I.S. EN 13606-4:2007
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
View Superseded by
HEALTH INFORMATICS - ELECTRONIC HEALTH RECORD COMMUNICATION - PART 4: SECURITY
Hardcopy , PDF
31-01-2020
English
01-01-2007
For Harmonized Standards, check the EU site to confirm that the Standard is cited in the Official Journal.
Only cited Standards give presumption of conformance to New Approach Directives/Regulations.
Dates of withdrawal of national standards are available from NSAI.
Important note : Users cannot be edited or removed once added to your Multi user PDF.
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviations
5 Conformance
6 Record Component Sensitivity and Functional Roles (Normative)
6.1 RECORD_COMPONENT sensitivity
6.2 Functional Roles
6.3 Mapping of Functional Role to RECORD_COMPONENT Sensitivity
7 Representing access policy information within an EHR_EXTRACT
7.1 General
7.2 Archetype of the Access policy COMPOSITION
7.3 ADL representation of the archetype of the access policy
COMPOSITION
7.4 UML representation of the archetype of the access policy
COMPOSITION
8 Representation of audit log information
8.1 EHR_AUDIT_LOG_EXTRACT model
Annex A (informative) - Illustrative access control example
Annex B (informative) - Relationship of this part standard
to the Distribution Rules: ENV 13606-3:2000
Bibliography
Provides a methodology for specifying the privileges necessary to access EHR data. This methodology forms part of the overall EHR communications architecture defined in Part 1 of this standard.
| DevelopmentNote |
Supersedes I.S. ENV 13606-4. (06/2007)
|
| DocumentType |
Standard
|
| Pages |
50
|
| PublisherName |
National Standards Authority of Ireland
|
| Status |
Withdrawn
|
| SupersededBy | |
| Supersedes |
| Standards | Relationship |
| NBN EN 13606-4 : 2007 | Identical |
| DIN EN 13606-4:2007-06 | Identical |
| UNE-EN 13606-4:2007 | Identical |
| NF EN 13606-4 : 2007 | Identical |
| EN 13606-4:2007 | Identical |
| SN EN 13606-4 : 2007 | Identical |
| BS EN 13606-4:2007 | Identical |
| NEN EN 13606-4 : 2007 | Identical |
| UNI EN 13606-4 : 2007 | Identical |
| NS EN 13606-4 : 1ED 2007 | Identical |
| ISO/TS 22600-1:2006 | Health informatics Privilege management and access control Part 1: Overview and policy management |
| ISO 22857:2013 | Health informatics — Guidelines on data protection to facilitate trans-border flows of personal health data |
| ISO/TS 18308:2004 | Health informatics Requirements for an electronic health record architecture |
| ISO/TS 21091:2005 | Health informatics Directory services for security, communications and identification of professionals and patients |
| EN 14484:2003 | Health informatics - International transfer of personal health data covered by the EU data protection directive - High level security policy |
| ENV 13608-2:2000 | Health informatics - Security for healthcare communication - Part 2: Secure data objects |
| ISO 7498-2:1989 | Information processing systems Open Systems Interconnection Basic Reference Model Part 2: Security Architecture |
| ENV 13608-3:2000 | Health informatics - Security for healthcare communication - Part 3: Secure data channels |
| ISO/IEC 2382-8:1998 | Information technology Vocabulary Part 8: Security |
| ISO/TS 22600-2:2006 | Health informatics Privilege management and access control Part 2: Formal models |
| EN 14485:2003 | Health informatics - Guidance for handling personal health data in international applications in the context of the EU data protection directive |
| ISO/IEC 17799:2005 | Information technology Security techniques Code of practice for information security management |
| ENV 13608-1:2000 | Health informatics - Security for healthcare communication - Part 1: Concepts and terminology |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.