ATNAAudit nodes in message flows
ATNAAudit nodes are used in message flows to send ATNA audit messages, that contain data from the message flow, to an ATNA audit repository.
ATNA Integration Profile
The ATNA (Audit Trail and Node Authentication) Integration Profile is defined by IHE (Integrating the Healthcare Enterprise). The ATNA Integration Profile is used to define security measures which, together with security policy and procedures, support patient information confidentiality, data integrity, and user accountability. The ATNA Integration Profile covers several aspects of security, including transport level security (using, for example, TLS and WS-Security) and also the auditing of events. The ATNA Integration Profile defines audit events, associated system roles (known as actors), a common XML format to describe the events, and transport options for message delivery.
For information about IHE and the ATNA Integration Profile, see IHE.
ATNAAudit node
You can use an ATNAAudit node to receive an XML audit message from the message flow, extract the elements from the XML audit message to create an ATNA audit message, and then route the ATNA audit message to an ATNA audit repository.
For more information about the ATNAAudit node, see ATNAAudit node.
ATNA audit messages
- Event Identification - the name of the event
- Active Participant Identification - the initiator of the event
- Network Access Point Identification - the location from which the event was initiated
- Audit Source Identification - the server on which the event was initiated
- Participant Object Identification - the record that was affected by the event
The values of some of the elements in the ATNA audit message are common to all ATNA audit messages processed by allATNAAudit nodes in message flows running on a broker. You set the values of these elements by using a configurable service, see Enabling message flows to send ATNA audit messages for more information.
The values of other elements in the ATNA audit message are specific to the IHE actor and transaction that are being audited, and are extracted from XML audit messages sent to the ATNAAudit node, see ATNAAudit node.
XML audit messages
Using simple pre-defined schemas, you create XML audit messages that contain key data from your message flow. The XML audit messages are sent to the ATNAAudit node so that valid ATNA audit messages can be generated and sent to the specified ATNA audit repository.
For more information about the XML audit messages, see XML audit messages.