<html><head><meta http-equiv="Content-Type" content="text/html charset=utf-8"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">I absolutely agree that we need to interact with other groups, even participate in their discussions and events. The connectathons are interesting opportunities and I think that HEART could have a good fit there.<div class=""><br class=""></div><div class="">But that doesn’t mean that our documents won’t stand on their own in OIDF. I think it’s not a logical conclusion to say that interacting with other groups leads to publishing elsewhere, and that’s the point I was trying to make.<div class=""><br class=""></div><div class=""> — Justin</div><div class=""><br class=""><div><blockquote type="cite" class=""><div class="">On Oct 14, 2015, at 10:01 AM, Glen Marshall [SRS] <<a href="mailto:gfm@securityrs.com" class="">gfm@securityrs.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class="">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" class="">
<div bgcolor="#FFFFFF" text="#000000" class="">
Justin,<br class="">
<br class="">
One of the reasons I mentioned IHE yesterday is that there are
annual events, called the Connectathons, in which people who have
implemented IHE profiles test for interoperability. The North
American Connectathon happens in January. Afterwards, Connectathon
participants exhibit their working solutions in the HIMSS
Interoperability Showcase. There is a similar Connectathon in
Europe. The number of vendors in the Connectathons is impressive,
and security is an essential infrastructure element for them. This
would help satisfy the pilot implementation need for HEART. <br class="">
<br class="">
The provenance and IP stewardship of the underlying standards for
IHE is very flexible. IHE adds healthcare use case profiling and
testing. There is also a lot of cross-membership between IHE, HL7,
DICOM, and other healthcare SDOs and consortia. It is a good portal
for introducing and coordinating health IT standardization.<br class="">
<br class="">
There is some early discussion among some IHE participants regarding
an update to the <a href="http://wiki.ihe.net/index.php?title=Internet_User_Authorization" class="">Internet
User Authorization (IUA) profile.</a> The current profile uses
RFC 6749 and 6750 as the underlying standards. This is all related
to HL7 FHIR and SMART on FHIR. Argonaut is working on security in
parallel, as is the HL7 Security Workgroup. This is all quite
relevant to HEART.<br class="">
<br class="">
Your thoughts? <br class="">
<br class="">
Disclosure: I am one of the security test monitors at the annual
North American Connectathon and, in the past, was very active in IHE
and HL7 as well as other standardization work.<br class="">
<br class="">
Best,<br class="">
Glen<br class="">
<br class="">
<div class="moz-signature"><p class=""><b class="">Glen F. Marshall</b><br class="">
Consultant<br class="">
Security Risk Solutions, Inc.<br class="">
698 Fishermans Bend<br class="">
Mount Pleasant, SC 29464<br class="">
Tel: (610) 644-2452<br class="">
Mobile: (610) 613-3084<br class="">
<a class="moz-txt-link-abbreviated" href="mailto:gfm@securityrs.com">gfm@securityrs.com</a><br class="">
<a class="moz-txt-link-abbreviated" href="http://www.securityrisksolutions.com/">www.SecurityRiskSolutions.com</a></p>
</div>
<br class="">
</div>
</div></blockquote></div><br class=""></div></div></body></html>