BS ISO 17090-2-2015 Health informatics Public key infrastructure Certificate profile《健康信息学 公开密钥基础设施 认证配置文件》.pdf
《BS ISO 17090-2-2015 Health informatics Public key infrastructure Certificate profile《健康信息学 公开密钥基础设施 认证配置文件》.pdf》由会员分享,可在线阅读,更多相关《BS ISO 17090-2-2015 Health informatics Public key infrastructure Certificate profile《健康信息学 公开密钥基础设施 认证配置文件》.pdf(46页珍藏版)》请在麦多课文档分享上搜索。
1、BSI Standards PublicationBS ISO 17090-2:2015Health informatics Publickey infrastructurePart 2: Certificate profileBS ISO 17090-2:2015 BRITISH STANDARDNational forewordThis British Standard is the UK implementation of ISO 17090-2:2015.It supersedes BS ISO 17090-2:2008 which is withdrawn.The UK partic
2、ipation in its preparation was entrusted to TechnicalCommittee IST/35, Health informatics.A list of organizations represented on this committee can beobtained on request to its secretary.This publication does not purport to include all the necessaryprovisions of a contract. Users are responsible for
3、 its correctapplication. The British Standards Institution 2015.Published by BSI Standards Limited 2015ISBN 978 0 580 81170 8ICS 35.240.80Compliance with a British Standard cannot confer immunity fromlegal obligations.This British Standard was published under the authority of theStandards Policy and
4、 Strategy Committee on 30 November 2015.Amendments/corrigenda issued since publicationDate T e x t a f f e c t e dBS ISO 17090-2:2015 ISO 2015Health informatics Public key infrastructure Part 2: Certificate profileInformatique de sant Infrastructure de cl publique Partie 2: Profil de certificatINTER
5、NATIONAL STANDARDISO17090-2Second edition2015-11-15Reference numberISO 17090-2:2015(E)BS ISO 17090-2:2015ISO 17090-2:2015(E)ii ISO 2015 All rights reservedCOPYRIGHT PROTECTED DOCUMENT ISO 2015, Published in SwitzerlandAll rights reserved. Unless otherwise specified, no part of this publication may b
6、e reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISOs member body in the country of the re
7、quester.ISO copyright officeCh. de Blandonnet 8 CP 401CH-1214 Vernier, Geneva, SwitzerlandTel. +41 22 749 01 11Fax +41 22 749 09 47copyrightiso.orgwww.iso.orgBS ISO 17090-2:2015ISO 17090-2:2015(E)Foreword vIntroduction vi1 Scope . 12 Normative references 13 Terms and definitions . 14 Abbreviated ter
8、ms 15 Healthcare CPs 25.1 Certificate types required for healthcare . 25.2 CA certificates 25.2.1 Root CA certificates . 25.2.2 Subordinate CA certificates 25.3 Cross/Bridge certificates . 35.4 End entity certificates . 35.4.1 Individual identity certificates . 35.4.2 Organization identity certifica
9、te 45.4.3 Device identity certificate 45.4.4 Application certificate . 45.4.5 AC 45.4.6 Role certificates 56 General certificate requirements 66.1 Certificate compliance 66.2 Common fields for each certificate type . 66.3 Specifications for common fields 76.3.1 General 76.3.2 Signature . 86.3.3 Vali
10、dity 86.3.4 Subject public key information 86.3.5 Issuer name field . 96.3.6 The subject name field .106.4 Requirements for each healthcare certificate type .116.4.1 Issuer fields . 116.4.2 Subject fields 117 Use of certificate extensions 147.1 General 147.2 General extensions 147.2.1 authorityKeyId
11、entifier .147.2.2 subjectKeyIdentifier 147.2.3 keyUsage 147.2.4 privateKeyUsagePeriod . 147.2.5 certificatePolicies .147.2.6 subjectAltName 147.2.7 basicConstraints 157.2.8 CRLDistributionPoints .157.2.9 ExtKeyUsage .157.2.10 Authority information access 157.2.11 Subject information access 157.3 Spe
12、cial subject directory attributes . 157.3.1 hcRole attribute .157.3.2 subjectDirectoryAttributes 177.4 Qualified certificate statements extension 177.5 Requirements for each health industry certificate type.177.5.1 Extension fields 17 ISO 2015 All rights reserved iiiContents PageBS ISO 17090-2:2015I
13、SO 17090-2:2015(E)Annex A (informative) Certificate profile examples 19Bibliography .31iv ISO 2015 All rights reservedBS ISO 17090-2:2015ISO 17090-2:2015(E)ForewordISO (the International Organization for Standardization) is a worldwide federation of national standards bodies (ISO member bodies). The
14、 work of preparing International Standards is normally carried out through ISO technical committees. Each member body interested in a subject for which a technical committee has been established has the right to be represented on that committee. International organizations, governmental and non-gove
15、rnmental, in liaison with ISO, also take part in the work. ISO collaborates closely with the International Electrotechnical Commission (IEC) on all matters of electrotechnical standardization.The procedures used to develop this document and those intended for its further maintenance are described in
16、 the ISO/IEC Directives, Part 1. In particular the different approval criteria needed for the different types of ISO documents should be noted. This document was drafted in accordance with the editorial rules of the ISO/IEC Directives, Part 2 (see www.iso.org/directives).Attention is drawn to the po
17、ssibility that some of the elements of this document may be the subject of patent rights. ISO shall not be held responsible for identifying any or all such patent rights. Details of any patent rights identified during the development of the document will be in the Introduction and/or on the ISO list
18、 of patent declarations received (see www.iso.org/patents).Any trade name used in this document is information given for the convenience of users and does not constitute an endorsement.For an explanation on the meaning of ISO specific terms and expressions related to conformity assessment, as well a
19、s information about ISOs adherence to the WTO principles in the Technical Barriers to Trade (TBT), see the following URL: Foreword Supplementary information .The committee responsible for this document is ISO/TC 215, Health informatics.This second edition cancels and replaces the first edition (ISO
20、17090-2:2008), which has been technically revised.ISO 17090 consists of the following parts, under the general title Health informatics Public Key Infrastructure: Part 1: Overview of digital certificate services Part 2: Certificate profile Part 3: Policy management of certification authority Part 4:
21、 Digital Signatures for healthcare documentsThe following document is under preparation: Part 5: Authentication using Healthcare PKI credentialsAnnex A of this part of ISO 17090 is for information only. ISO 2015 All rights reserved vBS ISO 17090-2:2015ISO 17090-2:2015(E)IntroductionThe healthcare in
22、dustry is faced with the challenge of reducing costs by moving from paper-based processes to automated electronic processes. New models of healthcare delivery are emphasizing the need for patient information to be shared among a growing number of specialist healthcare providers and across traditiona
23、l organizational boundaries.Healthcare information concerning individual citizens is commonly interchanged by means of electronic mail, remote database access, electronic data interchange and other applications. The Internet provides a highly cost-effective and accessible means of interchanging info
24、rmation, but is also an insecure vehicle that demands additional measures be taken to maintain the privacy and confidentiality of information. Threats to the security of health information through unauthorized access (either inadvertent or deliberate) are increasing. It is essential to have availabl
- 1.请仔细阅读文档,确保文档完整性,对于不预览、不比对内容而直接下载带来的问题本站不予受理。
- 2.下载的文档,不会出现我们的网址水印。
- 3、该文档所得收入(下载+内容+预览)归上传者、原创作者;如果您是本文档原作者,请点此认领!既往收益都归您。
下载文档到电脑,查找使用更方便
10000 积分 0人已下载
下载 | 加入VIP,交流精品资源 |
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- BSISO1709022015HEALTHINFORMATICSPUBLICKEYINFRASTRUCTURECERTIFICATEPROFILE 健康 信息学 公开 密钥 基础设施 认证 配置文件 PDF

链接地址:http://www.mydoc123.com/p-585238.html