Name: SIST ENV 13729:2003
Brand: SIST
SKU: cfac80f5-1fb3-4f52-b5e8-1e38136e03d3
Price: 89.99 USD
Availability: InStock
Rating: 5 (6 reviews)

Health informatics - Secure user identification - Strong authentication using microprocessor cards

This European Prestandard defines a method for strong authentication of the identity of a user of a health information system where the user is equipped with a microprocessor card. By system is meant primarily a general purpose computer system with hardware ranging from a personal computer (PC) to a mainframe. Dedicated embedded systems with special operating systems are not considered, nor is
access control to data on a smart card such as a patient data card. However this European Prestandard does not preclude the addition of this functionality to a user card. The main focus of consideration is on users who are the healthcare persons, registered professionals
and other staff using health information. In situations when patients are allowed to use healthcare information systems directly to access their personal data, and secure user identification is needed, this European Prestandard may also be used. This European Prestandard defines a cryptographic authentication procedure using microprocessor cards with digital signature capabilities. This procedure is designed to be usable both within a local system and by a remote system across an unprotected network. This European Prestandard specifies the cryptographic algorithm to be employed and which must be available in the microprocessor card as well as in any authenticating system, remote or local, in the implementation of the defined strong authentication method. This European Prestandard defines the minimum set of physical, electrical and protocol standards that microprocessor cards shall support in order to conform to this standard; it does not define the internal structure of systems that support the use of these cards. This ENV identifies a number of IETF standards that support remote authentication in a way that is compatible with the use of this standard. The method for strong authentication defined in this European Prestandard requires Certification services...(Truncated)

Zdravstvena informatika – Varna identifikacija uporabnikov – Močna avtentikacija z mikroprocesorskimi karticami

General Information

Status

Withdrawn

Publication Date

30-Sep-2003

Withdrawal Date

22-Mar-2015

ICS

35.240.15 - Identification cards. Chip cards. Biometrics

35.240.80 - IT applications in health care technology

Technical Committee

ITC - Information technology

Current Stage

9900 - Withdrawal (Adopted Project)

Start Date

16-Mar-2015

Due Date

08-Apr-2015

Completion Date

23-Mar-2015

Ref Project

ENV 13729:2000 - Health informatics - Secure user identification - Strong authentication using microprocessor cards

Relations

Child

SIST ENV 12251:2003 - Health informatics - Secure user identification for health care - Management and security of authentication by passwords

Effective Date

22-Dec-2008

Buy Standard

Standardization document

ENV 13729:2003

English language

38 pages

sale 10% off

Preview

sale 10% off

Preview

e-Library read for

1 day

Standards Content (Sample)

ENV 13729:2003

SLOVENSKI STANDARD
SIST ENV 13729:2003
01-oktober-2003
=GUDYVWYHQDLQIRUPDWLND±9DUQDLGHQWLILNDFLMDXSRUDEQLNRY±0RþQDDYWHQWLNDFLMD]
PLNURSURFHVRUVNLPLNDUWLFDPL
Health informatics - Secure user identification - Strong authentication using
microprocessor cards
Ta slovenski standard je istoveten z: ENV 13729:2000
ICS:
35.240.15 Identifikacijske kartice in Identification cards and
sorodne naprave related devices
35.240.80 Uporabniške rešitve IT v IT applications in health care
zdravstveni tehniki technology
SIST ENV 13729:2003 en
2003-01.Slovenski inštitut za standardizacijo. Razmnoževanje celote ali delov tega standarda ni dovoljeno.

---------------------- Page: 1 ----------------------

SIST ENV 13729:2003

---------------------- Page: 2 ----------------------

SIST ENV 13729:2003

---------------------- Page: 3 ----------------------

SIST ENV 13729:2003

---------------------- Page: 4 ----------------------

SIST ENV 13729:2003

---------------------- Page: 5 ----------------------

SIST ENV 13729:2003

---------------------- Page: 6 ----------------------

SIST ENV 13729:2003

---------------------- Page: 7 ----------------------

SIST ENV 13729:2003

---------------------- Page: 8 ----------------------

SIST ENV 13729:2003

---------------------- Page: 9 ----------------------

SIST ENV 13729:2003

---------------------- Page: 10 ----------------------

SIST ENV 13729:2003

---------------------- Page: 11 ----------------------

SIST ENV 13729:2003

---------------------- Page: 12 ----------------------

SIST ENV 13729:2003

---------------------- Page: 13 ----------------------

SIST ENV 13729:2003

---------------------- Page: 14 ----------------------

SIST ENV 13729:2003

---------------------- Page: 15 ----------------------

SIST ENV 13729:2003

---------------------- Page: 16 ----------------------

SIST ENV 137
...

Questions, Comments and Discussion

Ask us and Technical Secretary will try to provide an answer. You can facilitate discussion about the standard in here.

This May Also Interest You

SIST

SIST EN ISO 21549-7:2017(Main)

Health informatics - Patient healthcard data - Part 7: Medication data (ISO 21549-7:2016)

EN ISO 21549-7:2016

This document applies to situations in which such data is recorded on or transported by patient
healthcards compliant with the physical dimensions of ID-1 cards defined by ISO/IEC 7810.
This document specifies the basic structure of the data contained within the medication data object,
but does not specify or mandate particular data sets for storage on devices.
The purpose of this document is for cards to provide information to other health professionals and to
the patient or its non-professional caregiver.
It can also be used to carry a new prescription from the prescriber to the dispenser/pharmacy in the
design of its sets.
Medication data include the following four components:
— medication notes: additional information related to medication and the safe use of medicines by
the patient such as medication history, sensitivities and allergies;
— medication prescriptions: to carry a new prescription from the prescriber to the
dispenser/pharmacy;
— medication dispensed: the records of medications dispensed for the patient;
— medication references: pointers to other systems that contain information that makes up
medication prescription and the authority to dispense.
The following topics are beyond the scope of this document:
— physical or logical solutions for the practical functioning of particular types of data cards;
— how the message is processed further “downstream” of the interface between two systems;
— the form which the data takes for use outside the data card, or the way in which such data is visibly
represented on the data card or elsewhere.
NOTE Not only does the definition of “medicinal products” differ from country to country, but also the same
name can relate to entirely different products in some countries. Therefore, it is important to consider the safety
of the patient when the card is used across borders.
This document describes and defines the Medication data objects used within or referenced by patientheld
health data cards using UML, plain text and Abstract Syntax Notation (ASN.1).
This document does not describe nor define the common objects defined within ISO 21549-2, even
though they are referenced and utilized within this document.

Standard
60 pages
English language
sale 10% off
e-Library read for
1 day

29-Nov-2014
17-Apr-2017
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-5:2016(Main)

Health informatics - Patient healthcard data - Part 5: Identification data (ISO 21549-5:2015)

EN ISO 21549-5:2016

This part of ISO 21549 describes and defines the basic structure of the identification data objects held
on healthcare data cards, but does not specify particular data sets for storage on devices.
The detailed functions and mechanisms of the following services are not within the scope of this part of
ISO 21549 (although its structures can accommodate suitable data objects elsewhere specified):
— security functions and related services that are likely to be specified by users for data cards
depending on their specific application, e.g. confidentiality protection, data integrity protection and
authentication of persons and devices related to these functions;
— access control services;
— the initialization and issuing process (which begins the operating lifetime of an individual data
card, and by which the data card is prepared for the data to be subsequently communicated to it
according to this part of ISO 21549).
The following topics are therefore beyond the scope of this part of ISO 21549:
— physical or logical solutions for the practical functioning of particular types of data card;
— the forms that data take for use outside the data card, or the way in which such data are visibly
represented on the data card or elsewhere.

Standard
17 pages
English language
sale 10% off
e-Library read for
1 day
Draft
14 pages
English language
sale 10% off
e-Library read for
1 day

30-Dec-2014
04-Jul-2016
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-3:2014(Main)

Health informatics - Patient healthcard data - Part 3: Limited clinical data (ISO 21549-3:2014)

EN ISO 21549-3:2014

EN ISO 21549-3 is applicable to situations in which such data is recorded on or transported by patient healthcards compliant with the physical dimensions of ID-1 cards defined by ISO/IEC 7810. This part of ISO 21549 describes and defines the limited clinical data objects used in or referenced by patient healthcards using UML, plain text and abstract syntax notation (ASN.1).” This part of ISO 21549 specifies the basic structure of the data contained within the data object limited clinical data, but does not specify or mandate particular data sets for storage on devices. In particular the data contained within the data objects in Limited clinical data are intended to aid the delivery of emergency care, whilst are by themselves neither intended, nor fit for purpose for the total of information provision for the delivery of emergency care. The detailed functions and mechanisms of the following services are not within the scope of this part of ISO 21549, (although its structures can accommodate suitable data objects elsewhere specified): - the encoding of free text data; - security functions and related services which are likely to be specified by users for data cards depending on their specific application, for example: confidentiality protection, data integrity protection, and authentication of persons and devices related to these functions; - access control services which may depend on active use of some data card classes such as microprocessor cards; - the initialisation and issuing process (which begins the operating lifetime of an individual data card, and by which the data card is prepared for the data to be subsequently communicated to it according to this part of ISO 21549). The following topics are therefore beyond the scope of this part of ISO 21549: - physical or logical solutions for the practical functioning of particular types of data cards; - how the message is processed further "downstream" of the interface between two systems; - the form which data takes for use outside the data card, or the way in which such data is visibly represented on the data card or elsewhere.

Standard
21 pages
English language
sale 10% off
e-Library read for
1 day

30-Sep-2012
11-Jun-2014
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-4:2014(Main)

Health informatics - Patient healthcard data - Part 4: Extended clinical data (ISO 21549-4:2014)

EN ISO 21549-4:2014

EN ISO 21549-4 is applicable to situations in which such data is recorded on or transported by patient healthcare data cards compliant with the physical dimensions of ID-1 cards defined by ISO 7810. This International Standard specifies the basic structure of the data contained within the data object extended clinical data, but does not specify or mandate particular data-sets for storage on devices. In order to facilitate interoperability, whenever an application is built for use in the healthcare domain in compliance with this International standard, data items required for that application shall be drawn from the list of objects (some of which are extensible) as provided in clauses 6 to 8. These shall then be used in conjunction with other data defined in other parts of this International Standard. The detailed functions and mechanisms of the following services are not within the scope of this International Standard, (although its structures can accommodate suitable data objects elsewhere specified): - the encoding of free text data - security functions and related services which are likely to be specified by users for data cards depending on their specific application, for example: confidentiality protection, data integrity protection, and authentication of persons and devices related to these functions; - access control services which may depend on active use of some data card classes such as microprocessor cards; - the initialisation and issuing process (which begins the operating lifetime of an individual data card, and by which the data card is prepared for the data to be subsequently communicated to it according to this Draft international standard). The following topics are therefore beyond the scope of this International Standard: - physical or logical solutions for the practical functioning of particular types of data cards; - how the message is processed further ‘downstream’ of the interface between two systems; - the form which data takes for use outside the data card, or the way in which such data is visibly represented on the data card or

Standard
27 pages
English language
sale 10% off
e-Library read for
1 day

30-Sep-2012
03-Jun-2014
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-2:2014(Main)

Health informatics - Patient healthcard data - Part 2: Common objects (ISO 21549-2:2014)

EN ISO 21549-2:2014

EN ISO 21549-2 establishes a common framework for the content and the structure of common objects used to construct or referenced by other data objects data held on patient healthcare data cards. This part of ISO 21549 is applicable to situations in which such data is recorded on or transported by patient healthcards compliant with the physical dimensions of ID-1 cards defined by ISO/IEC 7810. This part of ISO 21549 specifies the basic structure of the data, but does not specify or mandate particular data-sets for storage on devices. The detailed functions and mechanisms of the following services are not within the scope of this part of ISO 21549, (although its structures can accommodate suitable data objects elsewhere specified): - the encoding of free text data; - security functions and related services which are likely to be specified by users for data cards depending on their specific application, for example: confidentiality protection, data integrity protection, and authentication of persons and devices related to these functions; - access control services which may depend on active use of some data card classes such as microprocessor cards; - the initialization and issuing process (which begins the operating lifetime of an individual data card, and by which the data card is prepared for the data to be subsequently communicated to it according to this part of ISO 21549). The following topics are therefore beyond the scope of this part of ISO 21549: - physical or logical solutions for the practical functioning of particular types of data cards; - how the message is processed further ‘downstream’ of the interface between two systems; - the form which data takes for use outside the data card, or the way in which such data is visibly represented on the data card or elsewhere.

Standard
25 pages
English language
sale 10% off
e-Library read for
1 day

30-Sep-2012
03-Jun-2014
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-1:2013(Main)

Health informatics - Patient healthcard data - Part 1: General structure (ISO 21549-1:2013)

EN ISO 21549-1:2013

This part of ISO 21549 defines a general structure for the different types of data to be defined in other parts of ISO 21549 using UML notation. ISO 21549 defines data structures held on patient healthcards compliant with the physical dimensions of ID-1 cards, as defined by ISO/IEC 7810.

Standard
13 pages
English language
sale 10% off
e-Library read for
1 day

SIST

SIST EN ISO 21549-8:2010(Main)

Health informatics - Patient healthcard data - Part 8: Links (ISO 21549-8:2010)

EN ISO 21549-8:2010

This part of ISO 21549 defines a way to facilitate access to distributed patient records and/or administrative information using healthcards. It defines the structure and elements of “links” typically stored in healthcards and representing references to individual patients' records as well as to subcomponents of them. Access control mechanisms, data protection mechanisms, access methods and other security services are outside the scope of this part of ISO 21549.

Standard
17 pages
English language
sale 10% off
e-Library read for
1 day

31-Jul-2009
05-Sep-2010
35.240.15
35.240.80
M/255
ITC

SIST

SIST EN ISO 21549-6:2008

Health informatics - Patient healthcard data - Part 6: Administrative data (ISO 21549-6:2008)

EN ISO 21549-6:2008

This part of ISO 21549 is applicable to situations in which administrative data are recorded on or transported by patient healthcards compliant with the physical dimensions of ID-1 cards defined by ISO/IEC 7810. This part of ISO 21549 specifies the basic structure of the data contained within the data object administrative data, but does not specify or mandate particular data sets for storage on devices. The detailed functions and mechanisms of the following services are not within the scope of this part of ISO 21549, although its structures can accommodate suitable data objects elsewhere specified:
- the encoding of free text data;
- security functions and related services that are likely to be specified by users for data cards depending on their specific application, e.g. confidentiality protection, data integrity protection, and authentication of persons and devices related to these functions;
- access control services that may depend on active use of some data card classes such as
microprocessor cards;
- the initialization and issuing process (which begins the operating lifetime of an individual data card, and by which the data card is prepared for the data to be subsequently communicated to it according to this part of ISO 21549).
The following topics are therefore beyond the scope of this part of ISO 21549:
- physical or logical solutions for the practical functioning of particular types of data card;
- how the message is processed further downstream of the interface between two systems;
- the form which data take for use outside the data card, or the way in which such data are visibly
represented on the data card or elsewhere.

Standard
14 pages
English language
sale 10% off
e-Library read for
1 day

05-May-2008
35.240.15
35.240.80
ITC

SIST

oSIST prEN ISO 21549-5:2023(Main)

Health informatics - Patient healthcard data - Part 5: Identification data (ISO/FDIS 21549-5:2023)

prEN ISO 21549-5

ISO 21549-5:2015 describes and defines the basic structure of the identification data objects held on healthcare data cards, but does not specify particular data sets for storage on devices.
The detailed functions and mechanisms of the following services are not within the scope of this part of ISO 21549 (although its structures can accommodate suitable data objects elsewhere specified):
- security functions and related services that are likely to be specified by users for data cards depending on their specific application, e.g. confidentiality protection, data integrity protection and authentication of persons and devices related to these functions;
- access control services;
- the initialization and issuing process (which begins the operating lifetime of an individual data card, and by which the data card is prepared for the data to be subsequently communicated to it according to this part of ISO 21549).
The following topics are therefore beyond the scope of this part of ISO 21549:
- physical or logical solutions for the practical functioning of particular types of data card;
- the forms that data take for use outside the data card, or the way in which such data are visibly represented on the data card or elsewhere.

Draft
14 pages
English language
sale 10% off
e-Library read for
1 day

13-Jul-2023
35.240.15
35.240.80
ITC

SIST

SIST EN ISO 21549-7:2017(Main)

Health informatics - Patient healthcard data - Part 7: Medication data (ISO 21549-7:2016)

EN ISO 21549-7:2016

Standard
60 pages
English language
sale 10% off
e-Library read for
1 day

29-Nov-2014
17-Apr-2017
35.240.15
35.240.80
M/255
ITC