DIN EN 12251-2005 Health informatics - Secure User Identification for Health Care - Management and Security of Authentication by Passwords English version EN 12251 2004《健康信息学 保健的安全.pdf
《DIN EN 12251-2005 Health informatics - Secure User Identification for Health Care - Management and Security of Authentication by Passwords English version EN 12251 2004《健康信息学 保健的安全.pdf》由会员分享,可在线阅读,更多相关《DIN EN 12251-2005 Health informatics - Secure User Identification for Health Care - Management and Security of Authentication by Passwords English version EN 12251 2004《健康信息学 保健的安全.pdf(15页珍藏版)》请在麦多课文档分享上搜索。
1、Juli 2005DEUTSCHE NORM Normenausschuss Medizin (NAMed) im DINPreisgruppe 10DIN Deutsches Institut f r Normung e.V. Jede Art der Vervielf ltigung, auch auszugsweise, nur mit Genehmigung des DIN Deutsches Institut f r Normung e. V., Berlin, gestattet.ICS 35.240.80E* 9633620www.din.deXDIN EN 12251Mediz
2、inische Informatik Sichere Nutzeridentifikation im Gesundheitswesen Management und Sicherheit f r die Authentifizierung durch Passw rter;Englische Fassung EN 12251:2004Health informatics Secure User Identification for Health Care Management and Security of Authentication by Passwords;English version
3、 EN 12251:2004Informatique de sant Scurit de l identification de l utilisateur des soins sant Gestion et scurit de l authentification des mots de passe;Version anglaise EN 12251:2004Alleinverkauf der Normen durch Beuth Verlag GmbH, 10772 BerlinErsatz f rDIN V ENV 12251:200106www.beuth.deGesamtumfang
4、 15 SeitenB55EB1B3E14C22109E918E8EA43EDB30F09CC9B7EF8DD9NormCD - Stand 2007-03 DIN EN 12251:2005-072Nationales VorwortDiese Norm enthlt unter Bercksichtigung des Prsidialbeschlusses 13/1983 den englischen Originaltext derEuropischen Norm EN 12251:2004-08. Die Europische Norm wurde in der WG III Secu
5、rity, Safety andQuality des CEN/TC 251 Medizinische Informatik erarbeitet Der Arbeitsausschuss G 4 Sicherheit desFachbereich G Medizinische Informatik des Normenausschusses Medizin im DIN hat an der Erarbeitungmitgewirkt. Die Verffentlichung dient der Aufhebung des Statuses der Vornorm. Diese Norm i
6、st vomtechnischen und inhaltlichen Aufbau im Wesentlichen identisch mit der DIN V ENV 12251, die im Juni 2001publiziert wurde.nderungenGegenber DIN V ENV 12251:2001-06 wurden folgende nderungen vorgenommen: Vornormcharakter aufgehoben.Frhere AusgabenDIN V ENV 12251: 2001-06B55EB1B3E14C22109E918E8EA4
7、3EDB30F09CC9B7EF8DD9NormCD - Stand 2007-03 EUROPEAN STANDARDNORME EUROPENNEEUROPISCHE NORMEN 12251August 2004ICS 35.240.80English versionHealth informatics - Secure User Identification for Health Care -Management and Security of Authentication by PasswordsInformatique de sant - Scurit de lidentifica
8、tion delutilisateur des soins de sant - Gestion et scurit delauthentification des mots de passeMedizinische Informatik - Sichere Nutzeridentifikation imGesundheitswesen - Management und Sicherheit fr dieAuthentifizierung durch PasswrterThis European Standard was approved by CEN on 21 June 2004.CEN m
9、embers are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this EuropeanStandard the status of a national standard without any alteration. Up-to-date lists and bibliographical references concerning such nationalstandards may be obtained on applicat
10、ion to the Central Secretariat or to any CEN member.This European Standard exists in three official versions (English, French, German). A version in any other language made by translationunder the responsibility of a CEN member into its own language and notified to the Central Secretariat has the sa
11、me status as the officialversions.CEN members are the national standards bodies of Austria, Belgium, Cyprus, Czech Republic, Denmark, Estonia, Finland, France,Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania, Luxembourg, Malta, Netherlands, Norway, Poland, Portugal, Slovakia,Slov
12、enia, Spain, Sweden, Switzerland and United Kingdom.EUROPEAN COMMITTEE FOR STANDARDIZATIONCOMIT EUROPEN DE NORMALISATIONEUROPISCHES KOMITEE FR NORMUNGManagement Centre: rue de Stassart, 36 B-1050 Brussels 2004 CEN All rights of exploitation in any form and by any means reservedworldwide for CEN nati
13、onal Members.Ref. No. EN 12251:2004: EB55EB1B3E14C22109E918E8EA43EDB30F09CC9B7EF8DD9NormCD - Stand 2007-03 EN 12251:2004 (E)2ContentspageForeword . 3Introduction 41 Scope 52 Normative references . 53 Terms and definitions. 54 Requirements 64.1 Unique identification and authentication . 64.2 Identifi
14、cation and authentication prior to all other interactions 64.3 Associating unique identity with users 64.4 Maintaining the identity of active users 64.5 Log-on message 74.6 Number of log-on trials. 74.7 Incorrectly performed log-on procedure 74.8 Display of log-on statistics 74.9 Password sharing .
15、74.10 Password storage . 74.11 Logging of passwords 84.12 Password display suppression . 84.13 User-changeability of passwords 84.14 Default passwords 84.15 Initialised passwords 84.16 Temporary passwords 84.17 Password expiration . 84.18 Password expiration notification. 84.19 Password reuse. 94.20
16、 Password complexity . 9Annex A (informative) Potential password complexity requirements. 10Annex B (informative) User responsibilities 11Annex C (informative) Password communication. 12Bibliography . 13B55EB1B3E14C22109E918E8EA43EDB30F09CC9B7EF8DD9NormCD - Stand 2007-03 EN 12251:2004 (E)3ForewordTh
17、is document (EN 12251:2004) has been prepared by Technical Committee CEN/TC 251 Healthinformatics, the secretariat of which is held by SIS.This European Standard shall be given the status of a national standard, either by publication of an identicaltext or by endorsement, at the latest by February 2
18、005, and conflicting national standards shall be withdrawnat the latest by February 2005.This document supersedes ENV 12251:2000.This document is designed to improve the authentication of individual users of health care IT system, bystrengthening the automatic software procedures associated with the
19、 management of user identifiers andpasswords, without resorting to additional hardware facilities.Although the use of passwords, and the need for improved security in this respect, is by no means specific forthe Health Care field, it is felt strongly that the way in which systems are being used in t
20、his field, often in directsupport of patient care and handling very sensitive information, urgently call for a good solution in this area.However, the methods specified in this document can possibly be applied in other sectors as well at thediscretion of users.According to the CEN/CENELEC Internal R
21、egulations, the national standards organizations of the followingcountries are bound to implement this European Standard: Austria, Belgium, Cyprus, Czech Republic,Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Ireland, Italy, Latvia, Lithuania,Luxembourg, Malta, Netherlands, N
22、orway, Poland, Portugal, Slovakia, Slovenia, Spain, Sweden, Switzerlandand United Kingdom.B55EB1B3E14C22109E918E8EA43EDB30F09CC9B7EF8DD9NormCD - Stand 2007-03 EN 12251:2004 (E)4IntroductionInformation Technology (IT) systems in the health care environment are being used in increasingly sensitiveand
- 1.请仔细阅读文档,确保文档完整性,对于不预览、不比对内容而直接下载带来的问题本站不予受理。
- 2.下载的文档,不会出现我们的网址水印。
- 3、该文档所得收入(下载+内容+预览)归上传者、原创作者;如果您是本文档原作者,请点此认领!既往收益都归您。
下载文档到电脑,查找使用更方便
10000 积分 0人已下载
下载 | 加入VIP,交流精品资源 |
- 配套讲稿:
如PPT文件的首页显示word图标,表示该PPT已包含配套word讲稿。双击word图标可打开word文档。
- 特殊限制:
部分文档作品中含有的国旗、国徽等图片,仅作为作品整体效果示例展示,禁止商用。设计者仅对作品中独创性部分享有著作权。
- 关 键 词:
- DINEN122512005HEALTHINFORMATICSSECUREUSERIDENTIFICATIONFORHEALTHCAREMANAGEMENTANDSECURITYOFAUTHENTICATIONBYPASSWORDSENGLISHVERSIONEN122512004
![提示](http://www.mydoc123.com/images/bang_tan.gif)
链接地址:http://www.mydoc123.com/p-664461.html