Direct Project Scalable Trust and Trust Bundles. 12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo.

Slides:



Advertisements
Similar presentations
The Business of Modularity The Modern Way to Bring ERP Solutions to Market March, 2010.
Advertisements

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Directory and Trust Services (D&TS) Define an Abstract Model Purpose: Document a common terminology that the group can use between the various tracks Identify.
#CONNECT2013 Connecting for Good Loews Coronado Bay Resort, San Diego, California David C. Kibbe, MD MBA President and CEO, DirectTrust David C. Kibbe,
Interoperability Roadmap Comments Sections E, F, and G Transport & Security Standards Workgroup Dixie Baker, chair Lisa Gallagher, co-chair March 11, 2015.
Nick Vennaro, NHIN Team (Contractor), Office of the National Coordinator for Health IT Michael Torppey, CONNECT Health IT Security Specialist (Contractor)
Identity Federation Rules and Process Linda Elliott President, PingID Network Electronic Authentication Partnership Washington, DC February 12, 2004.
1101 Connecticut Ave NW, Washington, DC :00 pm EST, January 9, (626)
Electronic Submission of Medical Documentation (esMD) for Medicare FFS Presentation to HITSC Provenance Workgroup January 16, 2015.
1 WebTrust for Certification Authorities (CAs) Overview October 2011 WebTrust for Certification Authorities (CAs) Overview October 2011 Presentation based.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
Connecticut Ave NW, Washington, DC Direct Exchange from Provider to Patient/Consumer ….and Back! David C. Kibbe, MD MBA.
Direct Implementation Perspective 0 Mark Bamberg, Vice President Research & Development MEDfx.
Discussion on the Western States Consortium and Inter-State Exchange Robert Cothren, California Health eQuality Institute for Population Health Improvement.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Centers for Disease Control and Prevention Office of the Associate Director for Communication Electronic Health Records/Meaningful Use and Public Health.
Privacy and Security in the Direct Context Session 6 April 12, 2010.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Connecting Health and Care for the Nation: A Shared Nationwide Interoperability Roadmap – DRAFT Version 1.0 Joint FACA Meeting Chartese February 10, 2015.
HISP-to-HISP Discussion May 13, HISP Definition What is a HISP? An organization that provides security and transport services for directed exchange.
Understanding and Leveraging MU2 Optional Transports Paul M. Tuten, PhD Senior Consultant, ONC Leader, Implementation Geographies Workgroup, Direct Project.
Russ Housley IETF Chair Founder, Vigil Security, LLC 8 June 2009 NIST Key Management Workshop Key Management in Internet Security Protocols.
Connecticut Ave NW, Washington, DC Direct Exchange An Introduction for Providers Engaged in Stage 2 Meaningful Use David.
“ Does Cloud Computing Offer a Viable Option for the Control of Statistical Data: How Safe Are Clouds” Federal Committee for Statistical Methodology (FCSM)
Connecticut Ave NW, Washington, DC HISP Policy “HP” 1.0 Overview Policy Document available at DirectTrust.Org Presented.
Cisco Confidential © 2010 Cisco and/or its affiliates. All rights reserved. 1 SAN Certificate in Unity Connection Presenter Name: Bhawna Goel.
Module 10: Designing an AD RMS Infrastructure in Windows Server 2008.
Cross Vendor Exchange Testing and Certification Plans April 18, 2013.
Introduction to Secure Messaging The Open Group Messaging Forum April 30, 2003.
Cross Vendor Exchange Testing and Certification Plans April 18, 2013 Meaningful Use Stage 2 Exchange Summit Avinash Shanbhag, ONC.
An XMPP (Extensible Message and Presence Protocol) based implementation for NHIN Direct 1.
Trusted Federated Identity and Access Management to provide the Cornerstone for Cyber Defense.
Automate Blue Button Initiative Push Workgroup Meeting December 17, 2012.
Direct Project Direct + Policy Enablement. 12/06/10 Overview Policy Role In Direct Policy Enablement Security and Trust Support Architecture Tool Demo.
S&I Framework Architecture Refinement & Management (ARM) 01/07/2013.
1 EAP and EAI Alignment: FiXs Pilot Project December 14, 2005 David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
TUESDAY, 4:00 – 4:20PM WEDNESDAY, 4:00 – 4:20PM Douglas Hill, NHIN Implementation Lead (Contractor), Office of the National Coordinator for Health IT Vanessa.
Proposal for device identification PAR. Scope Unique per-device identifiers (DevID) Method or methods for authenticating that device is bound to that.
Connecticut Ave NW, Washington, DC David C. Kibbe, MD MBA President and CEO, DirectTrust Senior Advisor, AAFP AMDIS, Boston,
State HIE Program Chris Muir Program Manager for Western/Mid-western States.
Digital Signatures A Brief Overview by Tim Sigmon April, 2001.
Secure Messaging Workshop The Open Group Messaging Forum February 6, 2003.
National Quality Infrastructure TRTA3 Approach
1. 2 Overview In Exchange security is managed by assigning permissions in Active Directory Exchange objects are secured with DACL and ACEs Permissions.
1 David C. Kibbe, MD MBA DirectTrust A Discussion About Scalable Trust May 9,
The Impact of Evolving IT Security Concerns On Cornell Information Technology Policy.
Identity Proofing, Signatures, & Encryption in Direct esMD Author of Record Workgroup John Hall Coordinator, Direct Project June 13, 2012.
“Trust me …” Policy and Practices in PKI David L. Wasley Fall 2006 PKI Workshop.
Connect. Communicate. Collaborate The MetaData Service Distributing trust in AAI confederations Manuela Stanica, DFN.
Break out Session 3: Promising Practices for Implementing Blue Button National Association For Trusted Exchange (NATE) PHR Ignite Pilot HHS Auditorium.
Scalable Trust Community Framework STCF (01/07/2013)
HIT Policy Committee NHIN Workgroup HIE Trust Framework: HIE Trust Framework: Essential Components for Trust April 21, 2010 David Lansky, Chair Farzad.
Transforming Government Federal e-Authentication Initiative David Temoshok Director, Identity Policy and Management GSA Office of Governmentwide Policy.
Creating an Interoperable Learning Health System for a Healthy Nation Jon White, M.D. Acting Deputy National Coordinator Office of the National Coordinator.
GRID ANATOMY Advanced Computing Concepts – Dr. Emmanuel Pilli.
HIT Policy Committee Meeting Nationwide Health Information Network Governance June 25, 2010 Mary Jo Deering, PhD ONC, Office of Policy and Planning NHIN.
1 Configuring Sites Configuring Site Settings Configuring Inter-Site Replication Troubleshooting Replication Maintaining Server Settings.
Why a Commercial Provider should Join the Academic Cloud Federation David Blundell Managing Director 100 Percent IT Ltd Simple, Flexible, Reliable.
1 David C. Kibbe, MD MBA DirectTrust Collaborating to Build the Security and Trust Framework for Direct Exchange June 20, 2013.
Connecticut Ave NW, Washington, DC DirectTrust Collaborating to Build the Security and Trust Framework for Direct Exchange.
CAISO Public Key Infrastructure: Supporting Secure ICCP Leslie DeAnda Senior Information Security Analyst, Information Security, CAISO EMS Users Group.
Authentication and Authorisation for Research and Collaboration Taipei - Taiwan Mechanisms of Interfederation 13th March 2016 Alessandra.
Resource subscription using DDS in oneM2M
Peer-to-peer networking
Choosing the Discovery Model Martin Forsberg
HIMSS National Conference New Orleans Convention Center
Pantry System Overview
Peer-to-peer networking
Executive Summary: eHealth Exchange Hub
Presentation transcript:

Direct Project Scalable Trust and Trust Bundles

12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo

12/06/10 What Is Scalable Trust Scalable Trust is a strategy for enabling Direct exchange between a large number of endpoints. Trust should happen “quickly” and uniformly Forms a “complete” network Complexity of establishing a network does not increase as more nodes are added to the network Value of the network increases as more nodes are added

12/06/10 State of Trust “Islands of Automation” and/or “Walled Gardens” Exchange only occurring within subscribers of a single HISP HISP A HISP B

12/06/10 State of Trust One-off Agreements HISPs creating peer to peer agreements Networks become incomplete and fragmented HISP A HISP B HISP C HISP D

12/06/10 State of Trust Trust Communities Forming Directrust.org WSCABBI

12/06/10 Trust Issues Policy Lack of Common Policies/Practices Registration Authorities – Identity Vetting Assurance Certificate Authorities – Certificate Practices HISP Practices and Operations Direct compliance Edge protocols BAAs usage Cryptographic key protection Legal Liabilities Technical Exchange of Trust Anchors

Peer to Peer Model Not Scalable For “Complete” Networks 12/06/10 Trust Issues

12/06/10 Trust Issues

Peer to Peer Model Results in Incomplete Networks 12/06/10 Trust Issues

12/06/10 Trust Solutions Trust Communities Organizations electing to follow a common set of policies and processes related to information exchange. Examples of these policies are identity proofing policies, certificate management policies, HIPAA compliance processes etc. May require certification to attest to compliance and receive accreditation Federated Trust Agreements An agreement between an accredited HISP and the trust community, whereby the accredited HISP attests that it has implemented and will abide by the provisions of accreditation, as well as other terms and conditions associated with participation in the trust community May eliminate the need for Peer to Peer agreements

12/06/10 Trust Solutions Trust Bundle A collection of trust anchors within a trust community that conform to a common set of policies and procedures. All anchors in a bundle meet the same minimum set of requirements Trust anchor are included in a bundle in accordance to the community’s policies and governance Bundles are cumulative Tangible manifestation of a trust community. Packaged using cryptographic message syntax (CMS) and (S)MIME standards. Distributed over public URLs HTTP(s) Consumed by HISPs via the published URL

12/06/10 Trust Solutions Trust Communities and Bundles are Scalable Each HISP only required to sign federated trust agreement All HISPs signing the same agreement “trust” each other Trust bundle distribution is cumulative, secure, and systemic Trust bundle URL is configured once, updates are automatic Distribution uses a hub and spoke model allowing distribution to be centralized Networks within a community are “complete” The Math - Number of possible agreements: n Ex: 8 node (HISP) network = 8 agreements Each additional node requires 1 agreement Management effort becomes linear

12/06/10 Trust Solutions Multiple Trust Communities Not optimal, but a reality. May lead to fragmentation or large walled gardens. Trust “Bridges” may facilitate policy issues between communities Ex: DirecTrust.org WSC Trust Bridge

12/06/10 Trust Solutions Automate Blue Button (ABBI) Trust Community Superset of MU2 VTD (specifically transmit) Requires model private notice New HIPPA regulations will serve as the trust bridge One way communication Ex: DirecTrust.org ABBI HIPPA

12/06/10 For More Information Scalable Trust Forum: Scalable Trust Summary: summary-of-findings-report.pdfhttp:// summary-of-findings-report.pdf Direct Trust Bundle Workgroup: Scalable Trust Story: Automate Blue Button Initiative: Automate Blue Button Bundle: DirectTrust.org:

12/06/10 Trust Bundle Demo DEMO!!

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.