1、 I n t e r n a t i o n a l T e l e c o m m u n i c a t i o n U n i o n ITU-T H.812 TELECOMMUNICATION STANDARDIZATION SECTOR OF ITU (11/2015) SERIES H: AUDIOVISUAL AND MULTIMEDIA SYSTEMS E-health multimedia services and applications Interoperability design guidelines for personal health systems: WAN
2、interface: Common certified device class Recommendation ITU-T H.812 ITU-T H-SERIES RECOMMENDATIONS AUDIOVISUAL AND MULTIMEDIA SYSTEMS CHARACTERISTICS OF VISUAL TELEPHONE SYSTEMS H.100H.199 INFRASTRUCTURE OF AUDIOVISUAL SERVICES General H.200H.219 Transmission multiplexing and synchronization H.220H.
3、229 Systems aspects H.230H.239 Communication procedures H.240H.259 Coding of moving video H.260H.279 Related systems aspects H.280H.299 Systems and terminal equipment for audiovisual services H.300H.349 Directory services architecture for audiovisual and multimedia services H.350H.359 Quality of ser
4、vice architecture for audiovisual and multimedia services H.360H.369 Telepresence H.420H.429 Supplementary services for multimedia H.450H.499 MOBILITY AND COLLABORATION PROCEDURES Overview of Mobility and Collaboration, definitions, protocols and procedures H.500H.509 Mobility for H-Series multimedi
5、a systems and services H.510H.519 Mobile multimedia collaboration applications and services H.520H.529 Security for mobile multimedia systems and services H.530H.539 Security for mobile multimedia collaboration applications and services H.540H.549 Mobility interworking procedures H.550H.559 Mobile m
6、ultimedia collaboration inter-working procedures H.560H.569 BROADBAND, TRIPLE-PLAY AND ADVANCED MULTIMEDIA SERVICES Broadband multimedia services over VDSL H.610H.619 Advanced multimedia services and applications H.620H.629 Ubiquitous sensor network applications and Internet of Things H.640H.649 IPT
7、V MULTIMEDIA SERVICES AND APPLICATIONS FOR IPTV General aspects H.700H.719 IPTV terminal devices H.720H.729 IPTV middleware H.730H.739 IPTV application event handling H.740H.749 IPTV metadata H.750H.759 IPTV multimedia application frameworks H.760H.769 IPTV service discovery up to consumption H.770H
8、.779 Digital Signage H.780H.789 E-HEALTH MULTIMEDIA SERVICES AND APPLICATIONS Personal health systems H.810H.819 Interoperability compliance testing of personal health systems (HRN, PAN, LAN, TAN and WAN) H.820H.859 Multimedia e-health data exchange services H.860H.869 For further details, please re
9、fer to the list of ITU-T Recommendations. Rec. ITU-T H.812 (11/2015) i Recommendation ITU-T H.812 Interoperability design guidelines for personal health systems: WAN interface: Common certified device class Summary The Continua Design Guidelines (CDG) define a framework of underlying standards and c
10、riteria which are required to ensure the interoperability of devices and data used for personal connected health. This Recommendation contains a WAN-IF overview, common design guidelines for all WAN-IF certified device classes (CDC), and the design guidelines for consent enabled AHD and WAN device C
11、DCs. The design guidelines which support the following certified device classes (CDC) are defined in separate Recommendations as follows: H.812.1 Observation upload certified device class H.812.2 Questionnaires H.812.3 Capability exchange certified device class H.812.4 Authenticated persistent sessi
12、on device class This Recommendation is part of the “ITU-T H.810 interoperability design guidelines for personal health systems“ subseries, which is outlined in the table below: Mapping of CDG 2013, ITU-T H.810 and restructured ITU-T H.810-series Part Elements Clauses in the 2013 CDG “Endorphin“ Clau
13、ses in ITU-T H.810 (2013) Restructured H.810-series (2015) Part 0 System overview Up to clause 3, plus Annex A and Appendix G Up to clause 6, plus Annex A and Appendix V ITU-T H.810 System overview Part 1 TAN/PAN/LAN Clauses 4 to 7, Appendices C, D, M Clauses 7 to 10, Appendices I, II, XI ITU-T H.81
14、1 TAN-PAN-LAN interface Part 2 WAN Clause 8, Appendices H, I, J, K Clause 11; Appendices VI, VII, VIII, IX ITU-T H.812 WAN interface ITU-T H.812.1 Observation upload ITU-T H.812.2 Questionnaires ITU-T H.812.3 Capability exchange ITU-T H.812.4 Authenticated persistent session Part 3 HRN Clause 9, App
15、endices E, F, L Clause 12, Appendices III, IV, X ITU-T H.813 HRN interface History Edition Recommendation Approval Study Group Unique ID* 1.0 ITU-T H.812 2015-11-29 16 11.1002/1000/12653 * To access the Recommendation, type the URL http:/handle.itu.int/ in the address field of your web browser, foll
16、owed by the Recommendations unique ID. For example, http:/handle.itu.int/11.1002/1000/11830-en. ii Rec. ITU-T H.812 (11/2015) FOREWORD The International Telecommunication Union (ITU) is the United Nations specialized agency in the field of telecommunications, information and communication technologi
17、es (ICTs). The ITU Telecommunication Standardization Sector (ITU-T) is a permanent organ of ITU. ITU-T is responsible for studying technical, operating and tariff questions and issuing Recommendations on them with a view to standardizing telecommunications on a worldwide basis. The World Telecommuni
18、cation Standardization Assembly (WTSA), which meets every four years, establishes the topics for study by the ITU-T study groups which, in turn, produce Recommendations on these topics. The approval of ITU-T Recommendations is covered by the procedure laid down in WTSA Resolution 1. In some areas of
19、 information technology which fall within ITU-Ts purview, the necessary standards are prepared on a collaborative basis with ISO and IEC. NOTE In this Recommendation, the expression “Administration“ is used for conciseness to indicate both a telecommunication administration and a recognized operatin
20、g agency. Compliance with this Recommendation is voluntary. However, the Recommendation may contain certain mandatory provisions (to ensure, e.g., interoperability or applicability) and compliance with the Recommendation is achieved when all of these mandatory provisions are met. The words “shall“ o
21、r some other obligatory language such as “must“ and the negative equivalents are used to express requirements. The use of such words does not suggest that compliance with the Recommendation is required of any party. INTELLECTUAL PROPERTY RIGHTSITU draws attention to the possibility that the practice
22、 or implementation of this Recommendation may involve the use of a claimed Intellectual Property Right. ITU takes no position concerning the evidence, validity or applicability of claimed Intellectual Property Rights, whether asserted by ITU members or others outside of the Recommendation developmen
23、t process. As of the date of approval of this Recommendation, ITU had not received notice of intellectual property, protected by patents, which may be required to implement this Recommendation. However, implementers are cautioned that this may not represent the latest information and are therefore s
24、trongly urged to consult the TSB patent database at http:/www.itu.int/ITU-T/ipr/. ITU 2016 All rights reserved. No part of this publication may be reproduced, by any means whatsoever, without the prior written permission of ITU. Rec. ITU-T H.812 (11/2015) iii Table of Contents Page 0 Introduction vi
25、 0.1 Organization vi 0.2 CDC guideline releases and versioning . vi 0.3 Whats new. vi 1 Scope 1 2 References 1 3 Definitions . 2 4 Abbreviations and acronyms . 2 5 Conventions . 2 6 Architecture . 2 7 Use cases 6 7.1 Consent management use cases . 6 7.1.1 Upload consent to the server . 6 7.1.2 Retri
26、eve the already completed patient consent from the server 6 7.1.3 Upload updated consent to the server . 7 7.2 Consent enforcement use case . 7 7.2.1 Encrypt to be uploaded content . 7 7.3 Other CDC use cases . 7 8 Behavioural Models . 7 8.1 Common WAN-IF message exchange Behaviour 7 8.2 Common secu
27、rity model for REST based CDC implementations 8 8.3 Consent management behavioural model 10 8.4 Consent enforcement behavioural model 10 9 Implementation 11 9.1 Consent representation 11 9.2 Transport protocols 11 9.2.1 Transport protocol using hData over HTTP 11 9.2.2 Transport protocol using IHE X
28、DR 11 9.3 Consent enforcement . 11 9.3.1 Consent enforcement using XML encrypiton . 11 9.3.2 Consent enforcement using IHE DEN 12 Annex A Normative guidelines . 13 iv Rec. ITU-T H.812 (11/2015) Page Annex B General security guidelines for WAN-IF CDCs (This annex forms an integral part of this Recomm
29、endation.) 15 Annex C Normative guidelines for consent management using REST (This annex forms an integral part of this Recommendation.) . 17 Appendix I ATOM feed elements for consent management (This appendix does not form an integral part of this Recommendation.) 25 I.1 Information for consent in
30、the root.xml . 25 Appendix II Consent using SOAP examples (This appendix does not form an integral part of this Recommendation.) 26 Appendix III OAuth example (This appendix does not form an integral part of this Recommendation.) . 29 Appendix IV Consent enabled AHD questionnaire response associatio
31、n (This appendix does not form an integral part of this Recommendation.) . 31 List of Tables Page Table A-1 Certified Device Classes 13 Table A-2 Guidelines for Certified Device Classes 13 Table A-3 Requirements common to all CDCs 14 Table B-1 AHD Security Guidelines using REST 15 Table B-2 WAN Secu
32、rity Guidelines using REST . 15 Table B-3 WAN IF Transport Security Guidelines 16 Table C-1 Consent Management Guidelines using REST for the Consent Enabled AHD 17 Table C-2 Consent Management Guidelines using REST for Consent Enabled WAN Device . 18 Table C-3 Consent Enforcement Guidelines using hD
33、ata for the Consent Enabled AHD . 19 Table C-4 Consent Enforcement Guidelines using hData for Consent Enabled WAN Device . 20 Table C-5 Consent Management Guidelines using SOAP for the Consent Enabled AHD 20 Table C-6 Consent Management Guidelines using SOAP for Consent Enabled WAN Device. 21 Table
34、C-7 Consent Enforcement Guidelines using SOAP for the Consent Enabled AHD 22 Table C-8 Consent Enforcement Guidelines using SOAP for Consent Enabled WAN Device . 23 Table I-1 ATOM feed child elements for Consent Management . 25 Table IV-1 The elements of the confidentiality code system . 31 Table IV
35、-2 The elements of the Continua Consent Directive code system 31 Table IV-3 The translation of the Confidentiality code system to the Continua Consent Directive code system 31 Rec. ITU-T H.812 (11/2015) v Page Table IV-4 OID Distribution for Continua Health Alliance . 32 List of Figures Page Figure
36、1-1 WAN interface in the Continua architecture . 1 Figure 6-1 WAN Interface 2 Figure 6-2 WAN-IF examples 3 Figure 6-3 Continua WAN-IF showing the WAN-IF certified device classes in this Release . 4 Figure 6-4 WAN-IF Reference Model 5 Figure 8-1 All connections are initiated from AHD . 8 Figure 8-2 S
37、ecurity Behaviour for authorized RESTful CDC behaviour (Questionnaire use case is taken as an example) 9 Figure 8-3 Transactions between AHD and WAN Device related to consent management 10 Figure 8-4 Consent enforcement at the WAN-IF 11 Figure II-1 The PCD-01 transaction with un-encrypted payload .
38、26 Figure II-2 Encrypted PCD-01 transaction public key based 27 Figure II-3 Encrypted PCD-01 transaction symmetric key based . 28 vi Rec. ITU-T H.812 (11/2015) 0 Introduction The Continua design guidelines (CDG) define a framework of underlying standards and criteria which are required to ensure the
39、 interoperability of devices and data used for personal connected health. This document contains a WAN-IF overview, common design guidelines for all WAN-IF certified device classes (CDC), and the design guidelines for consent enabled AHD and WAN device CDCs. The design guidelines which support the f
40、ollowing certified device classes (CDC) are defined in separate Recommendations as follows: ITU-T H.812.1 Observation upload certified device class ITU-T H.812.2 Questionnaires ITU-T H.812.3 Capability exchange certified device class ITU-T H.812.4 Authenticated persistent session device class This R
41、ecommendation is part of the ITU-T H.810 subseries “ITU-T H.810 Interoperability design guidelines for personal health systems“. See ITU-T H.810 for more details. 0.1 Organization This Recommendation is organized in the following manner. Clauses 0-5: Introduction and terminology These clauses provid
42、e WAN-IF specific information which are helpful in comprehending the remainder of this document. Clause 6: WAN-IF overview This clause provides an overview of the WAN-IF CDCs. Clause 7: Use cases This clause provides motivating examples. Clause 8: Behavioural model This clause is an overview of sequ
43、ences of interactions under WAN common CDCs and summarizes typical interations, constraints and exceptions. Clause 9: Implementation This clause details the use of common payload content, and SOAP vs REST based transport methodology in the common WAN-IF certified device classes. 0.2 CDC guideline re
44、leases and versioning See clause 0.2 of ITU-T H.810 for release and versioning information. 0.3 Whats new To see what is new in this release of the design guidelines refer to clause 0.3 of ITU-T H.810. Rec. ITU-T H.812 (11/2015) 1 Recommendation ITU-T H.812 Interoperability design guidelines for per
45、sonal health systems: WAN interface: Common certified device class 1 Scope This specification focuses on the following interface: WAN-IF The interface between application hosting devices (AHD) and the wide area network (WAN). This interface is defined in the Continua architecture as described in cla
46、use 6 of ITU-T H.810, as shown in Figure 1-1. Figure 1-1 WAN interface in the Continua architecture There are a number of certified device classes (CDCs) related to the WAN-IF. This Recommendation contains interoperability design guidelines that are applicable to several CDCs. Security interoperabil
47、ity design guidelines is one such example. In addition, this document also contains the design guidelines for the Consent enabled AHD and WAN CDCs. These CDCs may be grouped with multiple other WAN-IF related CDCs, for example, WAN observation upload or Questionnaire enabled CDCs. 2 References The f
48、ollowing ITU-T Recommendations and other references contain provisions which, through reference in this text, constitute provisions of this Recommendation. At the time of publication, the editions indicated were valid. All Recommendations and other references are subject to revision; users of this R
49、ecommendation are therefore encouraged to investigate the possibility of applying the most recent edition of the Recommendations and other references listed below. A list of the currently valid ITU-T Recommendations is regularly published. The reference to a document within this Recommendation does not give it, as a stand-alone document, the status of a Recommendation. ITU-T H.810 Recommendation ITU-T H.810 (2015), Interoperabilit
