Upload
julian-cameron
View
220
Download
0
Tags:
Embed Size (px)
Citation preview
IHE EU-Conference & WorkshopFebruary 7, 2005
IHE IT Infrastructure
New Integration Profiles
Charles Parisot, GE HealthcareCharles Parisot, GE Healthcare
IHE IT Infrastructure co-chairIHE IT Infrastructure co-chair
Integrating the Healthcare EnterpriseIntegrating the Healthcare Enterprise
February 7, 2005 IHE EU-Conference & Workshop
www.IHE-europe.orgwww.IHE-europe.org
W W W . I H E . N E TW W W . I H E . N E T
Providers and VendorsComing Together to Deliver
Interoperable Health Information SystemsWithin and Between Enterprises and Settings
February 7, 2005 IHE EU-Conference & Workshop
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Consistent TimeCoordinate time across
networked systems
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Enterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Patient Identifier Cross-referencing for
MPI
Map patient identifiers across independent
identification domains
IHE IT Infrastructure 2003-2004IHE IT Infrastructure 2003-2004IHE IT Infrastructure 2004-2005IHE IT Infrastructure 2004-2005
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node authentication
to create a secured domain.
New
Patient Demographics Query New
Personnel White PageAccess to workforcecontact information
New
Cross-Enterprise Document Sharing
Registration, distribution and access across health enterprises of clinical
documents forming a patient electronic health record
New
Consistent TimeCoordinate time across
networked systems
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Enterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Retrieve Information for Display
Access a patient’s clinical information and documents in a
format ready to be presentedto the requesting user
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Patient Identifier Cross-referencing for
MPI
Map patient identifiers across independent
identification domains
IHE IT Infrastructure 2003-2004IHE IT Infrastructure 2003-2004
February 7, 2005 IHE EU-Conference & Workshop
IHE IT Infrastructure 2004-2005IHE IT Infrastructure 2004-2005
Enterprise User AuthenticationEnterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Retrieve Information for Display
Access a patient’s clinical information and documents in a
format ready to be presentedto the requesting user
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Map patient identifiers across independent
identification domains
Patient Identifier Cross-referencing for
MPI
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Consistent TimeCoordinate time across
networked systems
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node authentication
to create a secured domain.
New
Patient Demographics Query New
Personnel White PageAccess to workforcecontact information
New
Cross-Enterprise Document Sharing
Registration, distribution and access
across health enterprisesof clinical documents forming
a distributed patient electronic health record
New
February 7, 2005 IHE EU-Conference & Workshop
Introduction:EHR Cross-Enterprise Document SharingEHR Cross-Enterprise Document Sharing
First step towards the First step towards the longitudinal dimension of the EHRlongitudinal dimension of the EHR
Focus:Focus: Support document sharing between Support document sharing between EHRs in different care settings and EHRs in different care settings and organizations organizations
February 7, 2005 IHE EU-Conference & Workshop
Acute Care (Inpatient)
GPs and Clinics (Ambulatory)
Long Term Care
Other Specialized Care(incl. Diagnostics Services)
Continuity of Care: Patient Longitudinal RecordPatient Longitudinal Record
Typically, a patient goes through a sequence of encounters in different Care Settings
February 7, 2005 IHE EU-Conference & Workshop
community
Clinical Encounter
Clinical IT System
RecordsRecordsSentSent
Laboratory Results Specialist Record
Hospital Record
Finding the records of a patient-Manual & tediousFinding the records of a patient-Manual & tedious
The challenge: Finding and accessing easilydocuments from other care providers In the community.
February 7, 2005 IHE EU-Conference & Workshop
community
Clinical Encounter
Clinical IT System Index of patients records(Document-level)
1-Patient Authorized
Inquiry
Temporary Aggregate Patient History
4-Patient data presented to
Physician
Sharing SystemSharing System
3-Records3-RecordsReturnedReturned
Referenceto records
Laboratory Results Specialist Record
Hospital Record
2-Referenceto Records for Inquiry
Sharing records that have been publishedSharing records that have been published
February 7, 2005 IHE EU-Conference & Workshop
Acute Care (Inpatient)
PCPs and Clinics (Ambulatory)
Long Term Care
Other Specialized Careor Diagnostics Services
Building and accessing DocumentsBuilding and accessing Documents
EHR-CR: EHR-CR: Care RecordCare Record systems systemssupportingsupporting care delivery care delivery
Documents Registry
DocumentRepository
EHR-LR:EHR-LR:Longitudinal RecordLongitudinal Recordas usedas usedacross-encountersacross-encounters
Submission of Document References
Retrieve of selected Documents
February 7, 2005 IHE EU-Conference & Workshop
XDS – Value PropositionXDS – Value PropositionFoundation for Health IT Infrastructures: Shared Electronic Health Record, in a community, region, etc.
Effective means to contribute and access clinical documents across health enterprises.
Scalable sharing of documents between private physicians, clinics, long term care, pharmacy, acute care with different clinical IT systems.
Easy access: Care providers are offered means to query and retrieve clinical documents of interest.
February 7, 2005 IHE EU-Conference & Workshop
XDS - Value PropositionXDS - Value PropositionDistributed: Each Care delivery organization “publishes” clinical information for others. Actual documents may remain in the source EHR-CR.
Cross-Enterprise: A Registry provides an index for published information to authorized care delivery organizations belonging to the same clinical affinity domain (e.g. an LHII).
Document Centric: Published clinical data is organized into “clinical documents”. using agreed standard document types (HL7-CDA, ASTM-CCR, PDF, DICOM, etc.)
Document Content Neutral: Document content is processed only by source and consumer IT systems.
Standardized Registry Attributes: Queries based on meaningful attributes ensure deterministic document searches.
February 7, 2005 IHE EU-Conference & Workshop
XDS DocumentXDS Document
XDS Submission SetXDS Submission Set
XDS FolderXDS Folder
IHE XDS Integration Profile: Key ConceptsKey Concepts
February 7, 2005 IHE EU-Conference & Workshop
Document Repository and RegistryDocument Repository and RegistryExample of Submission RequestExample of Submission Request
Document RepositoriesDocument Repositories
Document RegistryDocument RegistrySubmission RequestSubmission Request
Document
Document
DocumentEntry
DocumentEntry
SubmissionSet1
Folder A
February 7, 2005 IHE EU-Conference & Workshop
XDS DocumentXDS Document
A set of attested clinical information (structured or not) which A set of attested clinical information (structured or not) which form an element of a patient record to be shared. It may form an element of a patient record to be shared. It may already exist within the source IT system.already exist within the source IT system.
XDS Submission SetXDS Submission Set
A set of documents related to a patient that a (team of) A set of documents related to a patient that a (team of) clinician(s) in the same source system have decided to make clinician(s) in the same source system have decided to make available to potential consumers.available to potential consumers.
XDS FolderXDS FolderA means to group documents for a number of other reasons:A means to group documents for a number of other reasons:
Team work across several physicians,Team work across several physicians,
Episode of care, Episode of care,
Emergency information for a patient, etc.Emergency information for a patient, etc.
XDS leaves open the use of folders to affinity domain clinicians.XDS leaves open the use of folders to affinity domain clinicians.
IHE XDS Integration Profile: Key ConceptsKey Concepts
February 7, 2005 IHE EU-Conference & Workshop
Cardiac Care Scenario (1)Cardiac Care Scenario (1)
PCP
Cardiologist
Laboratory
Radiology
Folder
SubmissionSet
XDSDocument
CardiacCardiacAssessmentAssessment
3&9
2 4
1
February 7, 2005 IHE EU-Conference & Workshop
Cardiac Care Scenario (2)Cardiac Care Scenario (2)
PCP Ward
Lab
Cardiologist
Local Hospital
Emergency Room
Cath Lab
Laboratory
Radiology
Folder
SubmissionSet
XDSDocument
RehabTherapist Cardiac
Assessment
3&9
2 4
Cardiac treatment
86&8
710
1
5
February 7, 2005 IHE EU-Conference & Workshop
Document Consumer
Retrieve Document
Query Documents
Patient Identity Source
Patient Identity Feed
Document Source
Document Registry
Document Repository
Provide&Register Document Set
Register Document Set
Acteurs et Transactions du profil XDSActeurs et Transactions du profil XDS
February 7, 2005 IHE EU-Conference & Workshop
IHE-XDS = SouplesseIHE-XDS = SouplesseArchitecture CentraliséeArchitecture Centralisée
Document Consumer
Retrieve Document
Query Documents
Patient Identity Source
Patient Identity Feed
Document Source
Document Registry
Document Repository
Provide&Register
Document Set
Document Source
Document Source
Document Source
Document Consumer
Document Consumer
Document Consumer
February 7, 2005 IHE EU-Conference & Workshop
Document Consumer
Retrieve Document
Query Documents
Patient Identity Source
Patient Identity Feed
Document Source
Document Registry
Document Repository
Register Document Set
IHE-XDS = SouplesseIHE-XDS = SouplesseArchitecture DécentraliséeArchitecture Décentralisée
Document Consumer
Document Consumer
Document Consumer
Document Source
Document RepositoryDocument
Source
Document RepositoryDocument
Source
Document Repository
February 7, 2005 IHE EU-Conference & Workshop
Document Consumer
Retrieve Document
Query Documents
Patient Identity Source
Patient Identity Feed
Document Source
Document Registry
Document Repository
Register Document Set Document
Repository
Document Source
Provide & Register Document Set
IHE-XDS = SouplesseIHE-XDS = SouplesseArchitecture MixteArchitecture Mixte
Document Source
Document Source
Document Source
Document Consumer
Document Consumer
Document Consumer
Document Source
Document RepositoryDocument
Source
Document RepositoryDocument
Source
Document Repository
February 7, 2005 IHE EU-Conference & Workshop
Patient Access also possiblePatient Access also possible
A patient accesses own record:
Query and Retrieve a set of documents using for example a portal application that offers the ability to display documents’ content.
This is a particular case of an EHR-CR, where the patient is interested her/his own care. Patient may also register and provide documents.
February 7, 2005 IHE EU-Conference & Workshop
Sélection de normes pour le XDS IHE Sélection de normes pour le XDS IHE Aucune norme ne peut traiter à elle seule le partage
de documents inter-entreprise
Le mariage des normes sur les soins de santé facilite la mise en œuvre et optimise les technologies auxiliaires
(p. ex. sécurité et confidentialité).
Normes sur le contenudes soins de santé
HL7 CDA, CEN EHRcomASTM CCRDICOM, etc.
Normes sur l’InternetHTML, HTTP,
ISO, PDF, JPEG, etc.
Normes sur lesaffaires électroniques
ebXML, SOAP, etc.
February 7, 2005 IHE EU-Conference & Workshop
IHE Cross-Enterprise Document SharingIHE Cross-Enterprise Document Sharing
IHE XDS is a critical element to enable sharing of health information between EHR Systems.
Access Control and Doc Content Profiles are on the IHE Roadmap for 2005.
In collaborationcollaboration with well established standards bodies (HL7, ASTM, CEN, OASIS, IETF, DICOM, etc.) and other EHR related initiatives world-wide (EuroREC, etc.), IHE is contributing to a more contributing to a more cost-effective and rapid deploymentcost-effective and rapid deployment of community, regional and national health IT infrastructures.
February 7, 2005 IHE EU-Conference & Workshop
How real is XDS ?How real is XDS ?Specification work since Nov 2003Specification work since Nov 2003
Public Comments June-July 2004Public Comments June-July 2004 600 constructive comments received. 600 constructive comments received. Validity of XDS approach confirmed around the worldValidity of XDS approach confirmed around the world..
Stable specification IHE Technical Framework Stable specification IHE Technical Framework Published Aug 15Published Aug 15thth, 2004 (TI Supplement), 2004 (TI Supplement)
IHE Connectathon - January 2005 (USA)-17 vendorsIHE Connectathon - January 2005 (USA)-17 vendors
HIMSS Feb 2005 - show-wide demonstrationHIMSS Feb 2005 - show-wide demonstration
IHE Connectathon - April 2005 (Europe)-27 vendorsIHE Connectathon - April 2005 (Europe)-27 vendors
Several Implementation Projects by health authorities in 2005
February 7, 2005 IHE EU-Conference & Workshop
HIMSS 2005 Interoperability ShowcaseHIMSS 2005 Interoperability ShowcaseHIMSS leverages its sponsorship of IHE to demonstrate
practical interoperability in two large Showcase Exhibits:
cross-enterprise sharing of health information in the acute care (18 vendors) and ambulatory (14 vendors).
HIMSS Showcase exhibits linked with vendor booths (10 vendors) show-wide.
Show-wide interactive environment demonstrating attendees “patient” record in a “HIMSS RHIO”. Uses IHE Cross-enterprise Document Sharing:
Around a central document registry
Distributed document repositories
17 EHR that publish/share documents (CCR, CDA, HL7-lab, PDF)
February 7, 2005 IHE EU-Conference & Workshop
Exposition d’interopérabilité HIMSS 2005Exposition d’interopérabilité HIMSS 2005
Organisée par HIMSS, un des sponsors IHE aux USA.
Intégrant les milieux hospitaliers et ambulatoires :
partage inter-entreprise de l’information de santé entre les milieux de soins hospitaliers et ambulatoires.
Intégrant les dossier patient électroniques sur les stands des fournisseurs:
milieu hautement interactif, basé sur les normes, visant à démontrer l’interopérabilité pratique entre les entreprises de soins.
February 7, 2005 IHE EU-Conference & Workshop
Exposition d’interopérabilité HIMSS 2005Exposition d’interopérabilité HIMSS 2005
Visiteurs géreront leur dossier de soin électronique au sein du « réseau régional HIMSS ».
Environnement communiquant s’appuyant sur le profil IHE Cross-enterprise Document Sharing:
Bati autour d’un « XDS document registry » central.
Des « XDS document repositories » distribués.
17 DES qui publient/partagent divers documents (Résumé Patient-CCR, HL7-CDA, HL7-lab, PDF).
February 7, 2005 IHE EU-Conference & Workshop
HIMSS 2005 Interoperability ShowcasesHIMSS 2005 Interoperability Showcases
cross-enterprise sharing of health information in the acute care, 20 vendors:
Cedara Gusrada/Care Science NISTDictaphone IDX NovellEastman Kodak InterSystems Open TextEclipsys Infinitt SentillionEmageon Kryptiq SiemensEpic MedCommons Univ. Of WashingtonGE Healthcare Mortara Instruments
HIMSS sponsors the testing and demonstration of IHE interoperability in two large Showcase Exhibits:
ambulatory sharing of health information, 13 vendors:Allscripts GE Healthcare MidMarkCapMed/SanDisk IDX NextGenCerner Krytiq WebMDEclipsys MedcomSoft ETIAM MediNotes
February 7, 2005 IHE EU-Conference & Workshop
HIMSS 2005 – HIMSS 2005 – Show-Wide InteroperabilityShow-Wide InteroperabilityVendor System
Ambulatory Showcase BoothAmbulatory Showcase Booth
HomeHome
PCP
MultispecialtyMultispecialtyClinicClinic
Diag CenterDiag Center
Cross-enterprise Showcase BoothCross-enterprise Showcase Booth
Cardiology
RadiologyIT
Infrastructure
In-Patient/Out-patient
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
Vendor BoothVendor Booth
AllscriptsCapMedCerner
EclipsysGE Healthcare
IDXInfinitt
InterSystemsKrytiq
MedCommonsMediNotesNextGenOpenTextSiemensWebMD
HIMSS “RHIO” withCross-enterprise
doc sharing
February 7, 2005 IHE EU-Conference & Workshop
Secured Node
Document Consumer
Retrieve Document
Query Documents
Patient Identity Source
Patient Identity
Feed
Document Source
Document Registry
Document Repository
Provide&RegisterDocument Set
RegisterDocument Set
Secured Node
Secured Node
Secured Node
Secured Node
Secured Node
ATNA crée un domaine sécurisé sur internet:• User Accountability (Audit trail)
• Node-to-Node Access Control
• Node-level user authentication
Les Contrôles d’accèsutilisateurs sont prévuspour 2005.
Sécurité pour XDSSécurité pour XDSSe base sur le Profil IHE Audit Trail & Node Authentication
February 7, 2005 IHE EU-Conference & Workshop
Imaging Information Content
Format of the Document Content and associated coded vocabulary
For Display Document Content
Format of the Document ContentLab Results Document Content
Format of the Document Content and associated coded vocabulary
Profils IHE pour un Réseau Régional Info de SantéProfils IHE pour un Réseau Régional Info de Santé Ce qui est disponible et ce qui le sera en 2005Ce qui est disponible et ce qui le sera en 2005Profils d’Intégration prévus pour 2005Profils d’Intégration prévus pour 2005
Patient Identifier Cross-referencing
Map patient identifiers across independent identification
domains
Consistent TimeCoordinate time across
networked systems
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node authentication
to create a secured domain.
Patient Demographics Query
Personnel White PageAccess to workforcecontact information
Cross-Enterprise Document Sharing
Registration, distribution and access across health enterprises of clinical
documents forming a patient electronic health record
User Identity, Authentication and
Permissions
Enable Basic Access Control
Cross-Enterprise Notification
Notification of a remote provider/ health enterpriseContinuity of Care
Document ContentFormat of the Document Contentand associated coded vocabulary
February 7, 2005 IHE EU-Conference & Workshop
IHE IT Infrastructure 2004-2005IHE IT Infrastructure 2004-2005
Enterprise User AuthenticationEnterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Retrieve Information for Display
Access a patient’s clinical information and documents in a
format ready to be presentedto the requesting user
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Patient Identifier Cross-referencing
for MPIMap patient identifiers
across independent identification domains
Patient Identifier Cross-referencing for
MPI
Map patient identifiers across independent
identification domains
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Consistent TimeCoordinate time across
networked systems
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node authentication
to create a secured domain.
New
Personnel White PageAccess to workforcecontact information
New
Cross-Enterprise Document Sharing
Registration, distribution and access across health enterprises of clinical
documents forming a patient electronic health record
New
Patient Demographics Query
New
Retrieval of a patient list including patient names,
identifiers, contacts, and visit information
February 7, 2005 IHE EU-Conference & Workshop
Patient Demographics QueryPatient Demographics QueryAbstract/ScopeAbstract/Scope
Allow quick retrieval of a patient list including common patient names, identifiers, contacts, and visit information
Enable selection of correct patient when full identification data may not be available
Limits access to only a subset of demographic and visit information
February 7, 2005 IHE EU-Conference & Workshop
Patient Demographics QueryPatient Demographics QueryValue PropositionValue Proposition
Enables access on demand to diverse systems and devices
Participants that do not need continual synchronization of patient registration information
Devices that cannot participate in monitoring of ADT feeds, e.g.:
• Small-footprint devices
• Low-memory devices
February 7, 2005 IHE EU-Conference & Workshop
Patient Demographics QueryPatient Demographics QueryValue Proposition (cont’d)Value Proposition (cont’d)
Allow search on full or partial data
Retrieve information from any domain to which the client has query access
Allows use of matching algorithm (e.g., soundex) to find near matches
February 7, 2005 IHE EU-Conference & Workshop
Patient Demographics QueryPatient Demographics QueryTransaction DiagramTransaction Diagram
A departmental system that is connected on demand to the registration system.
Diverse systems including bedside monitors, physician office systems, lab applications, mobile blood bank registries; might be any system at the point of contact.
February 7, 2005 IHE EU-Conference & Workshop
Patient Demographics QueryPatient Demographics QueryStandards UsedStandards Used
Employs HL7 Conformance Based Queries Defined in HL7 Version 2.5, Chapter 5 Profiles Query by Parameter (QBP^Q22) with
Segment Pattern Response (RSP^K22)
February 7, 2005 IHE EU-Conference & Workshop
IHE IT Infrastructure 2004-2005IHE IT Infrastructure 2004-2005
Enterprise User AuthenticationEnterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Retrieve Information for Display
Access a patient’s clinical information and documents in a
format ready to be presentedto the requesting user
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Patient Identifier Cross-referencing
for MPIMap patient identifiers
across independent identification domains
Patient Identifier Cross-referencing for
MPI
Map patient identifiers across independent
identification domains
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Consistent TimeCoordinate time across
networked systems
Patient Demographics Query New
Personnel White PageAccess to workforcecontact information
New
Cross-Enterprise Document Sharing
Registration, distribution and access across health enterprises of clinical
documents forming a patient electronic health record
New
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node
authentication to create a secured domain.
New
February 7, 2005 IHE EU-Conference & Workshop
IHE and “HIPAA Style” SecurityIHE and “HIPAA Style” Security
User Identity PWP, EUA
User Authentication EUA
Node Authentication ATNA
Security Audit Trails ATNA
Data Integrity Controls CT, ATNA TLS option
Data Confidentiality ATNA TLS option
Access Controls Future item in IHE roadmap
February 7, 2005 IHE EU-Conference & Workshop
ScopeScope
Defines basic security features for an individual system for use as part of the security and privacy environment for a healthcare enterprise.
Extends the IHE radiology oriented Basic Security profile (defined in 2002) to be applicable to other healthcare uses.
Supports two categories of network environments
First of a family of profiles with different kinds of authentication.
February 7, 2005 IHE EU-Conference & Workshop
ATNA Profile - ATNA Profile - Value Value PropositionProposition
Protect Patient Privacy and System Security: Meet ethical and regulatory requirements
Enterprise Administrative Convenience: Unified and uniform auditing system Common approach from multiple vendors simplifies
definition of enterprise policies and protocols. Common approach simplifies administration
Development and support cost reduction through Code Re-use: Allows vendors to leverage single development effort to
support multiple actors Allows a single development effort to support the needs of
different security policies and regulatory environments.
February 7, 2005 IHE EU-Conference & Workshop
Security requirements
Reasons: Clinical Use and Privacy authorized persons must have access to medical data of
patients, and the information must not be disclosed otherwise.
Unauthorized persons should not be able to interfere with operations or modify data
By means of procedures and security mechanisms, guarantee: Confidentiality Integrity Availability Authenticity
February 7, 2005 IHE EU-Conference & Workshop
IHE makes cross-node security management easy:
Only a simple manual certificate installation is needed.
Separate the authentication, authorization, and accountability functions to accommodate the needs of different approaches.
Enforcement driven by ‘a posteriori audits’ and real-time visibility.
IHE Goal with ATNA
February 7, 2005 IHE EU-Conference & Workshop
Integrating trusted nodes
System A System B
Secured SystemSecure network
• Strong authentication of remote node (digital certificates)• network traffic encryption is not required, it is optional
Secured System
• Local access control (authentication of user)
• Audit trail with:• Real-time access • Time synchronization
Central Audit TrailRepository
February 7, 2005 IHE EU-Conference & Workshop
Secured Domain: integrating trusted nodes
Secured Node
Actor
Other ActorsOther Actors
Secured Node
Actor
Other ActorsOther Actors
Secure Node
Actor
Other ActorsOther Actors
Secured Node
Actor
Other ActorsOther Actors
TimeServer
CentralAudit TrailRepository
February 7, 2005 IHE EU-Conference & Workshop
IHE Audit Trail EventsCombined list of IETF and DICOM events
Actor-start-stop The starting or stopping of any application or actor.
Audit-log-used Reading or modification of any stored audit log
Begin-storing-instances The storage of any persistent object, e.g. DICOM instances, is begun
Health-service-event Other health service related auditable event.
Images-availability-query The query for instances of persistent objects.
Instances-deleted The deletion of persistent objects.
Instances-stored The storage of persistent objects is completed.
February 7, 2005 IHE EU-Conference & Workshop
IHE Audit Trail EventsCombined list of IETF and DICOM events
Medication Medication is prescribed, delivered, etc.
Mobile-machine-event Mobile equipment is relocated, leaves the network, rejoins the network
Node-authentication-failure
An unauthorized or improperly authenticated node attempts communication
Order-record-event An order is created, modified, completed.
Patient-care-assignment Patient care assignments are created, modified, deleted.
Patient-care-episode Auditable patient care episode event that is not specified elsewhere.
Patient-record-event Patient care records are created, modified, deleted.
February 7, 2005 IHE EU-Conference & Workshop
IHE Audit Trail EventsCombined list of IETF and DICOM events
PHI-export Patient information is exported outside the enterprise, either on media or electronically
PHI-import Patient information is imported into the enterprise, either on media or electronically
Procedure-record-event The patient record is created, modified, or deleted.
Query-information Any auditable query not otherwise specified.
Security-administration Security alerts, configuration changes, etc.
Study-object-event A study is created, modified, or deleted.
Study-used A study is viewed, read, or similarly used.
February 7, 2005 IHE EU-Conference & Workshop
Authenticate Node transaction
X.509 certificates for node identity and keys
TCP/IP Transport Layer Security Protocol (TLS) for node authentication, and optional encryption
Secure handshake protocol of both parties during Association establishment: Identify encryption protocol Exchange session keys
Actor must be able to configure certificate list of authorized nodes.
ATNA presently specifies mechanisms for HTTP, DICOM, and HL7
February 7, 2005 IHE EU-Conference & Workshop
Record Audit Event transaction
Reliable Syslog (RFC 3195) is the preferred transport for Audit Records, although BSD Syslog protocol (RFC 3164) is permitted for backward compatibility with Radiology Basic Security.
Audit trail events and content based on IETF, DICOM, HL7, and ASTM standards. Also, Radiology Basic Security audit event format is allowed for backward compatibility.
February 7, 2005 IHE EU-Conference & Workshop
Standards selection for IHE XDSStandards selection for IHE XDSNo single standard can address
Cross-enterprise Document Sharing
Marriage of healthcare standards facilitates implementation and leverages complementary
technologies (e.g. security & privacy).
HealthcareContent Standards
HL7 CDA, CEN EHRcomHL7, ASTM CCR
DICOM, etc.
Internet StandardsHTML, HTTP,
ISO, PDF, JPEG, etc.
Electronic BusinessStandards
ebXML, SOAP, etc.
February 7, 2005 IHE EU-Conference & Workshop
Conclusion:Conclusion:IHE Cross-Enterprise Document SharingIHE Cross-Enterprise Document Sharing
IHE does not claim with XDS to address all aspects of a complete and interoperable EHR System.
Access Control and Doc Content Profiles are on the IHE Roadmap for 2005.
In collaborationcollaboration with well established standards bodies (HL7, ASTM, CEN, OASIS, IETF, DICOM, etc.) and other EHR related initiatives world-wide (EuroREC, etc.), IHE expects to contribute at a more cost-contribute at a more cost-effective and rapid deploymenteffective and rapid deployment of community, regional and national health IT infrastructures.
February 7, 2005 IHE EU-Conference & Workshop
XDS – ConclusionXDS – Conclusion
XDS to be one of the major highlights of 2005 Annual HIMSS Conference & Exhibition. Dallas, Tex., Feb. 13-17:
used as a foundation for an on-site demonstration of interoperability in support of a National or Regional Health Information Organizations.
Attendees at the conference will be able to create and share their own health records across vendor booths as well as in the ambulatory and acute care settings on the conference exhibit floor.
February 7, 2005 IHE EU-Conference & Workshop
How real is XDS ?How real is XDS ?Specification work since Nov 2003Specification work since Nov 2003
Under Public Comments June-July 2004Under Public Comments June-July 2004 600 constructive comments received. 600 constructive comments received. Validity of XDS approach confirmed Validity of XDS approach confirmed (e.g. CfH Roadmap).(e.g. CfH Roadmap).
Stable specification IHE Technical Framework Stable specification IHE Technical Framework Published Aug 15Published Aug 15thth, 2004 (TI Supplement), 2004 (TI Supplement)
IHE Connectathon - January 2005 (USA)IHE Connectathon - January 2005 (USA)
HIMSS Feb 2005 - show-wide demonstrationHIMSS Feb 2005 - show-wide demonstration
IHE Connectathon - April 2005 (Europe)IHE Connectathon - April 2005 (Europe)
Several Implementation Projects by health authorities in 2005
February 7, 2005 IHE EU-Conference & Workshop
IHE IT Infrastructure 2004-2005IHE IT Infrastructure 2004-2005
Enterprise User AuthenticationEnterprise User Authentication
Provide users a single nameand centralized authentication
processacross all systems
Retrieve Information for Display
Access a patient’s clinical information and documents in a
format ready to be presentedto the requesting user
Retrieve Information for Display
Access a patient’s clinical information and documents in
a format ready to be presented
to the requesting user
Patient Identifier Cross-referencing
for MPIMap patient identifiers
across independent identification domains
Patient Identifier Cross-referencing for
MPI
Map patient identifiers across independent
identification domains
Synchronize multiple applications on a desktop to the
same patient
Patient Synchronized Applications
Consistent TimeCoordinate time across
networked systems
Audit Trail & Node Authentication
Centralized privacy audit trail and node to node authentication
to create a secured domain.
New
Patient Demographics Query New
Personnel White Page
Access to workforcecontact information
NewCross-Enterprise
Document Sharing
Registration, distribution and access across health enterprises of clinical
documents forming a patient electronic health record
New
February 7, 2005 IHE EU-Conference & Workshop
Personnel White Pages (PWP) – Personnel White Pages (PWP) – Abstract/ScopeAbstract/Scope
Provide access to basic information about the human workforce membersDoes not include Patients
Defines method for finding the PWP
Defines query/access method
Defines attributes of interest
February 7, 2005 IHE EU-Conference & Workshop
Personnel White Pages (PWP) – Personnel White Pages (PWP) – Value PropositionValue Proposition
Single Authoritative Knowledge Base Reduce duplicate and unconnected user info database Single place to update
• Name Changes• New Phone Number• Additional Addresses
Enhance Workflow and Communications Providing information necessary to make connections
• Phone Number• Email Address• Postal Address
February 7, 2005 IHE EU-Conference & Workshop
Personnel White Pages (PWP) – Personnel White Pages (PWP) – Value Proposition Value Proposition
Enhance User Interactions Provide user friendly identities and lists
• List of members• Displayable name of a user• Initials query
Contributes to Identity Management Additional methods of identity cross verification
• Name, address, phone number, email• Cross reference with Enterprise User Authentication identity
Future expansion likely will contain certificates
February 7, 2005 IHE EU-Conference & Workshop
PWP - TransactionsPWP - Transactions
PersonnelWhitePages
ConsumerQuery for Healthcare Workforce Member Info
Provide access to healthcare staff informationProvide access to healthcare staff information to systems in a standard manner. to systems in a standard manner.
PersonnelWhite Pages
Directory
DNS Server
Find PersonnelWhite Pages
February 7, 2005 IHE EU-Conference & Workshop
PWP - Key Technical PropertiesPWP - Key Technical PropertiesDNS – Service discovery transaction
LDAP – Personnel White Pages Query LDAP v3 Use of UTF-8 to support global character sets Method for determining the Base DN for PWP
Directory of Attributes inetOrgPerson – RFC 2789 X.500 Person – RFC 2256 Recommended attributes to be filled if available
Healthcare specifics Names using HL7 naming complex Support for Language specific names IHE Enterprise User Authentication (EUA) user ID Universal Physician Identification Number (UPIN)
February 7, 2005 IHE EU-Conference & Workshop
PWP – Typical UsesPWP – Typical UsesThe user needs to send a report to the email address of a colleague. The application allows the user to search for that user’s information, and selects the target user’s email address.
The user reviews an existing report and finds initials. The system queries on the initials found in the report and displays the displayable name.
The user is reviewing a structured report with an embedded author’s universal provider ID. This universal provider ID is used in a query to find the author of the report. The user calls the author on the phone to review the report details.
February 7, 2005 IHE EU-Conference & Workshop
Personnel White Pages (PWP) – Personnel White Pages (PWP) – Shall IncludeShall Include
Login Id, johnmk, q1234 [email protected]
Last Name, Moehrke
Display Name, John F. Moehrke
Other Unique Identifiers (e.g. professional).
February 7, 2005 IHE EU-Conference & Workshop
Personnel White Pages (PWP) – Personnel White Pages (PWP) – Shall Include if available:Shall Include if available:
First Name, John
Initials, JFM
Phone Numbers, (555) 293-1667
Title, Systems Engineer
Email Address, [email protected]
Postal Address, W126 N7449 Flint Rd
Postal Code 53051
Manager, and Charles Parisot
Employee Type Intern
Etc…
Plus, “may include” and “discourages”Plus, “may include” and “discourages”
February 7, 2005 IHE EU-Conference & Workshop
Positioning of IT-Infrastructure Positioning of IT-Infrastructure Integration ProfilesIntegration Profiles
Intra-Enterprise
Cross-Enterprise
Security EUA, ATNA, CT ATNA, CT, PWP
Identity PDQ, PIX, PSA PDQ, PIX
EHR RID XDS, RID
February 7, 2005 IHE EU-Conference & Workshop
Thank YouThank You
Questions ?Questions ?
W W W . I H E . N E TW W W . I H E . N E T
Integrating the Healthcare EnterpriseIntegrating the Healthcare Enterprise