Search Criteria : 25 assertions found for this search Review filtered assertions

Assertion

Applies to

Applied to
Not applied to

Coverage

Covered by
Not covered by
Id scheme
Assertion id
Status
Testable?
#Coverage
#Applies to
Comment
Predicate
Page
Tags
Last changed
Actions
MESSPFMESSPF-001to be reviewedTestable 0 0 The Messaging Platform will be based on SOAP 1.2 messages over HTTP. 9Section 2.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-002to be reviewedTestable 0 0 Messages between NHIOs must be secure. This will necessitate the use of encryption as part of the message transport layer. 9Section 2.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-003to be reviewedTestable 0 0 The common message envelope must support assertions about security and trust between NHIOs.9Section 2.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-004to be reviewedTestable 0 0 The basis for authentication for NHIO participants shall be X.509 certificates.9Section 2.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-005to be reviewedTestable 0 0 All NHIO to NHIO messages must be digitally signed for purposes of authentication and non-repudiation.9Section 2.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-006to be reviewedTestable 0 0 Each initiating and responding NHIO gateway MUST implement either OCSP or CRL-based x.509 certificate revocation checking against the Nationwide Health Information Network-managed CA, at the gateway level, to determine the revocation status of each certificate as per Nationwide Health Information Network policy, or in the absence of such a policy, for each transaction. 13Section 3.3.29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-007to be reviewedTestable 0 0 SignedInfo element is required in <ds:Signature> and contains the definition of the Canonicalization method, the Signature method, and the reference to the object being signed16Table 3.4.2-19/13/17 1:29:56 PM by aberge
MESSPFMESSPF-008to be reviewedTestable 0 0 SignatureValue element is required in <ds:Signature> and contains the actual value of the digital signature16Table 3.4.2-19/13/17 1:29:56 PM by aberge
MESSPFMESSPF-009to be reviewedTestable 0 0 CanonicalizationMethod element of ds:SignedInfo is required in <ds:Signature>.16Table 3.4.2-29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-010to be reviewedTestable 0 0 SignatureMethod element of <ds:SignedInfo> is required in <ds:Signature>16Table 3.4.2-29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-011to be reviewedTestable 0 0 Reference element of <ds:SignedInfo> in the <ds:Signature> is required and must contain the URI of that which is being signed.16Table 3.4.2-29/13/17 1:29:56 PM by aberge
MESSPFMESSPF-012to be reviewedTestable 0 0 <ds:Reference> element of the Digital Signature shall include the @URI attribute which must identify the object being signed using that elements Id.17Table 3.4.2-39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-013to be reviewedTestable 0 0 <ds:Reference> element of the Digital Signature shall include the DigestMethod element which defines the digest algorithm that is applied.17Table 3.4.2-39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-014to be reviewedTestable 0 0 <ds:Reference> element of the Digital Signature shall include the DigestValue element which is the encoded value of the digest.17Section 3.4.2-39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-015to be reviewedTestable 0 0 The <ds:RSAKeyValue> is required to have the Modulus element which is a prime modulus used in the DSA.17Table 3.2.4-49/13/17 1:29:56 PM by aberge
MESSPFMESSPF-016to be reviewedTestable 0 0 The <ds:RSAKeyValue> is required to have the Exponent element which is the exponent term.17Table 3.4.2-49/13/17 1:29:56 PM by aberge
MESSPFMESSPF-017to be reviewedTestable 0 0 As part of the validation and processing of the assertion, the receiver must establish the relationship between the subject and claims of the SAML statements and the entity providing the evidence to satisfy the confirmation method defined for the statement.18Section 3.4.39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-018to be reviewedTestable 0 0 Statements attested for by the holder-of-key method must be associated with one or more holder-of-key SubjectConfirmation elements. 18Section 3.4.39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-019to be reviewedTestable 0 0 The SubjectConfirmation elements must include a <ds:KeyInfo> element that identifies a public key that can be used to confirm the identity of the subject.18Section 3.4.39/13/17 1:29:56 PM by aberge
MESSPFMESSPF-020to be reviewedTestable 0 0 The SubjectConfirmation element shall have a @Method attribute which is a URI reference that identifies a protocol or mechanism to be used to confirm the subject. For Holder-of-Key this is: urn:oasis:names:tc:SAML:2.0:cm:holder-of-key18Table 3.4.3-19/13/17 1:29:56 PM by aberge