Telematics Infrastructure – For a Digital Healthcare System

Access to the telematics infrastructure, as a closed network, is highly secured to prevent unauthorised access. Anyone working in healthcare who wishes to order an SMC-B card for their organisation or sign documents electronically requires an electronic health professional card (eHBA) or a professional card (eBA). Relevant organisations such as hospitals, care homes, pharmacies or practices require the practice or institution card SMC-B, or in future, its digital alternative, the HSM-B (institution certificates – Hardware Security Module, type B). These smartcards or digital identities must be applied for and activated before they can be used. Additionally, hardware or software-as-a-service components are required, which can be obtained via your IT service provider.

To use the telematics infrastructure, the TI 1.0 setup requires a card terminal and connector, as well as the smartcards for authentication. Healthcare professionals and institutions can apply for the required ID cards through their respective card issuers.Then, they must order the eHBA/eBA or the SMC-B via the eHealth application portal of D-Trust, a subsidiary of Bundesdruckerei Group. 

Delivery can take several weeks from point of order.Three days after your ID card is dispatched, D-Trust sends the PIN for activation in a separate letter.

The application process consists of several steps. In certain sectors, an electronic healthcare professional ID (eHBA) card number is required in order to apply for an institution card (SMC-B)The practice or institution card authorises the healthcare organisation as a participant within the telematics infrastructure.

Within the TI, various health and treatment data can be exchanged. For example doctors’ letters, medication plans, results of imaging procedures, or e-prescriptions.. Data security is ensured by end-to-end encryption. Only users authenticated via eHBA/eBA or SMC-B have access to the data. Within the TI, the KIM service (Communication in Medicine) provides a directory service listing all authorised and connected practices and institutions that can exchange KIM messages. KIM operates like a secure email system, enabling all necessary data to be exchanged securely, including, for example, billing data as well as the eAU (electronic certificate of incapacity for work).

Protecting sensitive medical data is a fundamental aim of the telematics infrastructure. The TI is therefore designed for maximum availability with the highest level of security. It is a closed network that can only be accessed via a connector by users who have been properly authenticated. It also operates separately from the public internet. This is made possible by a VPN (a virtual private network) which is built in accordance with the requirements of the Federal Office for Information Security (BSI) and is approved by gematik (National Digital Health Agency). 

All data exchanges between participants in the TI are encrypted using multi-layer cryptographic methods, which areregularly updated to meet the highest current security standards at all times.

The telematics infrastructure in healthcare always aims to balance data security and ease of use. While data protection and security take top priority, the TI is also designed to be as user-friendly as possible for all participants. For this reason, user experience also plays a central role in the ongoing development of the TI. To better understand user experience, regular feedback is collected from all participants and, since no product is perfect, gematik (National Digital Health Agency) conducts an annual comprehensive evaluation of the TI’s processes, products, and security. This evaluation helps to identify potential vulnerabilities so that they can be addressed and improved.