• No results found

eHealth platform

N/A
N/A
Info
Downloaden
Protected

Academic year: 2022

Share "eHealth platform"

Copied!
6
0
0

Bezig met laden.... (Bekijk nu de volledige tekst)

Download het nu ( 6 pagina )

Hele tekst

(1)

eHealth SSO

MyCareNet Global Medical File

This document is provided to you free of charge by the

eHealth platform

Willebroekkaai 38 – Quai de Willebroeck 38 1000 BRUSSELS

All are free to circulate this document with reference to the URL source.

(2)

Table of contents

Table of contents ... 2

1 Document management ... 3

1.1 Document history ... 3

2 Use of the eHealth SSO solution ... 4

2.1 Doctor as individual ... 4

2.2 Doctor within a hospital ... 5

2.3 Dentist as individual ... 5

To the attention of: “IT expert” willing to integrate this web service.

(3)

1.1 Document history

Version Date Author Description of changes / remarks

1 20/04/2016 eHealth First version

1.1 15/02/2017 eHealth Footnote complement

(4)

2 Use of the eHealth SSO solution

This section specifies how the call to STS must be done to have access to the web service. You must precise several attributes in the request.

To access to the MyCareNet tarification web service, the response token must contain:

• “true” for all of the boolean certification attributes.

• A value for all the nihii11 certification attributes

If you obtain:

• obtain “false” for one boolean certification attributes

• do not obtain any value for one of the nihii11 certification attributes contact eHealth to verify that the requested test cases were correctly configured.

The documents GMD_STS_samlRequest.xml and GMD_STS_samlResponse.xml provide STS request/response examples.

For the GMF services we differentiate between two types of doctors: general practitioners and specialists (either as individual or within a hospital). Note that the access rules for the doctor (as individual or within a hospital) are slightly different for the two services: notification of the Global Medical File service and the consultation of the Global Medical File service. More in particular:

• Consultation service: this service is accessible by dentist and both types of doctors (general practitioners and specialists)

• Notification service: this service is accessible only by the general practitioners, specialists do not have access to this service

Nevertheless, both types of doctors use the same type of token (we do not differentiate between the two types of doctors on the SAML token level). In order to facilitate the Single Sign On the SAML tokens as described in this section (doctor as individual and doctor within a hospital) are the same as for some other services used by the two types of doctors (e.g., Chapter IV), where we do not differentiate between the two types of doctors. The particular access rules (service accessible only by general practitioners or service accessible by both; general practitioners and specialists) are then enforced by eHealth at the moment of receiving the request.

2.1 Doctor as individual

The request for the SAML token is secured with the eID1 of the doctor. The certificate used by the Holder-Of-Key (HOK) verification mechanism is an eHealth certificate. The needed attributes are the following

(AttributeNamespace: "urn:be:fgov:identification-namespace"):

The social security identification number of the doctor: urn:be:fgov:ehealth:1.0:certificateholder:person:ssin and urn:be:fgov:person:ssin

Doctors must also specify which information must be asserted by eHealth:

1As fallback, in absence of the eID, the personal eHealth certificate can be used for authentication instead.

(5)

• The user uses his/her personal certificate (AttributeNamespace: "urn:be:fgov:certified-

namespace:ehealth"): urn:be:fgov:ehealth:1.0:certificateholder:person:ssin:usersession:boolean

• The NIHII number of the doctor (AttributeNamespace: "urn:be:fgov:certified-namespace:ehealth"):

urn:be:fgov:person:ssin:ehealth:1.0:doctor:nihii11

• The doctor must be a general practitionner (AttributeNamespace: "urn:be:fgov:certified- namespace:ehealth"): urn:be:fgov:person:ssin:ehealth:1.0:nihii:doctor:generalist:boolean

2.2 Doctor within a hospital

The SAML token request is secured with the eHealth certificate of the hospital. The certificate used by the Holder- Of-Key verification mechanism is the same eHealth certificate. The needed attributes are the following

(AttributeNamespace: "urn:be:fgov:identification-namespace"):

• The social security identification number of the doctor: urn:be:fgov:person:ssin

• The NIHII number of the hospital: urn:be:fgov:ehealth:1.0:certificateholder:hospital:nihii-number and urn:be:fgov:ehealth:1.0:hospital:nihii-number

Doctor must also specify which information must be asserted by eHealth:

• The social security identification number of the doctor (AttributeNamespace: "urn:be:fgov:identification- namespace"): urn:be:fgov:person:ssin

• The NIHII number of the hospital: urn:be:fgov:ehealth:1.0:certificateholder:hospital:nihii-number and urn:be:fgov:ehealth:1.0:hospital:nihii-number

• The NIHII number of the doctor (AttributeNamespace: "urn:be:fgov:certified-namespace:ehealth"):

urn:be:fgov:person:ssin:ehealth:1.0:doctor:nihii11

• The NIHII number (11 positions) of the hospital (AttributeNamespace: "urn:be:fgov:certified- namespace:ehealth"): urn:be:fgov:ehealth:1.0:hospital:nihii-number:recognisedhospital:nihii11

• The doctor must be a general practitionner (AttributeNamespace: "urn:be:fgov:certified- namespace:ehealth"): urn:be:fgov:person:ssin:ehealth:1.0:nihii:doctor:generalist:boolean

• The hospital must be a recognized hospital (AttributeNamespace: "urn:be:fgov:certified- namespace:ehealth") :

• urn:be:fgov:ehealth:1.0:certificateholder:hospital:nihii-number:recognisedhospital:boolean

2.3 Dentist as individual

The request for the SAML token is secured with the eID2 of the dentist. The certificate used by the Holder-Of-Key verification mechanism is an eHealth certificate. The needed attributes are the following (AttributeNamespace:

"urn:be:fgov:identification-namespace"):

2As fallback, only in absence of the eID, the personal eHealth certificate can be used for authentication instead.

(6)

• The social security identification number of the dentist:

urn:be:fgov:ehealth:1.0:certificateholder:person:ssin and urn:be:fgov:person:ssin Dentists must also specify which information must be asserted by eHealth:

• The social security identification number of the dentist: (AttributeNamespace: "urn:be:fgov:identification- namespace") urn:be:fgov:ehealth:1.0:certificateholder:person:ssin and urn:be:fgov:person:ssin

• The user uses his/her personal certificate (AttributeNamespace: "urn:be:fgov:certified-

namespace:ehealth"): urn:be:fgov:ehealth:1.0:certificateholder:person:ssin:usersession:boolean

• The NIHII number of the dentist (AttributeNamespace: "urn:be:fgov:certified-namespace:ehealth"):

urn:be:fgov:person:ssin:ehealth:1.0:nihii:dentist:nihii11

A “fallback session” is exceptional and temporary. In case of unavailability of the eID of the healthcare professional, in order to safeguard business continuity of the healthcare professional- temporarily an alternative fallback mechanism with manualentry of the password of the eHealth keystore (certificate) may be chosen. Systematical, repeated use of this method is not allowed.

Referenties

Download het nu ( PDF - 6 pagina - 162.39 KB )

GERELATEERDE DOCUMENTEN

Notification regarding the tariffs applicable as of 1 September 2003 and 1 July 2003, respectively, for KPN’s interconnection and special access services (II)

In order to already inform the market of the cost-oriented terminating access tariffs as resulting from the BULRIC-III cost allocation system as the Commission believes results

The necessary parameters for the implementation of Mobility as a Service in Assen.

Scale, Assen project. Q: Would MaaS be more successful on a regional scale? Instead of just a city scale for somewhere like Assen? So that you include the rural areas.. Table

or "are the promises of the prophets valid for Israel or for the church in the New Testament era?&#34

Within God's people there are thus Israel and Gentile believers: While Israelites are the natural descendants of Abraham, the Gentiles have become the spiritual

Section I Note: Instructions for the interviewer and probes are given in

What are the negative points of talking about family planning issues within family members ?(ask about the family members one by

The use of fitbox with a subfigure. Note that the optional argument for the command counts the lines for the subcaptions. 1

Note that the optional argument for the command counts the lines for the

The commission's new SGEI package: The rules for state aid and the compensation of services of general economic interest

Commission Decision of 28 November 2005 on the application of Article 86(2) of the EC Treaty to State aid in the form of public service compensation granted to certain

The effect of the adoption of the hospital physician on the structure of medical departments and the quality of care for patients admitted to medical departments in the Netherlands

RQ: How does the adoption of the hospital physician as a new generalist profession influence the vertical differentiation and horizontal integration of the medical department and

Managing the implementation of eHealth within a large hospital

Adaptation towards technology of the medical specialist is very important. Issues due to different perspectives regarding the implementation are addressed above. However there are