3 Definitions

For the purposes of this Standard the following definitions apply.

3.1 Reference Model Definitions

This part of the Standard makes use of the following terms defined in ISO 7498-1:

  1. Application Entity

  2. Protocol Data Unit or Layer Protocol Data Unit

  3. Transport Connection

3.2 Reference Model Security Architecture Definitions

This Part of the Standard makes use of the following terms defined in ISO 7498-2:

  1. Data Confidentiality

Note: The definition is “the property that information is not made available or disclosed to unauthorized individuals, entities or processes.”

  1. Data Origin Authentication

Note: The definition is “the corroboration that the source of data received is as claimed.”

  1. Data Integrity

Note: The definition is “the property that data has not been altered or destroyed in an unauthorized manner.”

  1. Key Management

Note: The definition is “the generation, storage, distribution, deletion, archiving and application of keys in accordance with a security policy.”

e. Digital Signature

Note: The definition is “Data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of that unit and protect against forgery e.g. by the recipient.”

3.3 ACSE Service Definitions

This part of the Standard makes use of the following terms defined in ISO 8649:

  1. Association or Application Association

3.4 Security Definitions

This Part of the Standard makes use of the following terms defined in ECMA 235:

  1. Security Context

Note: The definition is “security information that represents, or will represent a Security Association to an initiator or acceptor that has formed, or is attempting to form such an association.”

3.5 DICOM Introduction and Overview Definitions

This Part of the Standard makes use of the following terms defined in PS 3.1:

a. Attribute

3.6 DICOM Conformance Definitions

This Part of the Standard makes use of the following terms defined in PS 3.2:

a. Security Profile

3.7 DICOM Information Object Definitions

This Part of the Standard makes use of the following terms defined in PS 3.3:

a. Module

3.8 DICOM Service Class Definitions

This Part of the Standard makes use of the following terms defined in PS 3.4:

  1. Service Class

  2. Service-Object Pair (SOP) Instance

3.9 DICOM Communication Support Definitions

This Part of the Standard makes use of the following terms defined in PS 3.8:

  1. DICOM Upper Layer

3.10 DICOM Security Profile Definitions

The following definitions are commonly used in this Part of the DICOM Standard:

Secure Transport Connection: a Transport Connection that provides some level of protection against tampering, eavesdropping, masquerading.

Message Authentication Code: A digest or hash code derived from a subset of Data Elements.

Certificate: An electronic document that identifies a party and that party’s public encryption algorithm, parameters, and key. The Certificate also includes, among other things, the identity and a digital signature from the entity that created the certificate. The content and format of a Certificate are defined by ITU-T Recommendation X.509.