1 / 8

HIT Standards Committee NwHIN Power Team

HIT Standards Committee NwHIN Power Team. Transport Standards for Consumer Exchanges. Dixie Baker, Chair David McCallie, Co-Chair August 23, 2013. 2014 Patient Empowerment Requirements. Initiatives Asked to Review. Blue Button Plus (BB+) Initiative

kamala
Download Presentation

HIT Standards Committee NwHIN Power Team

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HIT Standards CommitteeNwHIN Power Team Transport Standards for Consumer Exchanges Dixie Baker, Chair David McCallie, Co-Chair August 23, 2013

  2. 2014 Patient Empowerment Requirements

  3. Initiatives Asked to Review • Blue Button Plus (BB+) Initiative • S&I Framework Initiative formerly known as Automated Blue Button (ABBI) • http://wiki.siframework.org/BlueButton+Plus+Initiative • HL7 Fast Healthcare Interoperability Resources (FHIR) specification • http://www.hl7.org/implement/standards/fhir/ • RESTful Health Exchange (RHEx) Project • Federal Health Architecture + S&I Framework sponsored • http://wiki.siframework.org/RHEx

  4. Conclusions and Recommendations Final, Coordinated Conclusions and Recommendations, as approved by HITSC on 8/22/13 Office of the National Coordinator for Health Information Technology

  5. Coordinated Conclusions and Recommendations (1 of 2) • Secured RESTful transport (HTTPS), OpenID Connect, OAuth2, and FHIR can be used together to build safe healthcare applications: we recommend ONC support the development and piloting of these standards as candidate building blocks for healthcare applications • BB+ “Pull” holds potential as a national implementation specification for future meaningful-use Editions, but further development and piloting are needed • RHEx Project is a useful demonstration of how these standards can be used together to support robust, but simple healthcare exchange Office of the National Coordinator for Health Information Technology

  6. Coordinated Conclusions and Recommendations (2 of 2) • IHE IUA profile appropriately constrains and structures OAuth2 tokens to support sharing of user-context assertions such as “purpose of use” and is recommended for use in environments that require coexistence with existing profiles based on IHE constrained user-context assertions • BB+ concept of implementing a Registry Service to recognize two types of registration – “trusted” and “open” – assumes policy that has not been established and implies a level of app “trustworthiness” that may not be justified: we recommend ONC ask the Privacy and Security Tiger Team to address the questions of whether “trusted registration” with a Registry Service should be required for BB+ “Pull” applications, and if so, what should “trusted” entail Office of the National Coordinator for Health Information Technology

  7. FINAL Overarching Conclusion Secured RESTful transport (HTTPS) + OpenID Connectauthentication + OAuth2 authorization and, as applicable, the IHE Internet User Authorization (IUA) Profile + FHIR healthcare content  an appropriate set of standards to use as building blocks for more complicated healthcare applications Office of the National Coordinator for Health Information Technology

  8. FINAL Readiness Assessment HTTPS National Standards National Standards Maturity Low Moderate High OAuth2 Pilots Pilots RHEx FHIR Emerging Standards IHE IUA “Pull” OpenID Connect Low Moderate High Adoptability Emerging Standards Red Type = building blocks White box = projects reviewed

More Related