Integrating Federated Identity and Web services in the RHIO Environment John Richardson Vice-Chair, Liberty Alliance eHealth SIG Intel Corporation Digital.

Slides:

Advertisements

Similar presentations

Connected Health Framework

Advertisements

Nationwide and Regional Health Information Networks and Federated Identity for Authentication and HIPAA Compliance Christina Stephan, MD Co-Chair Liberty.

National HIT Agenda and HIE John W. Loonsk, M.D. Director of Interoperability and Standards Office of the National Coordinator Department of Health.

S.O.S. eHealth Project Open eHealth initiative for a European large scale pilot of patient summary and electronic prescription Daniel Forslund, Head of.

Customer First : Strategic Context and Opportunities Rory Mair.

Interoperability: Progress through Unprecedented Collaboration Charlene Underwood, MBA Director, Government and Industry Affairs, Siemens Chairperson,

Community of Interest for Patient Identifiers AGENDA 1.NHII’s Unique Health Information Identification Requirements - Soloman I. Appavu, SIG Leader 2.Identification.

Network Identity Kai Kang 27 th October Outline Introduction –Definition –Five drivers –Basic services –Roadmap Network Identity management approaches.

NHIN Specifications Richard Kernan, NHIN Specification Lead (Contractor), Office of the National Coordinator for Health IT Karen Witting, Contractor to.

December 19, 2006 Solving Web Single Sign-on with Standards and Open Source Solutions Trey Drake AssetWorld 2007 Albuquerque, New Mexico November 2007.

1 Joyce Sensmeier MS, RN, FHIMSS, HIMSS Glen Marshall, Siemens Healthcare Charles Parisot, GE Healthcare IHE's contribution to standards harmonization.

Regional Health Information Exchange: Getting There Ed Barthell – Wisconsin Health Information Exchange Hugh Zettel, GE Healthcare.

1 Confidential Charlene Underwood, MBA Director, Government & Industry Affairs Office Health Information Sharing: Case Studies for Interoperability.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Initial slides for Layered Service Architecture

Copyright 2006 Archistry Limited. All Rights Reserved. SOA Federated Identity Management How much do you really need? Andrew S. Townley Founder and Managing.

The InCommon Federation The U.S. Access and Identity Management Federation

How can I trust the rest of Europe ? Requirements and a possible organisation with regard to epSOS and eHealth Frank Robben General manager eHealth platform.

HITSP’s Scope  The Panel’s mission is to assist in the development of a Nationwide Health Information Network (NHIN) by addressing the standards-related.

Internet2 – InCommon and Box Marla Meehl Colorado CIO 11/1/11.

September, 2005What IHE Delivers 1 IHE Sponsors and Committee Members Welcome to the Interoperability Showcase.

1 Charles Parisot, GE Healthcare IHE IT Infrastructure Planning Committee Co-chair IHE and US National Health IT Initiatives.

State Alliance for e-Health Conference Meeting January 26, 2007.

1 EAP and EAI Alignment: FiXs Pilot Project December 14, 2005 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.

September, 2005What IHE Delivers 1 An Overview of the IHE IT Infrastructure IHE Vendors Workshop 2006 IHE IT Infrastructure Education Glen F. Marshall.

Helsinki Institute of Physics (HIP) Liberty Alliance Overview of the Liberty Alliance Architecture Helsinki Institute of Physics (HIP), May 9 th.

Liberty, Privacy & The Public Sector. 2 Agenda  Liberty & Privacy  E-government and identity  The promise of e-government  Importance of identity.

State HIE Program Chris Muir Program Manager for Western/Mid-western States.

HIT Policy Committee NHIN Workgroup Recommendations Phase 2 David Lansky, Chair Pacific Business Group on Health Danny Weitzner, Co-Chair Department of.

Integrating the Healthcare Enterprise Audit Trail and Node Authentication Profile Name of Presenter IHE affiliation.

IHE IT Infrastructure: The Value Proposition HIMSS 2003 Joining the IHE in its New Enterprise Initiatives.

1 Networked PHR, a framework for personal health applications & services Anne Chapman, Senior Program Manager Personal Health Records, Intel.

E-Authentication: Enabling E-Government Presented to PESC May 2, 2005 The E  Authentication Initiative.

Organizational and Legal Issues -- Developing organization and governance models for HIE Day 2 -Track 5 – SECOND SESSION – PRIVACY AND SECURITY CONNECTING.

0 Connectathon 2009 Registration Bob Yencha Webinar | August 28, 2008 enabling healthcare interoperability.

Hurdles and Solutions for the Interoperable EHR John W, Loonsk, MD FACMI Chief Medical Officer CGI.

Public Health Data Standards Consortium

Identity Management: A Technical Perspective Richard Cissée DAI-Labor; Technische Universität Berlin

IHE-Europe – Use Case Based Approach to eHealth Interoperability Peter Künecke, SIEMENS Medical Solutions IHE-Europe „vendor“ co-chair Integrating the.

Integrating the Healthcare Enterprise Personnel White Pages Profile Name of Presenter IHE affiliation.

January 26, 2007 State Alliance for e-Health January 26, 2007 Robert M. Kolodner, MD Interim National Coordinator Office of the National Coordinator for.

Issues in State-Wide Regional Healthcare Information Organizations Paul Macielak, Esq. New York Health Plan Association June 28, 2005.

Scalable Trust Community Framework STCF (01/07/2013)

Ensuring Conformance & Interoperability NHIN Testing Leslie Power, NHIN Testing Lead (Contractor) Office of the National Coordinator for Health IT WEDNESDAY,

National Cybersecurity Center of Excellence Increasing the deployment and use of standards-based security technologies Mid-Atlantic Federal Lab Consortium.

Mariann Yeager, NHIN Policy and Governance Lead (Contractor) Office of the National Coordinator for Health IT David Riley, CONNECT Lead (Contractor) Federal.

Overview of “Attribute Aggregation In Federated Identity Management”[1] Presented by Daniel Waymel November 2013 at UT Dallas.

Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.

Federated Identity on the Web Peter Yared Chief Technologist, Network Identity Sun Microsystems, Inc. Month, 2001.

Moving the National Health Information Technology Agenda Forward The Fourth Health Information Technology Summit March 28, 2007 Robert M. Kolodner, MD.

Discussion - HITSC / HITPC Joint Meeting Transport & Security Standards Workgroup October 22, 2014.

GRID ANATOMY Advanced Computing Concepts – Dr. Emmanuel Pilli.

University of Washington Collaboration: Identity and Access Management Lori Stevens University of Washington October 2007.

Chapter © 2012 Pearson Education, Inc. Publishing as Prentice Hall.

Creating a European entity Management Architecture for eGovernment Id GUIDE Keiron Salt

Case Study: Applying Authentication Technologies as Part of a HIPAA Compliance Strategy.

Office of the National Coordinator for Health Information Technology ONC Update for HITSP Board U.S. Department of Health and Human Services John W. Loonsk,

Jonathan L. Elion MD, FACC Co-Chair, IHE Cardiology Planning Committee The Basics of IHE: Concepts and Process.

INTRODUCTION TO IDENTITY FEDERATIONS Heather Flanagan, NSRC.

Who’s in Your Neighborhood? The Patient-Centered Medical Community David C. Willis, MD Medical Director Greater Ocala Health Information Trust, Inc.

1 David C. Kibbe, MD MBA DirectTrust Collaborating to Build the Security and Trust Framework for Direct Exchange June 20, 2013.

© 2013 TM Forum | 1 V Catalysts and Innovation Projects Rapid Technology Innovation Projects The Hub at Management World 2013.

September, 2005What IHE Delivers 1 Joyce Sensmeier, MS, RN, BC, CPHIMS, FHIMSS Vice President, Informatics, HIMSS Charles Parisot, GE Healthcare IT infrastructure.

10/08/20041 © 2004 Pete Palmer Federated Identity Management and Regional Health Information Organizations Pete Palmer, Principal Security Analyst, Guidant.

The Federal E-Authentication Initiative David Temoshok Director, Identity Policy GSA Office of Governmentwide Policy February 12, 2004 The E-Authentication.

HIMSS Welcome to the Cross-Enterprise Interoperability Showcase.

eHealth Standards and Profiles in Action for Europe and Beyond

Regional Health Information Exchange: Getting There

HIMSS National Conference New Orleans Convention Center

ONC Update for HITSP Board

Presentation transcript:

Integrating Federated Identity and Web services in the RHIO Environment John Richardson Vice-Chair, Liberty Alliance eHealth SIG Intel Corporation Digital Health Group Christina Stephan, MD, MBA Liberty Alliance eHealth SIG National Library of Medicine Health Informatics Fellow, University of Minnesota

The Liberty Consortium Consortium of over 150 diverse member companies and organizations developing open standards that anyone can implement, addressing the “whole issue” of identity: Public Policy compliance Privacy Business requirements Interoperability conformance testing & certification Vision: A networked world in which individuals, businesses, organizations and institutions can more easily interact and collaborate with one another while respecting the privacy and security of shared identity information.

Vacationing with family, Ralph develops a severe cough, and having difficulty breathing, he goes to the nearest emergency room…. Your medical records Are locked away here. It’s 2 a.m. You’re here. Demo Scenario: Federated Identity, PHRs & Biosurveillance

User’s Network Identity User Name: John Smith PIN: Credit card number Social security number Drivers license Passport Entertainment preferences Notification preferences Employee authorization Business calendar Dining preferences Education history Medical history Financial assets… a network identity is a user's overall global set of attributes constituting their various accounts

Federated Identity: Key Concepts I  Federation – an association comprising any number of Service Providers and Identity Providers  Principal – a person or “user”, a system entity whose identity can be authenticated  IdP, Identity Provider – authenticates a Principal’s identity  Single Sign-On (SSO) – authenticate with one IdP - have authentication honored by other systems P P P SPSP SP Id P

Federated Identity: Key Concepts: II Further definitions from the Glossary, found at: Circle of Trust – a group of service providers and identity providers that have business relationships based on Liberty architecture and operational agreements and with whom users can transact business in a secure and apparently seamless environment. Circles of Trust represent the second wave of identity federation, after SSO and federated account linking. DS – Discovery Service – provides discovery of Identity-based Web Services Service Provider e.g. Pharmacy Identity-Based Web Service Provider e.g. ePrescriptions.com Identity Provider Authentication Federation Discovery Service Personal Profile Principal e.g. Patient Circle of Trust

Benefits of network technology without compromising security or control over PHI For Patients: Convenience of single sign-on More control over privacy and PHI Improved access Facilitates communication with providers & payers Improved patient trust and quality of care For Providers: Reduced medical errors Better and more services, new revenue opportunities Improved access Improved operating efficiencies Reduces IT costs Easier, faster HIPAA compliance Improved patient trust and quality of care Federated Identity and Health Care Federated Identity Management “plumbing” standards that: Wide-spread adoption Convergence with other standards Federated authentication model Built on standards Privacy & security best practices Conformance testing & certification Provides for multi-product interoperability

 ~ 150 diverse member companies and organizations representing leaders in IT, mobility, government, service provision, system integration and finance from across the globe  Management Board and Sponsor members include: Who is the Liberty Alliance?

IHE-Liberty Collaboration  Liberty and IHE: a Perfect Match  Liberty had identified Healthcare as a key vertical industry  IHE identified Web Services and Federation as key technologies  Liberty and IHE initiate collaboration at HIMSS 2005 Conference  Interop Showcase with demonstrations:  Web Services Framework  Federation technology  IHE meetings and Connectathons during 2005  Liberty provided guidance for emerging technology:  Web services, Federation  Results:  Today:  IHE incorporated SAML 2.0 (a key Liberty-based technology) into the 2006  HIMSS interop showcase XUA scenarios  Laying the foundation for the future:  Liberty is at the 2006 HIMSS demonstrating a more comprehensive SAML 2.0 federation and web services solution  For integration into IHE scenarios for 2007  increased requirement of LAP specifications in Federal RFP’s

Liberty Adds Value for Healthcare Members 06 – 07  RHIOs and NHIN prototypes  Liberty Within & Across Local Health Nets & RHIOs  RHIOs/local HCDOs: proof of concept opportunity  RHIOs interoperability for data exchange PHI/EMR  To achieve NHIN service objectives  Regionally, nationally, across and within RHIOs  With security and privacy  In a standards-based world  Liberty specifications provides the scalable “plumbing” to make this happen  Technical standards for Federated Identity (SAML 2.0) and  Identity-based Web services (ID-WSF)  Industry best practices and deployment guidelines  Conformance and compliance testing  Advance, Integrating the Federated Identity into  Policy making groups: (ANSI-HITSP)  SDOs (HL7, ISO-TC215, ASTM)

Call to Action: Join Us! Become Engaged: Visit us at the Interoperability Demonstration Project See the specifications and white papers at: Become a member! For more information: Liberty brings value to our Healthcare members: Federated Identity Management “plumbing” standards that: Support key elements of NHIN interoperability Make it much easier for patients, providers and payers to share results of authentication Enable easier, faster HIPAA and other “best practice” compliance Conformance and compliance testing that assure base levels of interoperability and functionality