Announcement

Collapse
No announcement yet.

Mirth Connect 3.9.0 with BCP 195 TLS support

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Mirth Connect 3.9.0 with BCP 195 TLS support

    Nextgen community , I'm Devin, today im releasing a build of Mirth 3.9.0 with Dicom BCP 195 Support built in to the channel configuration.

    I have shared this build with the Nextgen and hope that they consider pulling these changes in to the master Mirth repository . I've initially gotten some push back from Nextgen about merging these changes as they currently support BCP 195 (with manual configuration) in their SSL configuration tool. I want to share this with the community as i believe security should always be the default. The currently supported dicom encryption algorithms available in the current open source Mirth are far past their end of life.

    I know the primary use case for Mirth is Hl7 , however i primarily use Mirth for dicom applications and i know there's others however i dont think we have much of a voice in this community as we are a minority. So fellow dicom users i'd appreciate it if you could show your support for these changes.

    Unfortunately , i havent uploaded any builds of this version however you can compile it yourself from here . If there's enough interest i could provide unsigned builds , but i would much prefer Nextgen pull in these changes.

    https://github.com/devinsoares/conne.../TLS12_profile

    These changes support Both Dicom BCP 195, and Dicom BCP 195 non downgrading.

    The BCP 195 TLS ciphers are defined in mirth.properties. and the TLS profiles are defined in the channel configuration.

    You will find these options in both the dicom sender and receiver channel configurations.

    mirthdemo.PNG

    You can find more details on the BPC195 security protocols here :
    https://www.dicomstandard.org/News/f...ups/sup204.pdf


    Cheers!

  • #2
    Nice work!
    Diridium Technologies, Inc.
    https://diridium.com

    Comment


    • #3
      FYI I replied to that pull request... We will be looking into adding support for this in the open source distribution! I know that this is achievable using our SSL Manager but totally respect that it doesn't help if you only have the open source so, I definitely want to make sure you're able to support these security profiles.
      Step 1: JAVA CACHE...DID YOU CLEAR ...wait, ding dong the witch is dead?

      Nicholas Rupley
      Work: 949-237-6069
      Always include what Mirth Connect version you're working with. Also include (if applicable) the code you're using and full stacktraces for errors (use CODE tags). Posting your entire channel is helpful as well; make sure to scrub any PHI/passwords first.


      - How do I foo?
      - You just bar.

      Comment

      Working...
      X