iTeh StandardsiTeh Standards
EURUSD
Your shopping cart is empty.
ASTM

ASTM E2147-01(2009)

(Specification)

Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems

Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems

ABSTRACT
This specification describes the security requirements involved in the development and implementation of audit and disclosure logs used in health information systems. It specifies how to design an access audit log to record all access to patient identifiable information maintained in computer systems, and includes principles for developing policies, procedures, and functions of health information logs to document all disclosure of confidential health care information to external users for use in manual and computer systems. This specification provides for two main purposes, namely: to define the nature, role, and function of system access audit logs and their use in health information systems as a technical and procedural tool to help provide security oversight; and to identify principles for establishing a permanent record of disclosure of health information to external users and the data to be recorded in maintaining it.
SIGNIFICANCE AND USE
Data that document health services in health care organizations are business records and must be archived to a secondary but retrievable medium. Audit logs should be retained, at a minimum, according to the statute governing medical records in the geographic area.
The purpose of audit access and disclosure logs is to document and maintain a permanent record of all authorized and unauthorized access to and disclosure of confidential health care information in order that health care providers, organizations, and patients and others can retrieve evidence of that access to meet multiple needs. Examples are clinical, organizational, risk management, and patient rights' needs.
Audit logs designed for system access provide a precise capability for organizations to see who has accessed patient information. Due to the significant risk in computing environments by authorized and unauthorized users, the audit log is an important management tool to monitor, access retrospectively. In addition, the access and disclosure log becomes a powerful support document for disciplinary action. Audit logs are essential components to comprehensive security programs in health care.
Organizations are accountable for managing the disclosure of health information in a way that meets legal, regulatory, accreditation and licensing requirements and growing patient expectations for accountable privacy practices. Basic audit trail procedures should be applied, manually if necessary, in paper patient record systems to the extent feasible. Security in health information systems is an essential component to making progress in building and linking patient information. Successful implementation of large scale systems, the use of networks to transmit data, growing technical capability to address security issues and concerns about the confidentiality, and security provisions of patient information drive the focus on this topic. (See Guide E 1384.)
Consumer fears about confidentiality of health info...
SCOPE
1.1 This specification is for the development and implementation of security audit/disclosure logs for health information. It specifies how to design an access audit log to record all access to patient identifiable information maintained in computer systems and includes principles for developing policies, procedures, and functions of health information logs to document all disclosure of health information to external users for use in manual and computer systems. The process of information disclosure and auditing should conform, where relevant, with the Privacy Act of 1974 (1).  
1.2 The first purpose of this specification is to define the nature, role, and function of system access audit logs and their use in health information systems as a technical and procedural tool to help provide security oversight. In concert with organizational confidentiality and security policies and procedures, permanent audit logs can clearly identify all system application users who access patient identifiabl...

General Information

Status
Historical
Publication Date
31-Aug-2009
ICS
35.240.80 - IT applications in health care technology
Technical Committee
E31 - Healthcare Informatics
Drafting Committee
E31.25 - Healthcare Data Management, Security, Confidentiality, and Privacy
Current Stage
Ref Project

Relations

Replaces
ASTM E2147-01 - Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems
Effective Date
01-Sep-2009
Replaced By
ASTM E2147-01(2013) - Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems (Withdrawn 2017)
Effective Date
01-Mar-2013

Buy Standard

ASTM E2147-01(2009) - Standard Specification for Audit and Disclosure Logs for Use in Health Information SystemsASTM E2147-01(2009) - Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems
PreviousNext
Technical specification
ASTM E2147-01(2009) - Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems
English language
6 pages
sale 15% off
Preview
sale 15% off
Preview

Standards Content (Sample)


NOTICE: This standard has either been superseded and replaced by a new version or withdrawn.
Contact ASTM International (www.astm.org) for the latest information
Designation:E2147 −01(Reapproved 2009) An American National Standard
Standard Specification for
Audit and Disclosure Logs for Use in Health Information
Systems
This standard is issued under the fixed designation E2147; the number immediately following the designation indicates the year of
original adoption or, in the case of revision, the year of last revision. A number in parentheses indicates the year of last reapproval. A
superscript epsilon (´) indicates an editorial change since the last revision or reapproval.
1. Scope computer-based patient record coexist in parallel, security
oversight and access management should address both envi-
1.1 This specification is for the development and implemen-
ronments.
tation of security audit/disclosure logs for health information.
It specifies how to design an access audit log to record all
1.4 The second purpose of this specification is to identify
access to patient identifiable information maintained in com-
principles for establishing a permanent record of disclosure of
puter systems and includes principles for developing policies,
health information to external users and the data to be recorded
procedures, and functions of health information logs to docu-
in maintaining it. Security management of health information
ment all disclosure of health information to external users for
requires a comprehensive framework that incorporates man-
use in manual and computer systems. The process of informa-
dates and criteria for disclosing patient health information
tion disclosure and auditing should conform, where relevant,
found in federal and state laws, rules and regulations and
with the Privacy Act of 1974 (1).
ethical statements of professional conduct. Accountability for
such a framework should be established through a set of
1.2 The first purpose of this specification is to define the
standardprinciplesthatareapplicabletoallhealthcaresettings
nature, role, and function of system access audit logs and their
and health information systems.
use in health information systems as a technical and procedural
tool to help provide security oversight. In concert with orga-
1.5 Logs used to audit and oversee health information
nizational confidentiality and security policies and procedures,
access and disclosure are the responsibility of each health care
permanentauditlogscanclearlyidentifyallsystemapplication
organization, data intermediary, data warehouse, clinical data
users who access patient identifiable information, record the
repository, third party payer, agency, organization or corpora-
nature of the patient information accessed, and maintain a
tion that maintains or provides, or has access to individually-
permanent record of actions taken by the user. By providing a
identifiable data. Such logs are specified in and support policy
precise method for an organization to monitor and review who
on information access monitoring and are tied to disciplinary
hasaccessedpatientdata,auditlogshavethepotentialformore
sanctions that satisfy legal, regulatory, accreditation and insti-
effective security oversight than traditional paper record envi-
tutional mandates.
ronments. This specification will identify functionality needed
for audit log management, the data to be recorded, and the use
1.6 Organizations need to prescribe access requirements for
of audit logs as security and management tools by organiza-
aggregate data and to approve query tools that allow auditing
tional managers.
capability, or design data repositories that limit inclusion of
datathatprovidepotentialkeystoidentifiabledata.Inferencing
1.3 Intheabsenceofcomputerizedlogs,auditlogprinciples
patient identifiable data through analysis of aggregate data that
can be implemented manually in the paper patient record
contains limited identifying data elements such as birth date,
environment with respect to permanently monitoring paper
birth location, and family name, is possible using software that
patient record access. Where the paper patient record and the
matches data elements across data bases. This allows a
consistent approach to linking records into longitudinal cases
This specification is under the jurisdiction of ASTM Committee E31 on
for research purposes. Audit trails can be designed to work
Healthcare Informatics and is the direct responsibility of Subcommittee E31.25 on
with applications which use these techniques if the query
Healthcare Data Management, Security, Confidentiality, and Privacy.
Current edition approved Sept. 1, 2009. Published September 2009. Originally
functions are part of a defined retrieval application but often
approved in 2001. Last previous edition approved in 2001 as E2147 – 01. DOI:
standard query tools are not easily audited. This specification
10.1520/E2147-01R09.
applies to the disclosure or transfer of health information
The boldface numbers in parentheses refer to the list of references at the end of
this standard. (records) individually or in batches.
Copyright © ASTM International, 100 Barr Harbor Drive, PO Box C700, West Conshohocken, PA 19428-2959. United States
E2147−01 (2009)
1.7 This specification responds to the need for a standard 3.1.6 authorization, n—the mechanism for obtaining con-
addressing privacy and confidentiality as noted in Public Law sent for the use and disclosure of health information.
104–191 (2), or the Health Insurance Portability and Account- (CPRI, AHIMA)
ability Act of 1996 (3).
3.1.7 certificate, n—certificate means that a Certificate Au-
thority (CA) states a given correlation or given properties of
2. Referenced Documents
persons or IT-systems as true. If the certificate is used to
2.1 ASTM Standards:
confirm that a key belongs to its owner, it is called key
E1384 Practice for Content and Structure of the Electronic
certificate. If the certificate is used to confirm roles (qualifica-
Health Record (EHR)
tions), it is called authentication certificate.
E1633 SpecificationforCodedValuesUsedintheElectronic
3.1.8 confidential, n—status accorded to data or information
Health Record
indicating that it is sensitive for some reason, and therefore, it
E1762 Guide for Electronic Authentication of Health Care
needs to be protected against theft, disclosure, or improper use,
Information
and must be disseminated only to authorized individuals or
E1869 Guide for Confidentiality, Privacy, Access, and Data
organizations with an approved need to know. Private infor-
Security Principles for Health Information Including Elec-
mation, which is entrusted to another with the confidence that
tronic Health Records
unauthorized disclosure which would be prejudicial to the
E1902 Specification for Management of the Confidentiality
individual will not occur (6). (E1869; CPRI)
and Security of Dictation, Transcription, and Transcribed
Health Records (Withdrawn 2011)
3.1.9 database, n—a collection of data organized for rapid
E1986 Guide for Information Access Privileges to Health
search and retrieval. (Webster’s, 1993)
Information
3.1.10 database security, n—refers to the ability of the
2.2 Other Health Informatics Standards:
system to enforce security policy governing access, creation,
Health Level Seven (HL7) Version 2.2
modification, or destruction of information. Unauthorized cre-
ANSI ASC X12 Version 3, Release 3
ation of information is an important threat.
ISO/TEC 15408
3.1.11 disclosure, n—to access, release, transfer, or other-
3. Terminology
wise divulge health information to any internal or external user
or entity other than the individual who is the subject of such
3.1 Definitions:
information. (E1869)
3.1.1 access, n—the provision of an opportunity to ap-
proach, inspect, review, retrieve, store, communicate with, or 3.1.12 health information, n—any information, whether oral
make use of health information resources (for example, hard-
or recorded in any form or medium that is created or received
ware,software,systemsorstructure)orpatientidentifiabledata by a health care provider, a health plan, health, researcher,
and information, or both. (E1869)
public health authority, instructor, employer, school or univer-
sity, health information, service or other entity that creates,
3.1.2 audit log, n—a record of actions, for example, cre-
receives, obtains, maintains, uses or transmits health informa-
ation, queries, views, additions, deletions, and changes per-
tion; a health oversight agency, a health information service
formed on data.
organization; or, that relates to the past, present, or future
3.1.3 audit trail, n—a record of users that is documentary
physical or mental health or condition of an individual, the
evidence of monitoring each operation of individuals on health
provision of health care to an individual, or the past, present or
information. Audit trails may be comprehensive or specific to
future payments for the provision of health care to a protected
the individual and information (4). For example, an audit trail
individual; and, that identifies the individual with respect to
maybearecordofallactionstakenbyanyoneonaparticularly
whichthereisareasonablebasistobelievethattheinformation
sensitive file (5).
can be used to identify the individual (3).
3.1.4 authentication, n—the provision of assurance of the
3.1.13 information, n—data to which meaning is assigned,
claimed identity of an entity, receiver or object.
according to context and assumed conventions. (E1869)
(E1762, E1869, CPRI)
3.1.14 transaction log, n—a record of changes to data,
3.1.5 authorize, v—the granting to a user the right of access
especially to a data base, that can be used to reconstruct the
to specified data and information, a program, a terminal or a
data if there is a failure after the transaction occurs, in other
process. (E1869)
words, a means of ensuring data integrity and availability.
3.1.15 user, n—a person authorized to use the information
For referenced ASTM standards, visit the ASTM website, www.astm.org, or
contained in an information system as specified by their job
contact ASTM Customer Service at service@astm.org. For Annual Book of ASTM
Standards volume information, refer to the standard’s Document Summary page on
function. The patient may be designated an authorized user by
the ASTM website.
statute or institutional policy. A user also may refer to internal
The last approved version of this historical standard is referenced on
and external systems that draw data from an application.
www.astm.org.
Available from HL7, Mark McDougall, Executive Director, 900 Victors Way,
3.1.16 user identification (user ID), n—the combination
Suite 122, Ann Arbor, MI 48108.
name/number biometric assigned and maintained in security
Available from American National Standards Institute (ANSI), 25 W. 43rd St.,
4th Floor, New York, NY 10036, http://www.ansi.org. proceduresforidentifyingandtrackingindividualuseractivity.
E2147−01 (2009)
3.1.17 view—a designated configuration for data/ signoff, health record access to view, and receipt of patient
information extracted from information system(s) and pre- health record content from external provider/practitioner.
sented through a workstation.
5.1.1 Health record content (transformation/translation via
interfaces, interface engines, gateways between heterogeneous
4. Significance and Use
applications) should be maintained in the “before” and “after”
form. For example, laboratory reports/data translated from
4.1 Data that document health services in health care
laboratory forwarded to clinical repository storage.
organizations are business records and must be archived to a
secondary but retrievable medium. Audit logs should be
5.2 Other database tables are needed to link the items in 5.1
retained, at a minimum, according to the statute governing
and 5.1.1 to satisfy inquiries and to produce useful reports.
medical records in the geographic area.
Including unique user identification, for example, number, user
name, work location, and employee status (permanent, con-
4.2 The purpose of audit access and disclosure logs is to
tract,temporary)providesessentialuserinformation.Whilethe
document and maintain a permanent record of all authorized
audit log is a complete entity, data may be extracted from other
and unauthorized access to and disclosure of confidential
systems for use in the audit log application.
health care information in order that health care providers,
organizations, and patients and others can retrieve evidence of
5.3 The following functions should be performed when
that access to meet multiple needs. Examples are clinical,
auditing:
organizational, risk management, and patient rights’ needs.
5.3.1 Audits should identify and track individual users’
4.3 Audit logs designed for system access provide a precise
access, including authentication and signoff, to a specific
capability for organizations to see who has accessed patient
patient’s or provider’s data. This function should be done in
information. Due to the significant risk in computing environ-
realtimeandcapturedinauditlogs.Inthepaperpatientrecord,
ments by authorized and unauthorized users, the audit log is an
at a minimum, keep a permanent charge copy of all external
important management tool to monitor, access retrospectively.
releases.Forexample,anauditcanbeauthorizedbythepatient
In addition, the access and disclosure log becomes a powerful
or guardian, provided by law, or granted in an emergency. This
support document for disciplinary action. Audit logs are
may be a computer file.
essential components to comprehensive security programs in
5.3.2 Record or report type of access (authentication, si-
health care.
gnoff, queries, views, additions, deletions, changes). Complete
records of the type of access and all actions performed on the
4.4 Organizations are accountable for managing the disclo-
data should be maintained. All changes to an individual
sureofhealthinformationinawaythatmeetslegal,regulatory,
patient’s or provider’s computer based health information
accreditation and licensing requirements and growing patient
should be retrievable. Changes, additions, and deletions to a
expectationsforaccountableprivacypractices.Basicaudittrail
patient’shealthinformationshouldbereportedtotheguardian/
procedures should be applied, manually if necessary, in paper
custodian/steward of patient/health information/medical re-
patient record systems to the extent feasible. Security in health
information systems is an essential component to making cords.
progress in building and linking patient information. Success-
5.3.3 Record and maintain breach access flag. Flags should
ful implementation of large scale systems, the use of networks
notify a security administrator and the guardian/custodian/
to transmit data, growing technical capability to addre
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

ASTM
ASTM E2147-18(Specification)
Standard Specification for Audit and Disclosure Logs for Use in Health Information Systems

ABSTRACT
This specification describes the security requirements involved in the development and implementation of audit and disclosure logs used in health information systems. It specifies how to design an access audit log to record all access to patient identifiable information maintained in computer systems, and includes principles for developing policies, procedures, and functions of health information logs to document all disclosure of confidential health care information to external users for use in manual and computer systems. This specification provides for two main purposes, namely: to define the nature, role, and function of system access audit logs and their use in health information systems as a technical and procedural tool to help provide security oversight; and to identify principles for establishing a permanent record of disclosure of health information to external users and the data to be recorded in maintaining it.
SIGNIFICANCE AND USE
4.1 Data that document health services in health care organizations are business records and shall be archived to a secondary but retrievable medium, and readily accessible, such as data that would be archived in a server or cloud storage. Audit data shall be retained for as long as the medical record is maintained, and may not be destroyed before the medical record may legally be destroyed, and in any event, for at least 10 years or for two years after the legal age of majority, unless a longer period of record retention is prescribed by state, federal or other law or regulation.  
4.2 The purpose of audit data and disclosure logs is to document and maintain a permanent, trustworthy, and immutable record of all authorized and unauthorized activities of any nature whatsoever and disclosure of confidential health information {except exclusions per federal and state law [21 CFR 11 Subpart B(e)]}. This further facilitates the purpose that patients, healthcare providers, organizations, and others can obtain a verifiable, self-authenticating record documenting all activities with respect to that record. The process of information disclosure and auditing shall also conform, where relevant, with the Privacy Act of 1974 (3).  
4.3 Audit reports designed for system access provide a precise capability for healthcare providers, organizations, patients, patient representatives, and advocates to see who has accessed and/or manipulated patient information. Because of the significant risk of medical information manipulation in computing environments by authorized and unauthorized users, the audit report is an important management tool to monitor access and any such manipulation retrospectively. In addition, the access and disclosure logs become powerful support documents for disciplinary and legal actions. Moreover, audit reports are essential components to comprehensive security programs in healthcare and vital for the privacy rights of the individual. A patient has a right to ...
SCOPE
1.1 This specification is for the development and implementation of secure audit data and logs for electronically stored health information. It specifies how to design the audit log to record all activities impacting a medical record, for example, creating a new record, entering data into a record, changing or deleting an existing record, and all additional user access data (for example, identification, location, and date and time) to patient-identifiable information maintained in computer systems. Such audit logs shall track not only data entry and modifications, but also simple access and viewing of the patient record, and whether any modifications are made during that access. This specification also includes principles for developing policies, procedures, and functions of health information logs to document all actions regarding identifiable health information for use in both manually entered (paper record) and computer systems.  
1.2 The first purpose of this specification is to defin...

  • Technical specification
    7 pages
    English language
    sale 15% off
ASTM
ASTM E2767-24(Practice)
Standard Practice for Digital Imaging and Communication in Nondestructive Evaluation (DICONDE) for X-ray Computed Tomography (CT) Test Methods

SIGNIFICANCE AND USE
5.1 Personnel that are responsible for the creation, transfer, and storage of X-ray tomographic NDE data will use this standard. This practice defines a set of information modules that along with Practice E2339 and the DICOM standard provide a standard means to organize X-ray tomography test parameters and results. The X-ray CT test results may be displayed and analyzed on any device that conforms to this standard. Personnel wishing to view any tomographic inspection data stored according to Practice E2339 may use this document to help them decode and display the data contained in the DICONDE-compliant inspection record.
SCOPE
1.1 This practice facilitates the interoperability of X-ray computed tomography (CT) imaging equipment by specifying image data transfer and archival storage methods in commonly accepted terms. This document is intended to be used in conjunction with Practice E2339 on Digital Imaging and Communication in Nondestructive Evaluation (DICONDE). Practice E2339 defines an industrial adaptation of the NEMA Standards Publication titled Digital Imaging and Communications in Medicine (DICOM, see http://medical.nema.org), an international standard for image data acquisition, review, storage, and archival storage. The goal of Practice E2339, commonly referred to as DICONDE, is to provide a standard that facilitates the display and analysis of NDE test results on any system conforming to the DICONDE standard. Toward that end, Practice E2339 provides a data dictionary and a set of information modules that are applicable to all NDE modalities. This practice supplements Practice E2339 by providing information object definitions, information modules and a data dictionary that are specific to X-ray CT test methods.  
1.2 This practice has been developed to overcome the issues that arise when analyzing or archiving data from tomographic test equipment using proprietary data transfer and storage methods. As digital technologies evolve, data must remain decipherable through the use of open, industry-wide methods for data transfer and archival storage. This practice defines a method where all the X-ray CT technique parameters and test results are communicated and stored in a standard manner regardless of changes in digital technology.  
1.3 This practice does not specify:  
1.3.1 A testing or validation procedure to assess an implementation's conformance to the standard.  
1.3.2 The implementation details of any features of the standard on a device claiming conformance.  
1.3.3 The overall set of features and functions to be expected from a system implemented by integrating a group of devices each claiming DICONDE conformance.  
1.4 Units—Although this practice contains no values that require units, it does describe methods to store and communicate data that do require units to be properly interpreted. The values stated in SI units are to be regarded as standard. No other units of measurement are included in this standard.  
1.5 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.6 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    11 pages
    English language
    sale 15% off
  • Standard
    11 pages
    English language
    sale 15% off
ASTM
ASTM E3398-23(Guide)
Standard Guide for Digital Neutron Radiography

SIGNIFICANCE AND USE
4.1 Purpose—Practices to be employed for the radiographic examination of materials and components with neutrons using digital neutron detectors are outlined herein. They are intended as a guide for the assessment of a digital neutron radiograph’s characteristics. For information on neutron beam lines for imaging and film neutron radiography, refer to Guide E748.  
4.2 Limitations—Acceptance standards have not been established for any material or production process. Neutron radiography, whether performed by means of a reactor, an accelerator, subcritical assembly, or radioactive source, will be consistent in sensitivity and spatial resolution only if the consistency of all details of the technique, such as neutron source, collimation, geometry, imaging system, etc., are maintained. This guide is limited to the use of digital neutron detectors in combination with neutron conversion materials for image recording. This guide is intended for use with thermal and cold neutron spectrums. The production of thermal neutron radiographs by employing the use of film and appropriate conversion screens is covered in Guide E748.  
4.3 Interpretation and Acceptance Standards—Interpretat- ion and acceptance standards are not covered by this guide. Designation of accept-reject standards is recognized to be within the cognizance of product specifications.  
4.4 Other Aspects of the Neutron Radiographic Process—For many important aspects of neutron radiography such as technique, files, viewing of radiographs, storage of radiographs, film processing, and record keeping, refer to Guide E94, which covers these aspects for X-ray radiography. (See Section 2.)
SCOPE
1.1 This guide covers the evaluation, qualification, and quantification of digital neutron images. These images can be acquired by many methods, including: neutron sensitive imaging plates (Computed Radiography – CR), Digital Detector Arrays – DDA’s (amorphous silicon, CMOS, CCD, etc.), micro-channel plates, neutron sensitive fluoroscopes, neutron sensitive scintillators coupled to optical cameras, digitized radiographic films, and linear diode arrays.  
1.2 This guide does not purport to establish what is considered an acceptable image but is intended to only give guidance on digital neutron imaging, as well as image quality metrics of importance, and how they can be measured and reported.  
1.3 The values stated in SI units are to be regarded as standard. No other units of measurement are included in this standard.  
1.4 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.5 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Guide
    7 pages
    English language
    sale 15% off
ASTM
ASTM E2699-23(Practice)
Standard Practice for Digital Imaging and Communication in Nondestructive Evaluation (DICONDE) for Digital X-ray (DX) Test Methods

SIGNIFICANCE AND USE
5.1 Personnel that are responsible for the creation, transfer, and storage of digital X-ray test results will use this standard. This practice defines a set of information modules that, along with Practice E2339 and the DICOM standard, provides a standard means to organize digital X-ray test parameters and results. The digital X-ray test results may be displayed and analyzed on any device that conforms to this standard. Personnel wishing to view any digital X-ray inspection data stored according to Practice E2339 may use this document to help them decode and display the data contained in the DICONDE-compliant inspection record.
SCOPE
1.1 This practice covers the interoperability of digital X-ray imaging equipment using Digital Detector Arrays (DDA) as described in Practice E2698 by specifying image data transfer and archival methods in commonly accepted terms. A separate practice, Practice E2738, addresses this topic for digital X-ray imaging equipment using Computed Radiography (CR). This document is intended to be used in conjunction with Practice E2339 on Digital Imaging and Communication in Nondestructive Evaluation (DICONDE). Practice E2339 defines an industrial adaptation of DICOM NEMA PS3 / ISO 12052 (DICOM, see http://medical.nema.org), an international standard for image data acquisition, review, storage, and archival storage. The goal of Practice E2339, commonly referred to as DICONDE, is to provide a standard that facilitates the display and analysis of NDE results on any system conforming to the DICONDE standard. Toward that end, Practice E2339 provides a data dictionary and a set of information modules that are applicable to all NDE modalities. This practice supplements Practice E2339 by providing information object definitions, information modules, and a data dictionary that are specific to digital X-ray test methods.  
1.2 This practice has been developed to overcome the issues that arise when analyzing or archiving data from digital X-ray test equipment using proprietary data transfer and storage methods. As digital technologies evolve, data must remain decipherable through the use of open, industry-wide methods for data transfer and archival storage. This practice defines a method where all the digital X-ray technique parameters and test results are communicated and stored in a standard manner regardless of changes in digital technology.  
1.3 This practice does not specify:  
1.3.1 A testing or validation procedure to assess an implementation's conformance to the standard.  
1.3.2 The implementation details of any features of the standard on a device claiming conformance.  
1.3.3 The overall set of features and functions to be expected from a system implemented by integrating a group of devices each claiming DICONDE conformance.  
1.4 Units—Although this practice contains no values that require units, it does describe methods to store and communicate data that do require units to be properly interpreted. The SI units required by this practice are to be regarded as standard. No other units of measurement are included in this standard.  
1.5 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.6 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    6 pages
    English language
    sale 15% off
  • Standard
    6 pages
    English language
    sale 15% off
ASTM
ASTM E2738-23(Practice)
Standard Practice for Digital Imaging and Communication in Nondestructive Evaluation (DICONDE) for Computed Radiography (CR) Test Methods

SIGNIFICANCE AND USE
5.1 Personnel that are responsible for the creation, transfer, and storage of computed radiography NDE data will use this practice. This practice will define a set of information modules that along with the Practice E2339 and the DICOM standard will provide a standard means to organize CR inspection data. The CR inspection data may be displayed and analyzed on any device that conforms to the standard. Personnel wishing to view any CR inspection data stored in accordance with Practice E2339 may use this practice to help them decode and display the data contained in the DICONDE compliant inspection record.
SCOPE
1.1 This practice covers the interoperability of computed radiography (CR) imaging and data acquisition equipment by specifying image data transfer and archival storage methods in commonly accepted terms. This practice is intended to be used in conjunction with Practice E2339 on Digital Imaging and Communication in Nondestructive Evaluation (DICONDE). Practice E2339 defines an industrial adaptation of NEMA PS3 / ISO 12052 (DICOM, see http://medical.nema.org), an international standard for image data acquisition, review, storage, and archival storage. The goal of Practice E2339, commonly referred to as DICONDE, is to provide a standard that facilitates the display and analysis of NDE results on any system conforming to the DICONDE standard. Toward that end, Practice E2339 provides a data dictionary and a set of information modules that are applicable to all NDE modalities. This practice supplements Practice E2339 by providing information object definitions, information modules and a data dictionary that are specific to computed radiography test methods.  
1.2 This practice has been developed to overcome the issues that arise when analyzing or archiving data from CR test equipment using proprietary data transfer and storage methods. As digital technologies evolve, data must remain decipherable through the use of open, industry-wide methods for data transfer and archival storage. This practice defines a method where all standard CR technique parameters and test results are communicated and stored in a standard manner regardless of changes in digital technology.  
1.3 This practice does not specify:  
1.3.1 A testing or validation procedure to assess an implementation's conformance to the standard.  
1.3.2 The implementation details of any features of the standard on a device claiming conformance.  
1.3.3 The overall set of features and functions to be expected from a system implemented by integrating a group of devices each claiming DICONDE conformance.  
1.4 Although this practice contains no values that require units, it does describe methods to store and communicate data that do require units to be properly interpreted. The SI units required by this practice are to be regarded as standard. No other units of measurement are included in this practice.  
1.5 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.6 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    5 pages
    English language
    sale 15% off
  • Standard
    5 pages
    English language
    sale 15% off
ASTM
ASTM E1475-13(2023)(Guide)
Standard Guide for Data Fields for Computerized Transfer of Digital Radiological Examination Data

SIGNIFICANCE AND USE
3.1 The primary use of this guide is to provide a standardized approach for the data file to be used for the transfer of digital radiological data from one user to another where the two users are working with dissimilar systems. This guide describes the contents, both required and optional for an intermediate data file that can be created from the native format of the radiological system on which the data was collected and that can be converted into the native format of the receiving radiological data analysis system. This guide will also be useful in the archival storage and retrieval of radiological data as either a data format specifier or as a guide to the data elements which should be included in the archival file.  
3.2 Although the recommended field listing includes more than 100 field numbers, only about half of those are regarded as essential and are marked Footnote C in Table 1. Fields so marked must be included in the data base. The other fields recommended provide additional information that a user will find helpful in understanding the radiological image and examination result. These header field items will, in most cases, make up only a very small part of a radiological examination file. The actual stream of radiological data that make up the image will take up the largest part of the data base. Since a radiological image file will normally be large, the concept of data compression will be considered in many cases. Compressed data should be noted, along with a description of the compression method, as indicated in Field No. 92 (see Table 1). (A) Field numbers are for reference only. They do not imply a necessity to include all these fields in any specific data base nor imply a requirement that fields used be in this particular order.(B) Units listed first are SI; those in parentheses are inch-pound (English).(C) Denotes essential field for computerization of examination results, regardless of examination method.(D) Denotes essential field for radiogra...
SCOPE
1.1 This guide provides a listing and description of the fields that are recommended for inclusion in a digital radiological examination data base to facilitate the transfer of such data. This guide sets guidelines for the format of data fields for computerized transfer of digital image files obtained from radiographic, radioscopic, computed radiographic, or other radiological examination systems. The field listing includes those fields regarded as necessary for inclusion in the data base: (1) regardless of the radiological examination method (as indicated by Footnote C in Table 1), (2) for radioscopic examination (as indicated by Footnote F in Table 1), and (3) for radiographic examination (as indicated by Footnote D in Table 1). In addition, other optional fields are listed as a reminder of the types of information that may be useful for additional understanding of the data or applicable to a limited number of applications.  
1.2 It is recognized that organizations may have in place an internal format for the storage and retrieval of radiological examination data. This guide should not impede the use of such formats since it is probable that the necessary fields are already included in such internal data bases, or that the few additions can easily be made. The numerical listing and its order indicated in this guide is only for convenience; the specific numbers and their order carry no inherent significance and are not part of the data file.  
1.3 Current users of Guide E1475 do not have to change their software. First time users should use the XML structure of Table A1.1 for their data.  
1.4 The types of radiological examination systems that appear useful in relation to this guide include radioscopic systems as described in Guide E1000, Practices E1255, E1411, E2597, E2698 and E2737, and radiographic systems as described in Guide E94 and Practices E748, E1742, E2033, E2445, and E2446. Many of the terms used are def...

  • Guide
    7 pages
    English language
    sale 15% off
ASTM
ASTM F3107-14(2023)(Test Method)
Standard Test Method for Measuring Accuracy After Mechanical Disturbances on Reference Frames of Computer Assisted Surgery Systems

SIGNIFICANCE AND USE
5.1 The purpose of this practice is to provide data that can be used for comparison and evaluation of the accuracy of different CAS systems.  
5.2 The use of CAS systems and robotic tracking systems is becoming increasingly common and requires a degree of trust by the user that the data provided by the system meets necessary accuracy requirements. In order to evaluate the potential use of these systems, and to make informed decisions about suitability of a system for a given procedure, objective performance data of such systems are necessary. While the end user will ultimately want to know the accuracy parameters of a system under clinical application, the first step must be to characterize the digitization accuracy of the tracking subsystem in a controlled environment under controlled conditions.  
5.3 In order to make comparisons within and between systems, a standardized way of measuring and reporting point accuracy is needed. Parameters such as coordinate system, units of measure, terminology, and operational conditions must be standardized.
SCOPE
1.1 This standard will measure the effects on the accuracy of computer assisted surgery (CAS) systems of the environmental influences caused by equipment utilized for bone preparation during the intended clinical application for the system. The environmental vibration effect covered in this standard will include mechanical vibration from: cutting saw (sagittal or reciprocating), burrs, drills, and impact loading. The change in accuracy from detaching and re-attaching or disturbing a restrained connection that does not by design require repeating the registration process of a reference base will also be measured.  
1.2 It should be noted that one system may need to undergo multiple iterations (one for each clinical application) of this standard to document its accuracy during different clinical applications since each procedure may have different exposure to outside forces given the surgical procedure variability from one procedure to the next.  
1.3 All units of measure will be reported as millimeters for this standard.  
1.4 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.5 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    5 pages
    English language
    sale 15% off
ASTM
ASTM F2554-22(Practice)
Standard Practice for Measurement of Positional Accuracy of Computer-Assisted Surgical Systems

SIGNIFICANCE AND USE
5.1 The purpose of this practice is to provide data that can be used for evaluation of the accuracy of different CAS systems.  
5.2 The use of surgical navigation and robotic positioning systems is becoming increasingly common. In order to make informed decisions about the suitability of such systems for a given procedure, their accuracy capability needs to be evaluated under clinical application and compared to the requirements. As the performance of a whole system is constrained by those of its subparts, a preliminary step must be to objectively characterize the accuracy of the tracking subsystem in a controlled environment under controlled conditions.  
5.3 In order to make comparisons within and between systems, a standardized way of measuring and reporting accuracy is needed. Parameters such as coordinate system, units of measurement, terminology, and operational conditions must be standardized.
SCOPE
1.1 This document provides procedures for measurement and reporting of basic static performance of surgical navigation and/or robotic positioning devices under defined conditions. They can be performed on a subsystem (for example, tracking only) or a full computer-aided surgery system as would be used clinically. Testing a subsystem does not mean that the whole system has been tested. The functionality to be tested based on this practice is limited to the performance (accuracy in terms of bias and precision) of the system regarding point localization in space by means of a pointer. A point in space has no orientation; only multidimensional objects have orientation. Therefore, orientation of objects is not within the scope of this practice. However, in localizing a point the different orientations of the pointer can produce errors. These errors and the pointer orientation are within the scope of this practice. The aim is to provide a standardized measurement of performance variables by which end users can compare within a system (for example, with different reference elements or pointers) and between different systems (for example, from different manufacturers). Parameters to be evaluated include (based upon the features of the system being evaluated):
(1) Accuracy of a single point relative to a coordinate system.
(2) Sensitivity of tracking accuracy due to changes in pointer orientation.
(3) Relative point-to-point accuracy.  
1.1.1 This method covers all configurations of the evaluated system as well as extreme placements across the measurement volume.  
1.2 This practice defines a standardized reporting format, which includes definition of the coordinate systems to be used for reporting the measurements, and statistical measures (for example, mean, RMS, and maximum error).  
1.3 The values stated in SI units are to be regarded as standard. No other units of measurement are included in this standard, except for angular measurements, which may be reported in terms of radians or degrees.  
1.4 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.5 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    9 pages
    English language
    sale 15% off
  • Standard
    9 pages
    English language
    sale 15% off
ASTM
ASTM E2891-20(Guide)
Standard Guide for Multivariate Data Analysis in Pharmaceutical Development and Manufacturing Applications

SIGNIFICANCE AND USE
4.1 A significant amount of data is generated during pharmaceutical development and manufacturing activities. The interpretation of such data is becoming increasingly difficult. Individual examination of the univariate process variables is relevant but can be significantly complemented by multivariate data analysis (MVDA). MVDA may be particularly appropriate for exploring and handling large sets of heterogenous data, mapping data of high dimensionality onto lower dimensional representations, exposing significant correlations among multivariate variables within a single data set or significant correlations among multivariate variables across data sets. MVDA may extract statistically significant information which may enhance process understanding, decision making in process development, process monitoring and control (including product release), product life-cycle management, and continuous improvement.  
4.2 MVDA is widely used in various industries including the pharmaceutical industry. To achieve a valid outcome, an MVDA model/application should incorporate the following:  
4.2.1 A predefined risk-based objective incorporating one or more relevant scientific hypotheses specific to the application;  
4.2.2 Sufficient relevant data of requisite quality covering the variance space encountered during intended use, that is, pharmaceutical development, or pharmaceutical manufacturing, or both;  
4.2.3 Appropriate data analysis and model utilization practices including considerations on testing, validation, and qualification of all new data prior to using a model to analyze it;  
4.2.4 Appropriately trained staff;  
4.2.5 Appropriate standard operating procedures; and  
4.2.6 Life-cycle management.  
4.3 This guide can be used to support data analysis activities associated with pharmaceutical development and manufacturing, process performance and product quality monitoring in manufacturing, as well as for troubleshooting and investigation events. Technical detai...
SCOPE
1.1 This guide covers the applications of multivariate data analysis (MVDA) to support pharmaceutical development and manufacturing activities. MVDA is one of the key enablers for process understanding and decision making in pharmaceutical development, and for the release of intermediate and final products after being validated appropriately using a science and risk-based approach.  
1.2 The scope of this guide is to provide general guidelines on the application of MVDA in the pharmaceutical industry. While MVDA refers to typical empirical data analysis, the scope is limited to providing a high level guidance and not intended to provide application-specific data analysis procedures. This guide provides considerations on the following aspects:  
1.2.1 Use of a risk-based approach (understanding the objective requirements and assessing the fit-for-use status);  
1.2.2 Considerations on the data collection and diagnostics used for MVDA (including data preprocessing and outliers);  
1.2.3 Considerations on the different types of data analysis, model testing, and validation;  
1.2.4 Qualified and competent personnel; and  
1.2.5 Life-cycle management of MVDA model.  
1.3 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.4 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Guide
    7 pages
    English language
    sale 15% off
  • Guide
    7 pages
    English language
    sale 15% off
ASTM
ASTM E1935-97(2019)(Test Method)
Standard Test Method for Calibrating and Measuring CT Density

SIGNIFICANCE AND USE
5.1 This test method allows specification of the density calibration procedures to be used to calibrate and perform material density measurements using CT image data. Such measurements can be used to evaluate parts, characterize a particular system, or compare different systems, provided that observed variations are dominated by true changes in object density rather than by image artifacts. The specified procedure may also be used to determine the effective X-ray energy of a CT system.  
5.2 The recommended test method is more accurate and less susceptible to errors than alternative CT-based approaches, because it takes into account the effective energy of the CT system and the energy-dependent effects of the X-ray attenuation process.
FIG. 1 Density Calibration Phantom  
5.3 This (or any) test method for measuring density is valid only to the extent that observed CT-number variations are reflective of true changes in object density rather than image artifacts. Artifacts are always present at some level and can masquerade as density variations. Beam hardening artifacts are particularly detrimental. It is the responsibility of the user to determine or establish, or both, the validity of the density measurements; that is, they are performed in regions of the image which are not overly influenced by artifacts.  
5.4 Linear attenuation and mass attenuation may be measured in various ways. For a discussion of attenuation and attenuation measurement, see Guide E1441 and Practice E1570.
SCOPE
1.1 This test method covers instruction for determining the density calibration of X- and γ-ray computed tomography (CT) systems and for using this information to measure material densities from CT images. The calibration is based on an examination of the CT image of a disk of material with embedded specimens of known composition and density. The measured mean CT values of the known standards are determined from an analysis of the image, and their linear attenuation coefficients are determined by multiplying their measured physical density by their published mass attenuation coefficient. The density calibration is performed by applying a linear regression to the data. Once calibrated, the linear attenuation coefficient of an unknown feature in an image can be measured from a determination of its mean CT value. Its density can then be extracted from a knowledge of its mass attenuation coefficient, or one representative of the feature.  
1.2 CT provides an excellent method of nondestructively measuring density variations, which would be very difficult to quantify otherwise. Density is inherently a volumetric property of matter. As the measurement volume shrinks, local material inhomogeneities become more important; and measured values will begin to vary about the bulk density value of the material.  
1.3 All values are stated in SI units.  
1.4 This standard does not purport to address all of the safety concerns, if any, associated with its use. It is the responsibility of the user of this standard to establish appropriate safety, health, and environmental practices and determine the applicability of regulatory limitations prior to use.  
1.5 This international standard was developed in accordance with internationally recognized principles on standardization established in the Decision on Principles for the Development of International Standards, Guides and Recommendations issued by the World Trade Organization Technical Barriers to Trade (TBT) Committee.

  • Standard
    5 pages
    English language
    sale 15% off