ATNAAudit nodes in message flows

ATNAAudit nodes are used in message flows to send ATNA audit messages, that contain data from the message flow, to an ATNA audit repository.

ATNA Integration Profile

The ATNA (Audit Trail and Node Authentication) Integration Profile is defined by IHE (Integrating the Healthcare Enterprise). The ATNA Integration Profile is used to define security measures which, together with security policy and procedures, support patient information confidentiality, data integrity, and user accountability. The ATNA Integration Profile covers several aspects of security, including transport level security (using, for example, TLS and WS-Security) and also the auditing of events. The ATNA Integration Profile defines audit events, associated system roles (known as actors), a common XML format to describe the events, and transport options for message delivery.

For information about IHE and the ATNA Integration Profile, see IHE.

ATNAAudit node

You can use an ATNAAudit node to receive an XML audit message from the message flow, extract the elements from the XML audit message to create an ATNA audit message, and then route the ATNA audit message to an ATNA audit repository.

For more information about the ATNAAudit node, see ATNAAudit node.

ATNA audit messages

To create an ATNA audit message, the ATNAAudit node uses a schema for each ATNA audit message, as specified in RFC3881. The data elements in an ATNA audit message are grouped into the following categories:
  • Event Identification - the name of the event
  • Active Participant Identification - the initiator of the event
  • Network Access Point Identification - the location from which the event was initiated
  • Audit Source Identification - the server on which the event was initiated
  • Participant Object Identification - the record that was affected by the event

The values of some of the elements in the ATNA audit message are common to all ATNA audit messages processed by allATNAAudit nodes in message flows running on a broker. You set the values of these elements by using a configurable service, see Enabling message flows to send ATNA audit messages for more information.

The values of other elements in the ATNA audit message are specific to the IHE actor and transaction that are being audited, and are extracted from XML audit messages sent to the ATNAAudit node, see ATNAAudit node.

Note: ATNA audit messages are only sent from an ATNAAudit node when the auditEnabled property is set to true in the configurable service and the Audit enabled property is selected in the ATNAAudit node.

XML audit messages

Using simple pre-defined schemas, you create XML audit messages that contain key data from your message flow. The XML audit messages are sent to the ATNAAudit node so that valid ATNA audit messages can be generated and sent to the specified ATNA audit repository.

For more information about the XML audit messages, see XML audit messages.

Related tasks:
Auditing data from message flows
Related reference:
XML audit messages
ATNAAudit node
Notices | Trademarks | Downloads | Library | Support | Feedback

Copyright IBM Corporation 2011, 2014Copyright IBM Corporation 2011, 2014.
Last updated Last updated : 2015-12-07 16:17:41


Concept topicConcept topic | Version 3.0.0.1 | ha05222