Minutes of regular weekly meeting of the FIRE WG

• Date 2019-10-29
• Attendees
  • Jim Kragh - Chari
  • Sal D'A
  • Mary Hodder
  • Jeff Brennen
  • Tom Jones - recorded these mins
• Agenda - discuss doc Patient Choice

notes

• Discussion of where to take the doc when approved - Jim's proposal was to vet the doc with Dr. Tom Sullivan and the present to Debbie Buchie at ONC. From there it can be presented to the various groups, like the CARIN Alliance.
• Main point of doc was to ensure the following direction of the Trustworthy Healthcare Ecosystem and the Health Care Profile

1. There will be a trust registry of web sites that have been confirmed as entities that are covered by the HIPAA regulations with free access at patients.
2. There will be a way to evaluate healthcare apps that protect patient healthcare Information (PHI) that the patient or guardian accesses.
3. There will be a way to authenticate users to NIST SP 800-63-3 IAL2 and AAL2 that will inter-operate across the above listed entities.
4. The user will trust the resultant healthcare ecosystem.

• The following is a proposed plan for getting to trustworthy patient apps.

1. Code of Conduct of the app - starting with the proposal from the CARIN Alliance with possible input from ME2B work.
2. Code of Practice - a more technical presentation of how the app achieves the designation of meeting the code of conduct.
3. A set of question for the developers and auditors to assure compliance.
4. A regulatory support system from appropriate legal and audit agencies (some means for selecting the approved auditors, etc.)

• Mary and Jeff listed the processes that allowed the IDEF to become opeational