ASTM E2085-00a
Standard Guide on Security Framework for Healthcare Information

Standard No.
ASTM E2085-00a
Release Date
2000
Published By
American Society for Testing and Materials (ASTM)
Status
 2009-01
Latest
ASTM E2085-00a
Scope

1.1 This guide covers a framework for the protection of healthcare information. It addresses both storage and transmission of information. It describes existing standards used for information security which can be used in many cases, and describes which (healthcare-specific) standards are needed to complete the framework. Appropriate background information on security (and particularly cryptography) is included. The framework is designed to accommodate a very large (national or international), distributed user base, spread across many organizations, and it therefore recommends the use of certain (scaleable) technologies over others.

1.2 Electronic information exchange and sharing of data in has been the backbone of industries such as financial institutions for several years. Cost cutting measures and a real need for sharing of information are driving healthcare services toward increased use of computer-based information systems. One of the requirements for the ability to share and exchange healthcare information is that the information be protected.

1.3 Selection of standards was performed using the following criteria, which are described in more detail in 4.2.

1.3.1 Security requirements are defined in this framework, and (in some cases) in additional ASTM guidelines.

1.3.2 ASTM standard specifications are used to define protocols and message formats in support of interoperability.

1.3.3 Existing standards will be reused or extended whenever possible.

1.3.4 This framework does not address policy issues. ASTM Subcommittee E31.17 is writing standards that address these issues.

ASTM E2085-00a Referenced Document

  • ASTM E1238 Standard Specification for Transferring Clinical Observations Between Independent Computer Systems
  • ASTM E1384 Standard Guide for Content and Structure of the Electronic Health Record (EHR)
  • ASTM E1762 Standard Guide for Electronic Authentication of Health Care Information
  • ASTM E1985 Standard Guide for User Authentication and Authorization
  • ASTM E1986 Standard Guide for Information Access Privileges to Health Information
  • ASTM E2084 Standard Specification for Authentication of Healthcare Information Using Digital Signatures
  • ASTM E2086 Standard Guide for Internet and Intranet Healthcare Security
  • IEEE 802.10 Local and metropolitan area networks - Interoperable LAN/MAN security (SILS)
  • ISO/IEC 10736 Information technology - Telecommunications and information exchange between systems - Transport layer security protocol
  • ISO/IEC 11577 Information technology - Open Systems Interconnection - Network layer security protocol
  • ISO/IEC 11586 Information technology - Open Systems Interconnection - Generic upper layers security: Protecting transfer syntax Protocol Implementation Conformance Statement (PICS) proforma
  • ISO/IEC 9595 Information technology - Open Systems Interconnection - Common management information service
  • ISO/IEC 9596 Information technology — Open Systems Interconnection — Common management information protocol specification

ASTM E2085-00a history

  • 2000 ASTM E2085-00a Standard Guide on Security Framework for Healthcare Information
Standard Guide on Security Framework for Healthcare Information


Copyright ©2024 All Rights Reserved