Use hashing to ensure message integrity

Mirth® Connect by NextGen Healthcare User Guide

§170.315(d)(8) Integrity

(d)(8) Integrity requires that a message digest can be created and sent using a hashing algorithm of SHA-2 security strength or greater. Required Extensions None Features that Support the Certification A SHA-256 hash variable (named Message Hash) is automatically generated for each message sent out by a destination connector. If sending the hash, the recipient of the message and the hash can validate the content of the message. For additional information, see Destination Mappings. New utility functions have been added to create a message hash, supporting the filtering of messages either in a source or destination connector. They are: HashUtil.generate(object); HashUtil.generate(string, encoding, algorithm); HashUtil.generate(byte[], algorithm); Required Actions Use of the Message Hash variable. Use the hash HashUtil.generate functions to compare received with generated hash. See examples in the Message Integrity section of Channel Development Best Practices and Tips. Parent topic: Cure

Mirth® Connect by NextGen Healthcare User Guide

Variable Maps

Throughout the Message Processing Lifecycle, your channels and messages have access to various maps. Depending on the scope, the map may only be available in the current channel/connector, or may be globally available across your entire system. These variable maps allow you to store a piece of information that can be used later (in a downstream channel, connector, or somewhere else). A common use for these variables is to provide easy drag-and-drop for connector properties. The Destination Mappings list will display all available connector/channel map variables for example. They are also used in other ways, such as populating Custom Metadata Columns. The following variable maps exist throughout Mirth® Connect: Name JavaScript Variable Get/Put Shortcut Variable Response Map responseMap $r Connector Map connectorMap $co Channel Map channelMap $c Source Map sourceMap $s Global Channel Map globalChannelMap $gc Global Map globalMap $g Configuration Map configurationMap $cfg The table above

Mirth® Connect by NextGen Healthcare User Guide

Message Integrity

Use hashing to ensure message integrity Use hashing to ensure message integrity Parent topic: Channel Development Best Practices and Tips

Mirth® Connect by NextGen Healthcare User Guide

Generating a Hash with JavaScript

Use HashUtil.generate() to create a hex hash of a message passing through a channel in JavaScript contexts: var hash = HashUtil.generate(message); We provide 3 overloaded versions: HashUtil.generate(Object) Takes in any object and returns a hex hash of the object as a String. This defaults to using the platform's default character encoding and the SHA-256 hashing algorithm. Example HashUtil.generate("Hello, World!") HashUtil.generate(String, String, String) Takes in data as a string, a character encoding as a string, and a hashing algorithm as a string and returns a hex hash of the data as a string. Example HashUtil.generate("Hello, World!", "UTF-8", "SHA-256") HashUtil.generate(byte[], String) Takes in data as a byte[] and a hashing algorithm as a string and returns a hex hash of the data as a string. Example HashUtil.generate("Hello, World!".getBytes(), "SHA-256") Supported Character Encodings (for more information, please see documentation on Charset): US-ASCII ISO-8859-1 UTF-8 UTF-

Mirth® Connect by NextGen Healthcare User Guide

Standard Variables/Templates

Name Description Channel ID The unique ID of the current channel. Channel Name The name of the current channel. Message ID The unique ID of the current message. Raw Data The raw content of the destination connector message (equal to the encoded content of the source connector message). Transformed Data The serialized internal representation of the post-transformer message data. Encoded Data The state of the message data as it exists in the transformer. Message Source Depends on the inbound data type for the connector. For HL7 v2.x messages this will usually be the Sending Facility value in MSH.4.1. Message Type Depends on the inbound data type for the connector. For HL7 v2.x messages this will usually be the Type and Trigger values in MSH.9.1 and MSH.9.2. Message Version Depends on the inbound data type for the connector. For HL7 v2.x messages this will usually be the Version value in MSH.12.1. Message Hash The SHA-256 hash of the encoded data of the destination connector message. If n

Mirth® Connect by NextGen Healthcare User Guide

Channel Map

This map is isolated to the current message as it processes through a channel. If you store a connector map variable in the source connector, you will have access to that value in all subsequent destinations. However when the current message finishes and the next one begins, that next message will not have access to the value you stored for the previous message. The channel map is useful for anything that needs to be shared among multiple destinations, or the source connector and all destinations. For example, you might have one HTTP Sender destination that makes a request to a remote service, and then in the Response Transformer you store a particular response HTTP header in the channel map. As long as the next destination connector is in the same chain, it will have access to that channel map variable, and can do something else with it, like include it on a subsequent HTTP request. Get channel map value: var value = channelMap.get('key'); var value = $c('key'); Put channel map value:

Use hashing to ensure message integrity

Recommendations

§170.315(d)(8) Integrity

Variable Maps

Message Integrity

Generating a Hash with JavaScript

Standard Variables/Templates

Channel Map

Use hashing to ensure message integrity

§170.315(d)(8) Integrity

Variable Maps

Message Integrity

Generating a Hash with JavaScript

Standard Variables/Templates

Channel Map