Presentation is loading. Please wait.

Presentation is loading. Please wait.

Direct Project Scalable Trust and Trust Bundles. 12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo.

Published byShanon Short Modified over 9 years ago

Similar presentations

Presentation on theme: "Direct Project Scalable Trust and Trust Bundles. 12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo."— Presentation transcript:

1 Direct Project Scalable Trust and Trust Bundles

2 12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo

3 12/06/10 What Is Scalable Trust Scalable Trust is a strategy for enabling Direct exchange between a large number of endpoints. Trust should happen “quickly” and uniformly Forms a “complete” network Complexity of establishing a network does not increase as more nodes are added to the network Value of the network increases as more nodes are added

4 12/06/10 State of Trust “Islands of Automation” and/or “Walled Gardens” Exchange only occurring within subscribers of a single HISP HISP A HISP B

5 12/06/10 State of Trust One-off Agreements HISPs creating peer to peer agreements Networks become incomplete and fragmented HISP A HISP B HISP C HISP D

6 12/06/10 State of Trust Trust Communities Forming Directrust.org WSCABBI

7 12/06/10 Trust Issues Policy Lack of Common Policies/Practices Registration Authorities – Identity Vetting Assurance Certificate Authorities – Certificate Practices HISP Practices and Operations Direct compliance Edge protocols BAAs usage Cryptographic key protection Legal Liabilities Technical Exchange of Trust Anchors

8 Peer to Peer Model Not Scalable For “Complete” Networks 12/06/10 Trust Issues

9 12/06/10 Trust Issues

10 Peer to Peer Model Results in Incomplete Networks 12/06/10 Trust Issues

11 12/06/10 Trust Solutions Trust Communities Organizations electing to follow a common set of policies and processes related to information exchange. Examples of these policies are identity proofing policies, certificate management policies, HIPAA compliance processes etc. May require certification to attest to compliance and receive accreditation Federated Trust Agreements An agreement between an accredited HISP and the trust community, whereby the accredited HISP attests that it has implemented and will abide by the provisions of accreditation, as well as other terms and conditions associated with participation in the trust community May eliminate the need for Peer to Peer agreements

12 12/06/10 Trust Solutions Trust Bundle A collection of trust anchors within a trust community that conform to a common set of policies and procedures. All anchors in a bundle meet the same minimum set of requirements Trust anchor are included in a bundle in accordance to the community’s policies and governance Bundles are cumulative Tangible manifestation of a trust community. Packaged using cryptographic message syntax (CMS) and (S)MIME standards. Distributed over public URLs HTTP(s) Consumed by HISPs via the published URL

13 12/06/10 Trust Solutions Trust Communities and Bundles are Scalable Each HISP only required to sign federated trust agreement All HISPs signing the same agreement “trust” each other Trust bundle distribution is cumulative, secure, and systemic Trust bundle URL is configured once, updates are automatic Distribution uses a hub and spoke model allowing distribution to be centralized Networks within a community are “complete” The Math - Number of possible agreements: n Ex: 8 node (HISP) network = 8 agreements Each additional node requires 1 agreement Management effort becomes linear

14 12/06/10 Trust Solutions Multiple Trust Communities Not optimal, but a reality. May lead to fragmentation or large walled gardens. Trust “Bridges” may facilitate policy issues between communities Ex: DirecTrust.org WSC Trust Bridge

15 12/06/10 Trust Solutions Automate Blue Button (ABBI) Trust Community Superset of MU2 VTD (specifically transmit) Requires model private notice New HIPPA regulations will serve as the trust bridge One way communication Ex: DirecTrust.org ABBI HIPPA

16 12/06/10 For More Information Scalable Trust Forum: http://wiki.directproject.org/Direct+Scalable+Trust+Forumhttp://wiki.directproject.org/Direct+Scalable+Trust+Forum Scalable Trust Summary: http://www.healthit.gov/sites/default/files/direct-scalable-trust-forum- summary-of-findings-report.pdfhttp://www.healthit.gov/sites/default/files/direct-scalable-trust-forum- summary-of-findings-report.pdf Direct Trust Bundle Workgroup: http://wiki.directproject.org/Trust+Bundle+Sub+Work+Grouphttp://wiki.directproject.org/Trust+Bundle+Sub+Work+Group Scalable Trust Story: https://secure.bluebuttontrust.orghttps://secure.bluebuttontrust.org Automate Blue Button Initiative: http://wiki.siframework.org/Automate+Blue+Button+Initiativehttp://wiki.siframework.org/Automate+Blue+Button+Initiative Automate Blue Button Bundle: https://secure.bluebuttontrust.orghttps://secure.bluebuttontrust.org DirectTrust.org: http://directtrust.orghttp://directtrust.org

17 12/06/10 Trust Bundle Demo DEMO!!

Download ppt "Direct Project Scalable Trust and Trust Bundles. 12/06/10 Overview What is Scalable Trust State of Trust Trust Issues Trust Solutions Trust Bundle Demo."

Similar presentations

The Business of Modularity The Modern Way to Bring ERP Solutions to Market March, 2010.

The Business of Modularity The Modern Way to Bring ERP Solutions to Market March, 2010.
Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.

Experiences with Massive PKI Deployment and Usage Daniel Kouřil, Michal Procházka Masaryk University & CESNET Security and Protection of Information 2009.
Directory and Trust Services (D&TS) Define an Abstract Model Purpose: Document a common terminology that the group can use between the various tracks Identify.

Directory and Trust Services (D&TS) Define an Abstract Model Purpose: Document a common terminology that the group can use between the various tracks Identify.
#CONNECT2013 Connecting for Good Loews Coronado Bay Resort, San Diego, California David C. Kibbe, MD MBA President and CEO, DirectTrust David C. Kibbe,

#CONNECT2013 Connecting for Good Loews Coronado Bay Resort, San Diego, California David C. Kibbe, MD MBA President and CEO, DirectTrust David C. Kibbe,
Interoperability Roadmap Comments Sections E, F, and G Transport & Security Standards Workgroup Dixie Baker, chair Lisa Gallagher, co-chair March 11, 2015.

Interoperability Roadmap Comments Sections E, F, and G Transport & Security Standards Workgroup Dixie Baker, chair Lisa Gallagher, co-chair March 11, 2015.
Nick Vennaro, NHIN Team (Contractor), Office of the National Coordinator for Health IT Michael Torppey, CONNECT Health IT Security Specialist (Contractor)

Nick Vennaro, NHIN Team (Contractor), Office of the National Coordinator for Health IT Michael Torppey, CONNECT Health IT Security Specialist (Contractor)
Identity Federation Rules and Process Linda Elliott President, PingID Network Electronic Authentication Partnership Washington, DC February 12, 2004.

Identity Federation Rules and Process Linda Elliott President, PingID Network Electronic Authentication Partnership Washington, DC February 12, 2004.
1101 Connecticut Ave NW, Washington, DC 20036 1:00 pm EST, January 9, 2015 https://global.gotomeeting.com/meeting/join/930802605 (626)

1101 Connecticut Ave NW, Washington, DC :00 pm EST, January 9, (626)
Electronic Submission of Medical Documentation (esMD) for Medicare FFS Presentation to HITSC Provenance Workgroup January 16, 2015.

Electronic Submission of Medical Documentation (esMD) for Medicare FFS Presentation to HITSC Provenance Workgroup January 16, 2015.
1 WebTrust for Certification Authorities (CAs) Overview October 2011 WebTrust for Certification Authorities (CAs) Overview October 2011 Presentation based.

1 WebTrust for Certification Authorities (CAs) Overview October 2011 WebTrust for Certification Authorities (CAs) Overview October 2011 Presentation based.
1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation 23-25 May 2012, Kish Island, I.R.IRAN.

1st Expert Group Meeting (EGM) on Electronic Trade-ECO Cooperation on Trade Facilitation May 2012, Kish Island, I.R.IRAN.
Www.DirectTrust.org 1101 Connecticut Ave NW, Washington, DC 20036 Direct Exchange from Provider to Patient/Consumer ….and Back! David C. Kibbe, MD MBA.

Connecticut Ave NW, Washington, DC Direct Exchange from Provider to Patient/Consumer ….and Back! David C. Kibbe, MD MBA.
Direct Implementation Perspective 0 Mark Bamberg, Vice President Research & Development MEDfx.

Direct Implementation Perspective 0 Mark Bamberg, Vice President Research & Development MEDfx.
Discussion on the Western States Consortium and Inter-State Exchange Robert Cothren, California Health eQuality Institute for Population Health Improvement.

Discussion on the Western States Consortium and Inter-State Exchange Robert Cothren, California Health eQuality Institute for Population Health Improvement.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Centers for Disease Control and Prevention Office of the Associate Director for Communication Electronic Health Records/Meaningful Use and Public Health.

Centers for Disease Control and Prevention Office of the Associate Director for Communication Electronic Health Records/Meaningful Use and Public Health.
Privacy and Security in the Direct Context Session 6 April 12, 2010.

Privacy and Security in the Direct Context Session 6 April 12, 2010.
E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean

E-Government Security and necessary Infrastructures Dimitrios Lekkas Dept. of Systems and Products Design Engineering University of the Aegean
Connecting Health and Care for the Nation: A Shared Nationwide Interoperability Roadmap – DRAFT Version 1.0 Joint FACA Meeting Chartese February 10, 2015.

Connecting Health and Care for the Nation: A Shared Nationwide Interoperability Roadmap – DRAFT Version 1.0 Joint FACA Meeting Chartese February 10, 2015.
HISP-to-HISP Discussion May 13, 2013. HISP Definition What is a HISP? An organization that provides security and transport services for directed exchange.

HISP-to-HISP Discussion May 13, HISP Definition What is a HISP? An organization that provides security and transport services for directed exchange.

Similar presentations

Ads by Google