The European TrustHealth Project experiences with implementing a security infrastructure

Accepting the shared care paradigm, communication and co-operation required between health care establishments must be provided in a trustworthy way. The solution for establishing such trustworthy environment has to be based on a common policy framework, on services, and mechanisms, which have been standardised. In Europe, the legal framework, other policy issues, and the services and mechanisms needed have been developed within projects launched by the European Commission, by the European standards body CEN as well as by temporarily established groups. Within the European TrustHealth projects , a security infrastructure for trustworthy health telematics applications has been specified, implemented. and evaluated. It is based on Health Profe ssional Cards and Trusted Third Party services. Experiences regarding organ isational and technological implications of the specification. implementati on, maintenance, and evaluation of such a security infrastructure are descr ibed on the basis of the ONOCONET example. For the complete software lifecy cle, the UML methodology has been deployed. (C) 2000 Elsevier Science Irela nd Ltd. All rights reserved.