Hello Hugh, Thursday, January 12, 2006, 1:35:33 PM, you wrote:
DHN> The key reason that clinical messaging should use a Location Certificate DHN> ( rather than an Individual Certificate) is because it can be automated. DHN> Imagine having to fish out your USB dongle every time you wanted to DHN> decrypt a lab report! Exactly! and that's why location certificates are unlikely to be accepted as valid signatures for referrals. Its too easy to automate. The idea is that "You" actually sign it with your key. The individual tokens should only be used for the Production of digital signatures as you cannot backup your private key and the risk of being unable to access you own data is 2 high if they are used for decryption. The death of a USB dongle (which happens not uncommonly) is of no concern if they are used for signatures only. Currently you have to fish out you Pen every time you want to sign a referral. Fishing out a USB dongle is no different. DHN> Andrew McIntyre wrote: >>Hello Hugh, >> >>Wednesday, January 11, 2006, 8:58:50 AM, you wrote: >> >>DHN> This is an important point. >>DHN> HIC were obsessed with getting GP's to do something that would save the >>DHN> HIC money - so much so that our clinic got set up with individual PKI >>DHN> keys and usb dongles and the HIC staffperson didn't think it was >>DHN> necessary to arrange for a Location Certificate. >>DHN> Of course, a location certificate is the one to use if you are sending >>DHN> clinical information securely. >> >>There is no real difference other than the fact that the private key >>is locked into a (Mostly) secure container and never leaves the usb >>key so is very hard to steal. The encryption is exactly the same with >>Site certificates and Individual Keys. The variation is in the >>security of the private key. >> >>The HIC use Location certificates so I doubt their motive was >>sinister. They just underestimate the ability of the (above) average >>person to make use of a technology that is in its infancy and is not >>readily useable without software specifically designed to take >>advantage of it, while shielding the user from the complexity. -- Best regards, Andrew mailto:[EMAIL PROTECTED] Andrew McIntyre Buderim Gastroenterology Centre www.buderimgastro.com.au PH: 07 54455055 FAX: 54455047 _______________________________________________ Gpcg_talk mailing list [email protected] http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
