National eHealth Security and Access Framework v3.1

Name
EP-1005:2012 National eHealth Security and Access Framework v3.1
Identifier
EP-1005:2012
Version
3.1
Date
30-03-2012
Contact
Architecture
[email protected]
1300901001

The National eHealth Security and Access Framework has been developed as a control mechanism to ‘increase certainty that health information is created and accessed in a secure and trustworthy manner’.   It aims to ensure:

  • Access to consumer health information is consistently controlled and monitored as it transitions through independent organisations, business processes and systems in the Australian Health Sector.
  • The provenance of all electronic health information is traceable from its creation at a verifiable trusted source through its transition and possible augmentation on route to its destination.

 

NESAF supports organisations engaged in national eHealth to adopt a consistent approach and application of health information security standards, and provides better practice guidance in relation to eHealth specific security and access practices. Some of the key benefits of a National eHealth Security and Access Framework for use in the Australian environment include:

  • Promotion of a consistent, risk-based approach to eHealth security and access.
  • Consistent interpretation of relevant standards for application in the Australian eHealth environment.
  • Provision of a holistic view of security and access requirements within an organisation, that includes controls that are implemented at a business, healthcare, information technology and eHealth specific level, with a greater focus and detailed guidance provided in relation to eHealth specific controls.
  • Contemporary better practice guidance on specific eHealth security and access practices
  • A document suite that provides different views on the framework for different audiences - business, clinical, technical and consumer.

 

It is expected that broad application of NESAF within healthcare organisations will contribute to engendering trust within the national eHealth system, thus increasing adoption and uptake of these systems and maximising the expected benefits from these investments.

Product Components of National eHealth Security and Access Framework v3.1

Product Components of National eHealth Security and Access Framework v3.1
Identifier Name Date
NEHTA-1004:2012 NESAF - Business Blueprint v3.1 30-03-2012
NEHTA-1124:2012 NESAF - Business Factsheet v1.0 19-10-2012
NEHTA-1123:2012 NESAF - Clinical Factsheet v1.0 19-10-2012
NEHTA-1122:2012 NESAF - Consumer Factsheet v1.0 19-10-2012
NEHTA-1006:2012 NESAF - Executive Summary v3.1 30-03-2012
NEHTA-1007:2012 NESAF - Framework Model and Controls v3.1 30-03-2012
NEHTA-1008:2012 NESAF - Implementer Blueprint v3.1 30-03-2012
NEHTA-1009:2012 NESAF - Release Note v3.1 30-03-2012
NEHTA-1010:2012 NESAF - Standards Mapping v3.1 30-03-2012