ONE ID Application Federation

For application service providers

ONE ID Application Federation is a secure and convenient way for application service providers to enable users to login and get access to their services. You can make your services available to a wider audience and grow your active user base without the additional overhead of building and maintaining your own identity management solution. This enables health care providers to access multiple digital health applications managed by eHealth Ontario and other trusted organizations using existing credentials.

For example, a health care provider in a hospital can log in with their health information system credentials (username and password) to access a provincial digital health service. A health care provider working in an organization that does not manage its own credentials can use their ONE ID credential for the same purpose.

Digital health services currently leveraging ONE ID Application Federation include the ConnectingOntario ClinicalViewer, ClinicalConnect™ and Ontario Telemedicine Network Hub. A complete list can be provided upon request.

Features

ONE ID Application Federation offers the following features:

The federation standard is based on the OASIS SAML version 2 specifications with additional, custom attributes to support eHealth Ontario’s single sign-on model.

Increased security through multiple factors of authentication including text and phone-based challenges to confirm user identity.

Seamless and secure access to multiple digital health services from clinical information systems using the primary system’s credentials.

  • Security Assertion Markup Language (SAML) Architecture

    The federation standard is based on the OASIS SAML version 2 specifications with additional, custom attributes to support eHealth Ontario’s single sign-on model.

  • Multifactor Authentication

    Increased security through multiple factors of authentication including text and phone-based challenges to confirm user identity.

  • Single Sign-On

    Seamless and secure access to multiple digital health services from clinical information systems using the primary system’s credentials.

Benefits

  • Increase adoption and uptake by leveraging over 90, 000 ONE ID users that meet stringent privacy, security and legal requirements.
  • Provide a convenient way for health care users to access your applications or services using existing credentials.
  • Avoid overhead costs related to managing credentials, security and user support.
  • No cost – free to health care application/service providers in Ontario.

Technical Prerequisites

  • The application service provider must meet the SAML Standards
  • Delivery channels define their own appropriate authorization rules

Non-Technical Prerequisites

  • Sign the Delivery Channel Services Agreement/Schedule
  • Service providers must meet Federation Standards covering requirements for protection of personal health information (PHI) and access controls