In order for a subscriber to know that information has become available based on some defined criteria, the subscriber needs register a notification channel either via the Portal or using an API.
The Agency is cognisant of the inherent cyber security risks posed by systems connected to and accessing the My Health Record system, as well as potentially vulnerable aspects of the national infrastructure and all services under its care.
The Security Requirements for My Health Record Connecting Systems Conformance Profile contains software requirements that harden clinical information systems from cyber security attacks, uplift information security and protect patient information and your software product.
Prior to registration, the client software needs to generate a 2048-bit RSA key pair as defined in PKCS #1: RSA Cryptography Specifications – RFC 8017 and conveyed using JSON Web Key (JWK) – RFC 7517.
In some cases where the requesting subscription system is stateless or in events where you want all elements referenced irrespective of whether they have changed, a requesting system may use other filter expressions.
The Agency provides sample code directly on GitHub, NuGet, and Maven.
My Health Record Notice of Connection (NoC) and Conformance Compliance and Declaration (CCD) testing
Software products must pass testing requirements before gaining access to the My Health Record production system.
Changes to the National Authentication Service for Health (NASH) PKI certificates.
Electronic Prescribing Frequently Asked Questions covering topics such as Prescribing Systems, Dispensing Systems, Mobile Applications, Mobile Intermediaries, Transitional eNRMC and Conformance Profile 3.0 and more.