Secure Single Sign-On Integration with Abu Dhabi’s Malaffi Health Information Exchange
The Challenge
Healthcare organizations increasingly rely on health information exchanges (HIEs) to provide clinicians with a unified view of patient records across multiple healthcare facilities. In Abu Dhabi, the Malaffi Health Information Exchange platform serves as a centralized ecosystem that aggregates patient data from various healthcare providers, enabling secure access to demographic and clinical information.
A healthcare provider using the m-Files EMR system needed a seamless and secure method for clinicians and staff to access patient records through Malaffi’s provider portal. The objective was to implement a Single Sign-On (SSO) authentication mechanism that would allow authorized users—including doctors, nurses, and administrative staff—to access patient data without managing separate login credentials.
The integration had to comply with secure authentication standards while ensuring a smooth user experience. Additionally, the system needed to support the retrieval of unified patient records from the Malaffi platform and display them within the organization’s existing EMR workflow.
The Solution
Santeware implemented a secure SAML 2.0-based Single Sign-On (SSO) integration that connects the m-Files EMR system with the Malaffi provider portal.
The solution enables healthcare users to authenticate once within their internal system and seamlessly access Malaffi’s Health Information Exchange environment without additional logins. Through this integration, clinicians and staff can securely retrieve patient demographic and clinical information from the Malaffi platform as part of a unified patient record.
The architecture ensures secure authentication, streamlined access management, and reliable interoperability between the EMR system and the regional health information exchange.
Core Technology Stack
| Layer / Category | Technology | Description |
|---|---|---|
| Application Framework | ASP.NET | Framework used to build web applications and APIs on the .NET platform |
| Backend / Runtime | .NET | Core platform used to run the application logic and services |
| Database | Microsoft SQL Server | Relational database used to store and manage application data |
| Authentication Protocol | SAML 2.0 | XML-based authentication protocol commonly used for Single Sign-On (SSO) |
| Authentication Protocol | OAuth | Authorization framework used for secure API access and delegated authentication |
Integrated Systems:
- m-Files EMR
- Malaffi Provider Portal
This technology framework enabled secure authentication workflows and reliable data access between the internal EMR environment and the Malaffi HIE platform.
Key Capabilities Delivered
1. SAML 2.0 Single Sign-On Integration
The system implements SAML 2.0 authentication, allowing users to log in once and securely access both the internal EMR system and Malaffi’s provider portal without multiple authentication steps.
2. Secure Access to Unified Patient Records
Through the Malaffi Health Information Exchange, clinicians can view consolidated patient demographic and clinical information from multiple healthcare providers, improving visibility into patient history.
3. Seamless EMR Workflow Integration
The integration allows users of the m-Files EMR system to access Malaffi data directly within their workflow, eliminating the need to switch between multiple systems.
4. Role-Based Access for Clinical Staff
By leveraging SAML 2.0 and OAuth authentication frameworks, the system ensures compliance with modern healthcare security standards while maintaining reliable interoperability.
The Impact
The SSO integration significantly improved how healthcare staff access patient information through the Malaffi Health Information Exchange.
Key outcomes included:
- Secure single sign-on access to the Malaffi provider portal
- Simplified authentication for doctors, nurses, and staff
- Seamless retrieval of unified patient demographic and clinical data
- Improved clinical workflow efficiency
- Reduced administrative burden associated with multiple login systems
- Strengthened security through standards-based authentication protocols
The integration allowed healthcare professionals to access comprehensive patient records more efficiently while maintaining strong security and compliance.
Why It Worked
Standards-driven security implementation
Using SAML 2.0 and OAuth ensured robust authentication and compatibility with enterprise healthcare systems.
Seamless interoperability with regional HIE
The solution enabled direct integration with the Malaffi Health Information Exchange, providing clinicians with a unified view of patient data.
Workflow-focused design
The system was designed to minimize disruption to existing clinical workflows while improving access to critical patient information.
Enterprise-grade architecture
Built on ASP.NET and Microsoft SQL Server, the solution provides reliable performance and maintainability in healthcare environments.
Outcome
The result is a secure and efficient Single Sign-On solution that connects the m-Files EMR system with the Malaffi Health Information Exchange, enabling healthcare professionals to access unified patient records with a single authentication.
Access to patient information was no longer fragmented across systems.
It was securely unified through intelligent identity and interoperability integration.
