Presentation is loading. Please wait.

Presentation is loading. Please wait.

The most reliable solutions under the sun No. ISD-MASP-S02016 21 CFR Part 11 Support for CS1000/3000.

Published byOpal Gray Modified over 9 years ago

Similar presentations

Presentation on theme: "The most reliable solutions under the sun No. ISD-MASP-S02016 21 CFR Part 11 Support for CS1000/3000."— Presentation transcript:

1 The most reliable solutions under the sun No. ISD-MASP-S02016 21 CFR Part 11 Support for CS1000/3000

2 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Yokogawa’s policy for 21CFR Part11 compliance is constructed based on FDA documents, and on discussion with our customers who have pharmaceutical plants. In order for pharmaceutical plants to comply with 21CFRpart11, both of the following must be addressed. -Technical point of view (with the functions of CS1000/CS3000) -Management by procedure, I.e, SOP (Standard Operation Procedures) We hope this presentation not only explains the technical points, but also helps to create your own SOP. Scope This presentation describes the 21CFR Part11 related functions of CENTUM CS1000, CS3000.

3 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 R3.02(Phase.1) R3.03(Phase.2) R3 (Phase.0) Support 21 CFR Part11 RXX (Phase.3) Enhancement Security function of HIS, Builder Audit trail of HIS Enhancement of HIS security function, such as the check of invalid access. The security function of Builder and that of recipe management with password & finger print. Audit trail of builder & recipe management. The security function and audit trail of reporting function. Integration of HIS historical messages. Enhancement of the builder, recipe management security, such as automatic screen lock. 2001.12 2001.5 2003.1 Development Roadmap

4 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Contents uFDA CFR Part11 requirement review. uTypical system configuration. uSoftware package overview. uFunction overview of CS 1000, CS 3000 to meet Part11 requirements. uSummary of Part11 related functions. u For operation u For production engineering (Builder) u For recipe management u For reporting uReference. (Display examples)

5 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 What is FDA 21CFR Part11 ? uThe new regulation, issued by the FDA, for all computer systems related to the pharmaceutical production. u Not only for new systems, but also for the existing systems. uMany pharmaceutical providers are planning to introduce Part11 support system. CS1000, CS3000 is the system which meets FDA 21CFR Part11. Yokogawa had been investigating the detail of Part11 with several pharma customers together.

6 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Basic requirement for Part11. uIn order to manage the electronic record data, production system needs u to prevent data tampering. u to guarantee data reliability. uBased on above, basic requirements are u Computer systems have to be capable of making audit trail automatically, and independently from users. u System, data security and data integrity should be guaranteed by system access control. u Detection and notification of invalid access. u The mechanism to use electronic records at any time it is required.

7 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Ethernet HIS: Human Interface Station FCS:Field Control Station Audit trail data server E: System Administrator - Data storage - Data search - Reporting V net oo o FCS HIS A: Management of Operators. 1: Management of Operators Audit trail DB 2: Management of Operators (Reporting) Audit trail DB * 3: Management of instrumentation engineers Audit trail DB 4: Manager of recipe management Audit trail DB *:R3.03 development items D:Management of recipe management C: Management of instrumentation engineers. Access control Audit trail Reporting PC For System builder Access control Audit trail For Recipe Management Typical system configuration Access control Audit trail For Reporting * Access control Audit trail For HIS Access control Audit trail For the HIS in the field B: Management of Operators. Management of the whole audit trail data in the overall system. In the field HIS

8 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Ethernet Audit trail data server E: System Administrator HIS A: Management of Operators. *:R3.03 development items D:Management of recipe management C: Management of instrumentation engineers. Reporting PC B: Management of Operators. * Recipe builder System builder (1) Access Administrator Package (FDA CFR Part11 compliance) (2) Historical message integration pkg.* (3) Standard Operation function (4) Standard Builder function (5) Reporting Package (6) Recipe Management Package (7) MS-EXCEL (8) Acrobat Part11 related packages (7) MS-EXCEL (8) Acrobat (1) Access Administrator Package (2) Historical message integration pkg. (3) Standard Operation function (5) Reporting Package (7) MS-EXCEL (1) Access Administrator Package (4) Standard Builder function (1) Access Administrator Package (6) Recipe Management Package (1) Access Administrator Package Part11 related software packages

9 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Audit trail data server needs to be an independent PC, separate from the HIS, Builder, or Recipe management PC. We strongly recommend separate HIS and engineering functions, such as Builder, Recipe management. If installed in the same PC, SOP should be clearly defined to avoid simultaneous use of HIS/Builder by different person. This is required from part11 operation and security point of view. For example, following should be avoided: Several people try to use the HIS, the Builder, or the Recipe management at the same time. Package combination in a PC.

10 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Functional overview of CS 1000/CS 3000 features to meet 21 CFR Part11 requirements.

11 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 uIn CS1000, CS3000 design policy, from the security point of view, was to classify people into 4 groups, based on their roles to access DCS. u Operators ÕOperation and monitoring, Executing control recipes, Reporting, Generation of the report template. u Instrumentation Engineers ÕConfiguration work, such as creating control logics, sequence, graphics, etc by using System builder. u Recipe Engineers ÕCreating master recipes. u System Administrators ÕAccess control for all people who access DCS, Setting audit trail, etc. Security and classifying

12 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Security functions (1/2) uOperator Authentication / Engineer Authentication u 2 entry items, User ID and password, are necessary for authentication. uCheck the valid Period of User Passwords. u System Administrator sets the valid period of user passwords. u On expiration, a dialog is displayed notifying that changing the password is required. uIntrusion Counter u System counts the number of invalid intrusions. u If the number reaches the limit set by System administrator, a System Alarm occurs on all HIS’s and is stored in the audit trail server.

13 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Security functions (2/2) uAutomatic User-Logout (HIS) u After a period set by System Administrator, no action with keyboard or with mouse will automatically trigger a User- Logout action and the display screen is cleared. uAutomatic screen lock (Builder, Recipe builder, Reporting) u After the period set by System Administrator, no action with keyboard or with mouse will trigger the “Lock screen” action preventing user actions on any windows. To unlock, the password is required. uThe management of disused user ID’s. u When an user ID becomes disused (ex. Quit a company), the user ID is managed as “Disused User ID” forever instead of deleting the ID. Disused User ID’s are not able to be used again.

14 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Audit Trail uActions are stored automatically in the Audit Trail Server with 5W1H (Who, What, When, Where, Why, and How) manner. uThe audit trail starts automatically when the system starts up, and keeps running continuously.

15 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 uThe protection against accessing the files directly. CENTUM Desktop function u All icons and the Windows Explore can be hidden to avoid operator’s access Windows’s files directly. u This enables prevention of miss-operation or invalid access. u Note:that even with the use of the CENTUM Desktop function, 100% protection is not possible. It is essential to manage with SOP (Standard Operation Procedure). Note for security policy (1/2)

16 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 uThe management of System Administrator. u There is no function to protect against the illegal access by System Administrator. u It is essential to manage with SOP (Standard Operation Procedure) based on the example below. Example: Assign two people who have following roles respectively to have the difficulty to perform the invalid access. System Administrator (The administrator for DCS users) who is responsible to register/delete user accounts. IT maintenance administrator (Not a DCS user) who is responsible to maintain all PCs used in the DCS system. Note for security policy (2/2)

17 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 HIS on field HIS Management of Operators V net oo o FCS Access control User ID + Password User ID + Finger print check Check the valid Period of User Passwords. Intrusion Counter Automatic user-out Double Authenticated Confirmation Dialog Box Audit Trail Automatic recording with 5W1H manner. Eternal storage & Integrated management. * Others Disused user ID management. * Ethernet * R3.03 Management of Operation Access control Audit trail For HIS HIS: Human Interface Station FCS:Field Control Station

18 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 HIS in field HIS Ethernet * R3.03 All operations (actions) on the HIS are stored in each HIS in an FIFO manner and are equalized among all HIS’s. The audit trail of all HIS’s can be handled in a single PC. Long-term storage. (Eternal) Quick search. Reporting the search result. (PDF, Electric signature) Therefore what you can do is.. Audit trail data server Audit trail for operation uStorage & integrated management. *

19 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Management of Instrumentation engineering. Access control - User ID + Password - Check the valid Period of User Passwords. - Intrusion Counter * - Automatic lock-out * Audit Trail - Automatic recording with 5W1H manner. - Recorded audit can be displayed on a dedicated viewer. Others - Disused user ID management. * * R3.03 C: Management of instrumentation engineers. Access control Audit trail For System builder

20 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 * R3.03 Management of Recipe engineering. Access control - User ID + Password - Check the valid Period of User Passwords. - Intrusion Counter * - Automatic lock-out * Audit Trail - Automatic recording with 5W1H manner. - Recorded audit can be displayed on a dedicated viewer. Others - Disused user ID management. * D:Management of recipe management Access control Audit trail For Recipe Management

21 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Action range for reporting. The reporting package uThe reporting package of CS1000, CS3000 contains 2 major functions. u Generating the report template by a senior operator (manager) u Printing the report by a general operator uDepending on each role of manager or operator, they are included in each group and access control can be executed. The Group of “Manager” The group of “Operator” Report printing Generating report template

22 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Management of generating templates Access control - User ID + Password - Check the valid Period of User Passwords. - Intrusion Counter * - Automatic lock-out * Audit Trail - Automatic recording with 5W1H manner. - Recorded audit can be displayed on a dedicated viewer. Others - Disused user ID management. * Reporting Access control Audit trail For Reporting B: Management of Operators. HIS * R3.03

23 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Management of printing uThere are 2 ways to print the report. u Output the report as PDF files. (Recommended) ÕReconsideration data are entered from HIS, so you can use the authentication function of HIS. ÕPDF files have stronger security. ÕIt enables to need User ID and password. u Output the report as XLS files. ÕReconsideration data are entered from MS-EXCEL. ÕIt is necessary –to make the audit trail function of MS-EXCEL start automatically –to manage all report files with passwords –to store the Audit Trail Server with XLT files.

24 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Case A:Because the reconsideration data need to be entered via HIS, you can use the authentication function of HIS. Adobe Acrobat HIS or PC A B Stronger data security Electric signature with User ID + Password.xlt Logging DB Printing log files DB Audit Trail server.xlt Case B:Make the audit trail function of MS-EXCEL start automatically, manage all report files with passwords, and store the Audit Trail Server with “xlt” files. MS-EXCEL PDF files Entry reconsideration data Management of printing

25 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Appendix

26 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 User-in Dialog

27 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 WhoWhenWhereWhatWhyHow Audit Trail (Historical Report)

28 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Revised items are noted by color Clarifying the revised items at configuration

29 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Double Authenticated Confirmation Dialog Box

30 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Warning Dialog for operation

31 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 Setting password related items Preservation of invalid access Notification of invalid access Valid Period of User Passwords. Intrusion Counter

32 YOKOGAWA Yokogawa Electric Corp. No. ISD-MASP-S02016 User ID [Number of characters] Password [Number of characters] Valid Period of Passwords [Day] Intrusion Counter [Times] Non-operation time [Min] HIS1 – 161 – 32Up to 1000Up to 10Up to 59 Builder1 – 16 No upper limitation. Up to 999 Up to 59 Recipe Management 1 – 16 No upper limitation. Up to 999 Up to 59 Reporting1 – 16 No upper limitation. Up to 999 Up to 59 Reference uConfigurable range

Download ppt "The most reliable solutions under the sun No. ISD-MASP-S02016 21 CFR Part 11 Support for CS1000/3000."

Similar presentations

AIMSweb Benchmark Online Training For AIMSweb Teacher Users

AIMSweb Benchmark Online Training For AIMSweb Teacher Users
Micro Control Solutions Stability System II rev. 6.4

Micro Control Solutions Stability System II rev. 6.4
ProAssist ® complex assistance services management system Global Assistance & INGENIUM Praha.

ProAssist ® complex assistance services management system Global Assistance & INGENIUM Praha.
Presentation by Priyanka Sawarkar

Presentation by Priyanka Sawarkar
Choose and Book Archive New functionality from November 2012.

Choose and Book Archive New functionality from November 2012.
6000 Series Recorders. The Best Paperless Graphic Recorder in the World.

6000 Series Recorders. The Best Paperless Graphic Recorder in the World.
Tutorial 8: Developing an Excel Application

Tutorial 8: Developing an Excel Application
Don McCarty Manager Postal Service East Tennessee State University.

Don McCarty Manager Postal Service East Tennessee State University.
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
ISecurity Complete Product Series For System i. About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.

ISecurity Complete Product Series For System i. About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.
Coping with Electronic Records Setting Standards for Private Sector E-records Retention.

Coping with Electronic Records Setting Standards for Private Sector E-records Retention.
Interpret Application Specifications

Interpret Application Specifications
Chapter 7 Database Auditing Models

Chapter 7 Database Auditing Models
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
Integrate your people maximize your knowledge Tel. 0845 124 9800 . SalesBase Customer.

Integrate your people maximize your knowledge Tel SalesBase Customer.
Networking All talk - Selective listen Network up to 15 active nodes + 17 passive nodes Nexus/Discovery panels, network repeaters, R3 19” racks, Alarm.

Networking All talk - Selective listen Network up to 15 active nodes + 17 passive nodes Nexus/Discovery panels, network repeaters, R3 19” racks, Alarm.
Module 2: Managing User and Computer Accounts

Module 2: Managing User and Computer Accounts
Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.

Network and Active Directory Performance Monitoring and Troubleshooting NETW4008 Lecture 8.
Ch 11 Managing System Reliability and Availability 1.

Ch 11 Managing System Reliability and Availability 1.
© 2008 The McGraw-Hill Companies, Inc. All rights reserved. M I C R O S O F T ® Preparing for Electronic Distribution Lesson 14.

© 2008 The McGraw-Hill Companies, Inc. All rights reserved. M I C R O S O F T ® Preparing for Electronic Distribution Lesson 14.

Similar presentations

Ads by Google