| Security
Architecture
The architecture of a health care information system using
smart cards leverages two features inherent in smart cards:
flexible primary card functionality and multiple ways to protect
data against unwarranted access. Together, these two features
allow an organization to implement a solid security architecture.
1.
Identifying Primary Card Function
2. Unlocking Data
Card
Use by Providers: Access Control
- Smart
cards can offer advantages for controlling both physical
access (to buildings and other facilities) and logical access
(to electronic information).
- Smart
Cards can replace or augment systems that currently control
physical access. Smart cards can also support fast, easy,
and secure logical access. Like physical access, logical
access should be implemented by executing a cryptographic
authentication transaction between the card and the reader,
as well as controlled role-based access to data.
- Audit
trail generation and transaction accountability
Controlling
Initial Card Possession
The card issuance process is key to the security of any ID
card system. No matter how secure a credential is, it can
guarantee nothing if it is given to the wrong person. Since
health care providers typically have some formal association
with the facilities in which they work, maintaining control
over the issuance process is not difficult. Nevertheless,
the issuance process should be defined carefully and reviewed
with security, legal, and operational staff to ensure that
it meets the needs of the facility without jeopardizing security.
Back
to Top
|
