Difference between revisions of "Document Digital Signature"

From IHE Wiki
Jump to navigation Jump to search
(7 intermediate revisions by the same user not shown)
Line 24: Line 24:
 
==Specification==
 
==Specification==
  
'''Profile Status:''' [[Comments| Trial Implementation]]   
+
'''Profile Status:''' [[Comments| Final Text]]   
  
 
'''Documents:'''  
 
'''Documents:'''  
* [http://www.ihe.net/Technical_Framework/index.cfm#IT Document Digital Signature (DSG)] Trial Implementation Supplement
+
[http://www.ihe.net/Technical_Framework/index.cfm#IT IHE IT Infrastructure Technical Framework Version 14 or later]
:* Vol. 3 - Section 5.3
+
:* [http://www.ihe.net/uploadedFiles/Documents/ITI/IHE_ITI_TF_Vol1.pdf#nameddest=37_Document_Digital_Signature__ Vol. 1 - Section 37]  
 +
:* [http://www.ihe.net/uploadedFiles/Documents/ITI/IHE_ITI_TF_Vol3.pdf#nameddest=5_5_Document_Digital_Signature_ Vol. 3 - Sections 5.5]
  
 +
'''Historic:'''
 +
* [http://www.ihe.net/Technical_Framework/index.cfm#IT Document Digital Signature (DSG)] Trial Implementation Supplement (2015-03-12)
 +
* Originally developed in 2005-2006
  
 
'''Underlying Standards:'''
 
'''Underlying Standards:'''
:* [ASTM-E1985] E1985-98 -- Standard guide for user authentication and authorization  http://www.astm.org/cgi-bin/SoftCart.exe/DATABASE.CART/REDLINE_PAGES/E1985.htm?E+mystore
+
* XML Advanced Electronic Signatures XAdES http://www.w3.org/TR/XAdES/ -- aka. ETSI TS 101 903
:* [ASTM-E2212] ASTM E2212 – Standard Practice for Healthcare Certificate Policy http://www.astm.org/cgi-bin/SoftCart.exe/STORE/filtrexx40.cgi?U+mystore+odvl4256+-L+ASTM:E2212+/usr6/htdocs/astm.org/DATABASE.CART/REDLINE_PAGES/E2212.htm
+
* XML-Signature Syntax and Processing. W3C Recommendation. Donald Eastlake, Joseph Reagle, David Solo. February 2002. http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/
:* [ASTM-E1762-05]ASTM E1762-05 – Standard Guide for the Authentication of Health Care Information http://www.astm.org/cgi-bin/SoftCart.exe/STORE/filtrexx40.cgi?U+mystore+odvl4256+-L+ASTM:E1762+/usr6/htdocs/astm.org/DATABASE.CART/REDLINE_PAGES/E1762.htm  
+
* ASTM E1762-95(2013) – Standard Guide for the Authentication of Health Care Information http://www.astm.org/cgi-bin/SoftCart.exe/STORE/filtrexx40.cgi?U+mystore+odvl4256+-L+ASTM:E1762+/usr6/htdocs/astm.org/DATABASE.CART/REDLINE_PAGES/E1762.htm
:* [ASTM-E2084] ASTM E2084 – Standard Specification for the Authentication of Healthcare Information using Digital Signatures http://www.astm.org/cgi-bin/SoftCart.exe/STORE/filtrexx40.cgi?U+mystore+odvl4256+-L+ASTM:E2084+/usr6/htdocs/astm.org/DATABASE.CART/REDLINE_PAGES/E2084.htm
 
:*  [ISO17090 (1,2,3)] ISO/TS 17090 – Health Informatics Digital Signatures for Healthcare http://www.iso.org/iso/en/CatalogueDetailPage.CatalogueDetail?CSNUMBER=35489&ICS1=35&ICS2=240&ICS3=80
 
:* [ISO 21091]ISO/TS 21091- Health Informatics – Directory Services for Security, Communications, and Identification of Professionals and Patients http://www.iso.org/iso/en/CatalogueDetailPage.CatalogueDetail?CSNUMBER=35647&scopelist=PROGRAMME
 
:* [IETF RFC3280] IETF/RFC 3280 regarding X.509v3 PKIX Private Key Infrastructure RFC3280 http://www.faqs.org/rfcs/rfc3280.html
 
:* [IETF RFC2633] IETF/RFC 2633 regarding S/MIME http://www.imc.org/rfc2633
 
:* [DICOM 41] DICOM Supplement 41 ftp://medical.nema.org/medical/dicom/final/sup41_ft.pdf
 
:* [DICOM 86] DICOM Supplement 86 ftp://medical.nema.org/medical/dicom/supps/sup86_lb.pdf
 
:* [NCPDP] NCPDP prescription data coding, content, formatting and taxonomy http://www.ncpdp.org 
 
:* [HL7 CDA] HL7 CDA http://secure.cihi.ca/cihiweb/dispPage.jsp?cw_page=infostand_hl7doc_arch_e#cda
 
:* [CEN ENV13607] Process flow guidance from CEN Pre-Standard ENV13607 - Health informatics http://www.centc251.org
 
:* [WS-I] WS-I Basic Security Profile Version 1.0, working draft http://www.ws-i.org/Profiles/BasicSecurityProfile-1.0.html
 
:* [ETSI TS 201 733] ETSI TS 201 733 Sections C.3.1 and C.3.2; Electronic Signatures and Infrastructures and (ESI)Electronic Signature Formats http://webapp.etsi.org/WorkProgram/Report_WorkItem.asp?WKI_ID=8179&curItemNr=1&totalNrItems=1&optDisplay=10&qSORT=REFNB&qETSI_NUMBER=201+733&qINCLUDE_SUB_TB=True&qINCLUDE_MOVED_ON=&qSTOP_FLG=N&butExpertSearch=Search&includeNonActiveTB=FALSE&qREPORT_TYPE=SUMMARY
 
:* [ETSI TS 101 903] ETSI TS 101 903: XML Advanced Electronic Signatures XadES http://www.w3.org/TR/XAdES/
 
  
 +
==See Also==
  
==See Also==
+
[[Document Sharing]]
  
 
'''Related Profiles'''
 
'''Related Profiles'''
 +
* [[Document Encryption]]
  
 
This page is based on the [[Profile Template]]
 
This page is based on the [[Profile Template]]
Line 58: Line 51:
 
[[Category:Profiles]]
 
[[Category:Profiles]]
 
[[Category:ITI Profile]]
 
[[Category:ITI Profile]]
 +
[[Category:DocShare]]
 +
[[Category:Security]]

Revision as of 10:14, 30 October 2017


Summary

The Document Digital Signature (DSG) content profile specifies the use of digital signatures for documents that are shared between organizations.

Benefits

DSG provides a mechanism for using digital signatures.

Details

The Document Digital Signature (DSG) Profile is a Document Content Profile that defines general purpose methods of digitally signing of documents for communication and persistence. Among other uses, these methods can be used within an IHE Document Sharing infrastructure (e.g., XDS, XCA, XDM, XDR, and MHD). There are three methods of digital signature defined here: Enveloping, Detached (manifest), and SubmissionSet.

  • An Enveloping Signature is a Digital Signature Document that contains both the signature block and the content that is signed. Access to the contained content is through removing the Enveloping - Digital Signature. Among other uses, this method should not be used with Document Sharing infrastructure.
  • A Detached Signature is a Digital Signature Document that contains a manifest that points at independently managed content. Detached signatures leave the signed document or documents in the original form. Among other uses, this method is recommended for use with a Document Sharing infrastructure to support Digital Signatures, as this method does not modify the original Document Content. This method uses the Document Sharing “SIGNS” relationship provide linkage.
  • A SubmissionSet Signature is a Detached Signature Document that attests to the content in a SubmissionSet by: containing a manifest of all the other Documents included in the SubmissionSet, and a reference to the SubmissionSet. The Document Sharing “SIGNS” relationship may be used but is not required.

Ink-on-paper signatures have been a part of the documentation process in health care and have traditionally been indicators of accountability. Reliable exchange and storage of electronic data between disparate systems requires a standard that implements equivalent non-repudiation to prevent document creators from denying authorship and rejecting responsibility.

Systems Affected

Systems involved in this profile are:

  • EHR, EMR, HIE, HIO


Specification

Profile Status: Final Text

Documents: IHE IT Infrastructure Technical Framework Version 14 or later

Historic:

Underlying Standards:

See Also

Document Sharing

Related Profiles

This page is based on the Profile Template

Retrieved from "http://wiki.ihe.net/index.php?title=Document_Digital_Signature&oldid=105414"