1 / 7

Single Sign-On for Professionals & Patients Phil Stradling

Single Sign-On for Professionals & Patients Phil Stradling. Best use of web service standards. In particular: WS-Security and WS-Trust that are already in use in government. WS-Federation for single sign-on. WS-Addressing and WS-ReliableMessaging for messaging across the NHS estate.

zelda
Download Presentation

Single Sign-On for Professionals & Patients Phil Stradling

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Single Sign-On for Professionals & PatientsPhil Stradling

  2. Best use of web service standards In particular: • WS-Security and WS-Trust that are already in use in government. • WS-Federation for single sign-on. • WS-Addressing and WS-ReliableMessaging for messaging across the NHS estate.

  3. HL7 Web Service Profiles • Submitted to ballot process last month • First review by HL7 UK next week • 3 draft profiles submitted for: • WS-Addressing • WS-Security • WS-ReliableMessaging • Build on basic profile for SOAP

  4. Federated Identity Management • Standards-based technology & processes to enableidentification, authentication, and authorization across organizational and platform boundaries • Enable each organization to: • Act as an authority for the identities it manages • Make verifiable assertions about those identities • Build bridges of trust between “organizational islands” so they: • Choose whom they trust • Control how much they trust • Manage only their own internal identities • Use their own internal protocols

  5. Logical SSO Architecture Spine Dir CA SSB LSP Web Apps Web Apps MHS MHS Transact NHS Net Message = HL7 Schema + HL7 WS Headers Transact Trust DMZ Secure Connection Federation Server MHS SAML token Professional Internal Network Integration Hub Directory HL7 v2 / v3 Logon Transact Maternity PAS Radiology

  6. Product Mapping Spine Dir CA SSB LSP Web Apps Web Apps MHS MHS Transact NHS Net Message = HL7 Schema + HL7 WS Headers Transact Trust DMZ ISA Indigo ADFS SAML token Professional Internal Network Biztalk AD HL7 v2 / v3 Logon Transact Maternity PAS Radiology

  7. Patient E-Services using Government Gateway Spine LSP Web Apps Web Apps MHS MHS Internet/ NHS Net Messages = HL7 Schema + HL7 WS Headers Government Gateway Secure Conex Transaction Engine (MHS) A&A SAML token Patient Logon Access to NASP & LSP web services Patient facing sites, eg: View/Transact Care Pathways GP NHS Direct Healthspace

More Related