CONNNECT Architecture Overview
Download
Report
Transcript CONNNECT Architecture Overview
CONNECT:
Architecture Overview
Robert Cothren
Les Westberg
Copyright 2009. All Rights Reserved.
Agenda
What is CONNECT?
CONNECT: Alignment to Gateway Services
CONNECT Architecture: Big Picture
CONNECT Architecture: Component Details
CONNECT Architecture: v 2.1 Changes
2
Copyright 2009. All Rights Reserved.
CONNECT: WHAT IS IT?
3
Copyright 2009. All Rights Reserved.
What is CONNECT?
A Federal Health Architecture multi-agency initiative
to address:
– Emerging Nationwide Health Information Network (NHIN)
– Agency participation in the NHIN Trial Implementations 2008
– Agency/Non-Agency participation in NHIN limited
productions/pilots 2009
A technology solution for secure interoperable
health information exchange:
– A Platform for Participation
– A Platform for Innovation
4
Copyright 2009. All Rights Reserved.
CONNECT Architecture:
Joint Effort
• CONNECT Program
Management Office
• CONNECT Development
Team
• Federal Partners in the
Federal Consortium
5
Copyright 2009. All Rights Reserved.
Federal and Private-Sector Partners
Using CONNECT for NHIN in 2009*
Agency (7)
Private Sector (15)
State Level (3)
CareSpark
Department of Defense **
Community Health Information Collaborative
Delaware Health Information Network
Department of Veterans
Affairs **
Social Security
Administration **
Cleveland Clinic Foundation
Healthbridge
Currently in
Limited
Production
Healthlinc (Bloomington Hospital)
MedVirginia**
INHS
Indian Health Service **
Kaiser Permanente
Centers for Disease Control and
Prevention **
Lovelace Clinic Foundation
National Cancer Institute **
New York eHealth Collaborative
Long Beach Network For Health
Minnesota Community Health Information
Collaborative (CHIC)
NCHICA
National Disaster Medical
System **
NMHIC
Regenstrief Institute
West Virginia Health Information Network
Wright State University**
6
Copyright 2009. All Rights Reserved.
*Via demonstration and/or production activities.
** Using the CONNECT Solution
New York State Department of
Health **
Washington State Department of
Health **
Indiana State Department of
Health
CONNECT Goals/Objectives
Enable Exchange of Health
Information
– Federal agencies
– Non-federal agencies
7
Copyright 2009. All Rights Reserved.
Create Solution using NHIN
conventions, agreements and
core services
– Flexible
– Open source
CONNECT Driving Requirements from
Federal Partners
Open platform
Support for multiple operating systems
Readily extensible
Commercial support available
Fully functional out-of-the-box
Customizable
8
Copyright 2009. All Rights Reserved.
CONNECT: Alignment to
Gateway Services
9
Copyright 2009. All Rights Reserved.
CONNECT: Tools for Information
Exchange
FHA’s CONNECT Initiative provides three related tools to
enable organizations to connect to the NHIN:
The Gateway, which implements the core services defined
by the NHIN
Enterprise Service Components, which provide robust
tools for indexing patient identities, maintaining patient
health documents, implementing business rules for
authorizing the release of medical information and more
Universal Client, a client framework for developers to
implement enterprise service components
10
Copyright 2009. All Rights Reserved.
Architectural Principals
• Flexible, extensible architecture built on
Java/OpenESB/Glassfish
• Fully implements all client and supplier interfaces for
existing NHIN services
• All components have web service interfaces
• Adapters can be created for any existing health
information systems
• Implementers can use supplied enterprise components,
or substitute their own
11
Copyright 2009. All Rights Reserved.
Architecture Overview
NHIN
Profiles
NHIN Profiles
Consumer Preferences Profile
• Store &exchange consumer preferences
for sharing of personal health information
Other Profiles in Development
• GIPSE (Biosurveillance)
NHIN
Services
NHIN Services
Discovery Services
• Subject Discovery
• Authorized Case Follow-up
• Query for Documents
• NHIE Service Registry
Information Exchange Services
• Retrieve Documents
• Query Audit Log
• Health Information Event Messaging
NHIN
SAML
Messaging, Security and Privacy Foundation
Messaging
• Message Transport
• Services Definition
Security
• Public Key Infrastructure
• Encryption
• Digital Signature
Authorization Framework
• Requestor Authentication
• Requestor Authorization
Subject
Discovery
Query for
Documents
Retrieve
Documents
Subscription
Management
Notification
Processing
Audit
Reporting
UDDI Update
Management
CONNECT Gateway
NHIN Orchestration Components
Subject
Discovery
Query for
Documents
Retrieve
Documents
Subscription
Management
Notification
Processing
Audit
Reporting
UDDI Update
Management
CONNECT Core Components
NHIN Services Architecture
Patient
Correlation
Repository
Audit
Repository
Document
Cache
Connection
Manager
Subscription
Repository
Others
Others
Non-SAML
Retrieve
Documents
Policy
Subscription
Management
Notification
Processing
SDK Services
ReIdentification
Subscription
Repository
Policy Engine
MPI
Copyright 2009. All Rights Reserved.
Query for
Documents
MPI
Adapter Service Bus
Document
Registry
12
Subject
Discovery
CONNECT Adapter
Document
Repository
CONNECT
Gateway and Adapter
Architecture
Data
Transforms
Terminology
Services
Others
Others
Audit
Reporting
CONNECT API
Your Health Organization
Retrieve
Health Documents
Other Health
Organizations
Publish / Subscribe
to Data Feed
Retrieve
Disclosure History
Exchange Patient
Privacy Preferences
Locate
Health Documents
Retrieve
Health Documents
Publish / Subscribe
to Data Feed
Health
Data
Exchange
Decision
Proprietary
API
Proprietary
API
Exchange
Policy
Audit Log
Exchange Patient
Privacy Preferences
Locate Health
Systems / Services
•
•
•
•
Terminology Mapping
Document Viewers
Clinical Decision Support
Other
Internal CONNECT API
Internal “proprietary” API
Copyright 2009. All Rights Reserved.
Health
Information
Retrieve
Disclosure History
External NHIN API
13
Person
Index
Proprietary
API
Disclosure
History
Future
Services
Locate Health
Systems / Services
Proprietary
API
Patient
Identity
Adapter
Locate
Health Documents
Locate
Patient
CONNECT Gateway
Locate
Patient
NHIN conventions
Your Existing Health
Information System
Architecture Documentation
• First released with
CONNECT 2.0
– the topic of today’s session
• More complete version to
be released with
CONNECT 2.1
– covering…
all 6 NHIN services and HIEM
support for NHIN profiles, and
all 4 Enterprise Service
Components for Release 2.1
14
Copyright 2009. All Rights Reserved.
CONNECT Architecture:
Big Picture
15
Copyright 2009. All Rights Reserved.
CONNECT Architecture
Message from NHIN
16
Copyright 2009. All Rights Reserved.
CONNECT Architecture
Message to NHIN
17
Copyright 2009. All Rights Reserved.
Orchestrated vs. Pass Through Mode
CHOICE OF PATH
BASED ON
CONFIGURATION
Internal NHIN Message
Orchestrator
NHIN Message
Receiver
Adapter Interface
Pass-Through
18
Copyright 2009. All Rights Reserved.
CONNECT Development Environment
Item
Version
Java JRE/JDK
1.6 Update 11, Build 3
GlassFishESB
GlassFishESB V2.0 Nightly Build 20090201
NetBeans
GlassFishESB V2.0 Nightly Build 20090201
Metro
1.4
MySQL
5.0
SoapUI
2.5.1
19
Copyright 2009. All Rights Reserved.
CONNECT Architecture:
Component Details
20
Copyright 2009. All Rights Reserved.
Subject Discovery Context Diagram
Organization’s
Existing Systems
MPI
NHIN
announce patients
announce patients
matches
Clinical
Data
CONNECT
Provider
System
(eg, EHR
or NHIE)
provider
End User
System
user
21
Copyright 2009. All Rights Reserved.
Subject Discovery – Add Subject
(From NHIN) Sequence Diagram
22
Copyright 2009. All Rights Reserved.
Subject Discovery – Add Subject
(To NHIN) Sequence Diagram
23
Copyright 2009. All Rights Reserved.
Subject Discovery –
Additional Services
Subject Discovery – Update (To/From NHIN)
Subject Discovery – Revoke (To/From NHIN)
24
Copyright 2009. All Rights Reserved.
Document Query Context Diagram
NHIN
data request
data request
Organization’s
Existing Systems
Provider
System
(eg, EHR
or NHIN)
authentication
authorization
data request
provider
MPI
data request
matches
data request
Clinical
Data
data request
user
25
Copyright 2009. All Rights Reserved.
Personal
Health
Record
clinical data
consumer
CONNECT
data request
authentication
authorization
authentication
End User
System
Public
Sector
System
authentication
authorization
data request
auth user
Document Query (From NHIN)
Sequence Diagram
26
Copyright 2009. All Rights Reserved.
Document Query (To NHIN)
Sequence Diagram
27
Copyright 2009. All Rights Reserved.
Document Retrieve Context Diagram
NHIN
data request
clinical documents
data request
clinical documents
Organization’s
Existing Systems
Provider
System
(eg, EHR
or NHIE)
authentication
authorization
data request
clinical data
provider
MPI
data request
clinical documents
matches
data request
clinical documents
Clinical
Data
authentication
authorization
data request
clinical data
user
28
Copyright 2009. All Rights Reserved.
data request
clinical data
Personal
Health
Record
clinical data
clinical data
consumer
CONNECT
data request
clinical documents
End User
System
authentication
Public
Sector
System
authentication
authorization
data request
clinical data
auth user
Document Retrieve (From NHIN)
Sequence Diagram
29
Copyright 2009. All Rights Reserved.
Document Retrieve (To NHIN)
Sequence Diagram
30
Copyright 2009. All Rights Reserved.
Document Retrieve –
Dynamic Documents
Once transmitted, the generated document must
remain available and unaltered
Document reference may be expired if and
only if no retrieve document request
was processed for the document
31
Copyright 2009. All Rights Reserved.
CONNECT Architecture:
v2.1 Changes
32
Copyright 2009. All Rights Reserved.
Enterprise Service Components
• Master patient index (MPI)
– Sun MURAL/MDM, Stable release dated 4/24/2009
• Document registry/repository
– NIST XDS Repository v. 2
– Object, Metadata and Artifacts Registry (OMAR) v. 2.1, final 1
• Policy engine
– OpenSSO, Express Build 7 dated 4/10/2009
– Jericho
• Audit repository
– CONNECT implementation using MySQL
33
Copyright 2009. All Rights Reserved.
CONNECT Development Environment
Version 2.1
Item
Version
Java JRE/JDK
1.6 Update 13, Build 3
GlassFishESB
GlassFishESB V2.1
NetBeans
GlassFishESB V2.1
Metro
1.4
MySQL
5.0
SoapUI
2.5.1
34
Copyright 2009. All Rights Reserved.
Movement away from BPEL/ESB
Perceived ESB benefits not realized
– Primarily used SOAP binding (others not used/needed)
– GlassFishESB – features of individual components not fully implemented
– NMR
• Not dynamically configurable
• Had to place all services into single large composite application
• Does not work when crossing machine boundaries
Perceived BPEL benefits not realized
– Development of moderate to complex logic in BPEL is cumbersome
– Graphical view for complex BPEL code is unusable
– Performance was unacceptable when making BPEL changes
– Simplification of BPEL caused creation of even more web services
35
Copyright 2009. All Rights Reserved.
Movement away from BPEL/ESB
(cont.)
Additional Issues with ESB and BPEL
Integrated GlassFishESB
•
Combined stack tied NHIN CONNECT to a particular vendor
•
Upgrades to newer versions is very time-consuming
•
Integrated solution is based on older individual components
•
Bug fixes are done on new versions of the individual components and these are
not available in the integrated solution
•
Resolution of issues are difficult because they span multiple vendor
development teams
•
Memory consumption has become a big issue
•
Run-time performance on CONNECT 2.0 degraded because of the necessity of
handling “replaceable components”
•
Code reuse is very difficult within BPEL
•
BPEL cannot handle complex processing issues needed by CONNECT
36
Copyright 2009. All Rights Reserved.
Adoption of Component Proxy
Approach
• Move toward Java/Enterprise Java Bean (EJB) solution
• Using Spring Framework
• Replaceable components have both java and web service
implementations
– Configuration selection done at run-time
– Contains a no-op implementation as well
• Enables portability to other tools/platforms
• Migration of current BPEL/ESB to component proxy will be done
over time
• After full migration, will change from GlassFishESB to individual
components (e.g. GlassFish, NetBeans, etc.)
37
Copyright 2009. All Rights Reserved.
CONNECT 2.2 Roadmap
• Gateway Level:
– Security Enhancement
– HIEM PROFILE: CDC GIPSE (to support Biosurveillance)
• Enterprise Service Components
– Document Registry/Repository Enhancement
– Enterprise Class MPI (2.2 Enhancement)
– Fine-Grain Policy Engine
• Universal Client
– Security and Context Management Infrastructure
38
Copyright 2009. All Rights Reserved.
CONNECT Seminar
Presentations are Available
for Download Online at
http://www.connectopensource.org
39
Copyright 2009. All Rights Reserved.
Backup Slides
40
Copyright 2009. All Rights Reserved.
Query Audit Log Context Diagram
announce patients
announce patients
NHIN
data request
clinical documents
data request
clinical documents
Organization’s
Existing Systems
subscription request
notification
clinical document
Provider
System
(eg, EHR
or NHIE)
provider
subscription request
notification
clinical document
MPI
data request
clinical documents
matches
data request
clinical documents
Clinical
Data
data request
clinical data
log request
audit log
CONNECT
data request
clinical documents
End User
System
Personal
Health
Record
ID request
re-identification
subscription request
notification
clinical document
(pseudonymized)
Copyright 2009. All Rights Reserved.
consumer
Public
Sector
System
Public
Health
System
PH official
Warehouse
41
log request
audit log
auth user
Remote
Gateway
user
authentication
Query Audit Log (From NHIN)
Sequence Diagram
42
Copyright 2009. All Rights Reserved.
Query Audit Log (To NHIN)
Sequence Diagram
43
Copyright 2009. All Rights Reserved.
Authorized Case Follow-up
Context Diagram
Organization’s
Existing Systems
NHIN
authentication
authorization
Public
Health
System
matches
Clinical
Data
CONNECT
End User
System
ID request
re-identification
Remote
Gateway
MPI
user
Warehouse
44
Copyright 2009. All Rights Reserved.
ID request
re-identification
PH official
Authorized Case Follow-up
(From NHIN) Sequence Diagram
45
Copyright 2009. All Rights Reserved.
Authorized Case Follow-up
(To NHIN) Sequence Diagram
46
Copyright 2009. All Rights Reserved.
Health Information Event Messaging
(HIEM) Context Diagram
Organization’s
Existing Systems
NHIN
MPI
Clinical
Data
data request
clinical data
End User
System
CONNECT
subscription request
notification
clinical document
Provider
System
(eg, EHR
or NHIE)
provider
subscription request
notification
clinical document
subscription request
notification
clinical document
(pseudonymized)
Remote
Gateway
user
Public
Health
System
PH official
clinical
data
pseudonymized
data
47
Copyright 2009. All Rights Reserved.
Warehouse
HIEM: Receive Subscribe Message
(From NHIN) Sequence Diagram
48
Copyright 2009. All Rights Reserved.
HIEM: Receive Subscribe Message
(To NHIN) Sequence Diagram
49
Copyright 2009. All Rights Reserved.
HIEM: Receive Unsubscribe Message
(From NHIN) Sequence Diagram
50
Copyright 2009. All Rights Reserved.
HIEM: Receive Unsubscribe Message
(To NHIN) Sequence Diagram
51
Copyright 2009. All Rights Reserved.
HIEM: Receive Notify Message
(From NHIN) Sequence Diagram
52
Copyright 2009. All Rights Reserved.
HIEM: Receive Notify Message
(To NHIN) Sequence Diagram
53
Copyright 2009. All Rights Reserved.