Horizon 2020 Health, Demographic Change and Well-being Open Info Day 12 May 2016, Bruxelles NCP training ICT for Health, demographic change and well-being.

eHealth Standards and Profiles in Action for Europe and Beyond

Horizon 2020 Health, Demographic Change and Well-being Open Info Day 12 May 2016, Bruxelles NCP training ICT for Health, demographic change and well-being.

Introduction to ONE Mail

Funmi Adebesin, Paula Kotzé, Darelle Van Greunen & Rosemary Foster

Integrating the Healthcare Enterprise (IHE) IHE-EUROPE

ONE® Pages Training Presentation

Electronic Health Information Systems

The Nelson Medical Practice Privacy Notice

Categories of Healthcare Communication Services

A Policy-Based Security Mechanism for Distributed Health Networks

Data and Applications Security Developments and Directions

Catherine Diaz Informatics Merseyside

Health Information Exchange for Eligible Clinicians 2019

Presentation transcript:

Document Confidentiality Milan Petkovic, Ray Krasinski Structured Documents / Security WGs HL-7 Cambridge Meeting October, 2010

The Problem Lack of persistent end-to-end encryption for CDA documents – Distributed heterogeneous environments with multiple intermediaries – Encryption currently at transport level (e.g. TLS) – Certain transports lack standard solutions (e.g. USB drive) – Open document-level standard for encryption fosters interoperability – Similar document-level encryption already defined for imaging Need for enabling technology towards addressing meaningful use (HITECH), privacy legislation… Continua Health Alliance, national health networks, etc. foreseen as possible adopters

Use case Third party opinion in tele-monitoring 1.DMO transfers encrypted CDA document to hospital in different affinity domain 2.Hospital GP accesses the document 3.GP forwards encrypted CDA document to expert specialist 4.Expert specialist accesses document for 2 nd opinion Exchanging health records using USB drives 1.Doctor s record summary to patient as encrypted CDA document 2.Patient detaches document and saves it on his USB drive 3.Patient shares encrypted CDA document with healthcare providers

Discussion Document-level-encryption under discussion in IHE for 2010/2011 – Document encryption – Key management Potential involvement of HL-7 for CDA document encryption – Encryption at the CDA level (XML Encryption to encrypt body and selected header fields) – Advantage: fine-grained protection (selectively protect metadata and content, …) which allows for routing, searching, de-identification, etc.