Goal
This group test verifies that a healthcare professional can read DICOM Studies of a patient’s EPR with a primary system (or portal) of the patient’s reference community, if the Imaging Document Source is in a remote community.
The testing goals for the patient’s reference community is:
- Authenticate the user at the Authentication Provider (IdP) from the portal or primary system;
- Request the XAD-PID from the PIX Manager using a PIX V3 Query [ITI-45] transaction;
- Retrieve an authorization assertion from the X-Assertion Provider;
- Request the XDS.b Registry / Initiating Gateway actor for document metadata from another community;
- Retrieve the DICOM manifest object (KOS) from the other community;
- Retrieve the DICOM object from the Imaging Document Source from the other community;
- Enforce the patient private policy settings;
- All transaction are audited: ATNA audit events are written and it can be verified that ATC Event can be queried;
Tested Components
| System | Actors | Comment |
| IdentityProvider (IdP) | User Authentication Provider | |
Health Professional Portal (HPP)
or primary system | X-Service User Patient Identifier Cross-reference Consumer Document Consumer Imaging Document Consumer | Connected to IdP, CCC |
| Secondary System (SS) | X-Service Provider Document Repository X-Service User Authorization Decision Consumer Imaging Document Source | 1..*, connected to CCC |
| Community Components (CCC) | X-Assertion Provider X-Service Provider Patient Identifier Cross-reference Manager Initiating Gateway Authorization Decision Provider | Reference Community Option CCC Initiating Gateway connected to OC Responding Gateway |
| OC | X-Assertion Provider
X-Service Provider
Patient Identifier Cross-reference Manager
Document Registry
Authorization Decision Consumer
X-Service User
Policy Repository
Responding Gateway,
Document Consumer | Connected to CCC Initiating Gateway Connected to SS
Authorization Decision Consumer connected to CCC Authorization Decision Provider |
| SS | X-Service Provider
Document Repository
Imaging Document Source
X-Service User | 1..*, connected to OC |
Prerequisite
The patient’s EPR shall be opened in the local community (CCC) and the patient shall be known in the primary system (or portal), the Authentication Provider (IdP), the community PIX Manager and the community data store.
The patient shall be registered in the Other Community (OC) and at least one DICOM study shall be stored in the Imaging Document Source and registered in the XDS.b Registry of the Other Community (OC).
Test Data
All data needed for this test are available here.
The required test data are as follows:
| HPP | IdP | CCC MPI | OC MPI | OC Reg OC PP | OC SS
Rep | SS Imaging Document Source |
Patient
| Local ID |
| EPR-SPID and MPI_A-PID | EPR-SPID and MPI_B-PID |
|
|
|
Policy |
|
|
|
| Default Patient Policy Set |
|
|
DICOM Document
|
|
|
|
| Registed | DICOM Manifest available | DICOM image |
Description
This scenario tests the sequence shown in the sequence diagram:
In steps 1 to 13 of the sequence, the test participants:
- Authenticate the user at the Authentication Provider (IdP) from the portal;
- Resolve the patient IdP ID to the local ID in the portal or primary system
- Request the MPI_A-PID and EPR-SPID from the PIX manager (this may be done in the background but you will have to show evidence that this took place);
- Request a XUA authorization assertion required for the transactions (this may be done in the background but you will have to show evidence that this took place);
In steps 14 to 35 of the sequence, the test participants:
- Execute the Registry Stored Query [ITI-18] transaction from the portal or primary system to the Initiating Gateway to retrieve the DICOM manifest (KOS) object’s metadata through the Cross Gateway Query [ITI-38]
- Execute the Retrieve Document Set [ITI-43] transaction from the portal or primary system to retrieve the DICOM manifest (KOS) object from the Initiating Gateway through the Cross Gateway Retrieve [ITI-39]
- Execute the Retrieve Imaging Document Set [RAD-69] transaction to retrieve the DICOM data from the Imaging Document Source from the Initiating Imaging Gateway through the Cross Gateway Retrieve Imaging Document Set [RAD-75]
Evidence
The test participants shall provide evidence that the workflow performs with the steps defined in the sequence diagram. Test participants shall provide the ATNA audit trails of the transactions, especially scenario tests the sequence shown in the sequence diagram:
- Transaction logs of the PIX V3 Query [ITI-45];
- Transaction logs of the CH: XUA Get-X-User Assertion [ITI-40] transaction;
- Transaction logs of the Registry Stored Query [ITI-18] transaction;
- Transaction logs of the Retrieve Document Set [ITI-43] transaction and policy enforcement from Document Repository;
- Transaction logs of the Retrieve Imaging Document Set [RAD-69] transaction and policy enforcement from Imaging Document Source;
Evaluation
The monitor verifies that the transactions are executed without errors, verifies the audit trails for evidence and visually verifies the presentation of the result in the portal.
The monitor verifies also that the policy enforcement is done according to [CH:ADR] 3.1.7.1 Decision querying and enforcement for Retrieve Document Set [ITI-43] and 3.1.7.2 Decision querying and enforcement for Retrieve Imaging Document Set [RAD-69] with the Document Repository / Imaging Source in the other community.