<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:Times;
panose-1:2 2 6 3 5 4 5 2 3 4;}
@font-face
{font-family:Consolas;
panose-1:2 11 6 9 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p
{mso-style-priority:99;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman","serif";
color:black;}
pre
{mso-style-priority:99;
mso-style-link:"HTML Preformatted Char";
margin:0in;
margin-bottom:.0001pt;
font-size:10.0pt;
font-family:"Courier New";
color:black;}
p.MsoAcetate, li.MsoAcetate, div.MsoAcetate
{mso-style-priority:99;
mso-style-link:"Balloon Text Char";
margin:0in;
margin-bottom:.0001pt;
font-size:8.0pt;
font-family:"Tahoma","sans-serif";
color:black;}
span.HTMLPreformattedChar
{mso-style-name:"HTML Preformatted Char";
mso-style-priority:99;
mso-style-link:"HTML Preformatted";
font-family:Consolas;
color:black;}
span.BalloonTextChar
{mso-style-name:"Balloon Text Char";
mso-style-priority:99;
mso-style-link:"Balloon Text";
font-family:"Tahoma","sans-serif";}
span.EmailStyle22
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle23
{mso-style-type:personal;
font-family:"Calibri","sans-serif";
color:#1F497D;}
span.EmailStyle25
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body bgcolor=white lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Thanks. That, as I expected, aligns well with the standards lifecycle that the healthcare communities would recognize. We too don’t use consistent terms (IHE calls this “Trial Implementation”, HL7 calls this “Draft Standard for Trial use”)… <o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>John<o:p></o:p></span></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'><o:p> </o:p></span></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'> Justin Richer [mailto:jricher@mit.edu] <br><b>Sent:</b> Monday, November 23, 2015 5:32 PM<br><b>To:</b> Moehrke, John (GE Healthcare); Eve Maler<br><b>Cc:</b> openid-specs-heart@lists.openid.net<br><b>Subject:</b> Re: [Openid-specs-heart] HEART Agenda 2015-11-23<o:p></o:p></span></p></div></div><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal>Here:<br><br><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.net_wordpress-2Dcontent_uploads_2010_01_OpenID-5FProcess-5FDocument-5FDecember-5F2009-5FFinal-5FApproved.pdf&d=CwMD-g&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=er1vzTZNLHpOghbGjy6mMjKIQLUDmbkWUvqYjLvE-uM&s=ypLCfeYZZ9wW5xl8W_hXljFoPa9r2bNguhKXduw2Iv4&e=">http://openid.net/wordpress-content/uploads/2010/01/OpenID_Process_Document_December_2009_Final_Approved.pdf</a><br><br>Specifically, it states:<o:p></o:p></p><p class=MsoNormal>5.1<br>General.<br> There are three stages of an OpenID Spec<br>ification – draft, Implementers Draft, and <br>Final Specification. An OpenID Specification begins as a “draft” and retains this status until approved as an <br>Implementers Draft. An Implementers Draft may be fu<br>rther revised, and any revised Implementers Draft is <br>deemed a “draft” until it is approved as a new Implem<br>enters Draft. The most recent Implementers Draft <br>may be approved as a Final Specification. There is no specific timeframe under which a draft must become <br>an Implementers Draft or an Implementers Draft must <br>become a Final Specification, although the WG should <br>make reasonable efforts to conform to any posted schedule of deliverables on its Webpage. Only after it is <br>ratified to be a Final Specification, the specification may use the title “OpenID”. <o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'>We will be putting the other spec through this process but not until a later date. Right now we're concentrating on the three generic profiles.<br> -- Justin<o:p></o:p></p><div><p class=MsoNormal>On 11/23/2015 6:28 PM, Moehrke, John (GE Healthcare) wrote:<o:p></o:p></p></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>so, not being an OpenID expert… yet someone that wants to inform the healthcare ‘security interested’ community…</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>What does “implementers draft” and ‘not’ mean? Is there a specification somewhere that speaks to the lifecycle of openID specifications?</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>John</span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><div><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in'><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif";color:windowtext'> Justin Richer [<a href="mailto:jricher@mit.edu">mailto:jricher@mit.edu</a>] <br><b>Sent:</b> Monday, November 23, 2015 5:26 PM<br><b>To:</b> Moehrke, John (GE Healthcare); Eve Maler<br><b>Cc:</b> <a href="mailto:openid-specs-heart@lists.openid.net">openid-specs-heart@lists.openid.net</a><br><b>Subject:</b> Re: [Openid-specs-heart] HEART Agenda 2015-11-23</span><o:p></o:p></p></div></div><p class=MsoNormal> <o:p></o:p></p><p class=MsoNormal style='margin-bottom:12.0pt'>Eve is correct -- we are very specifically *NOT* putting the "OAuth for FHIR" spec up for implementer's draft.<br><br> -- Justin<o:p></o:p></p><div><p class=MsoNormal>On 11/23/2015 6:17 PM, Moehrke, John (GE Healthcare) wrote:<o:p></o:p></p></div><blockquote style='margin-top:5.0pt;margin-bottom:5.0pt'><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>Thanks for the clarification. </span><o:p></o:p></p><p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Eve Maler [<a href="mailto:eve.maler@forgerock.com">mailto:eve.maler@forgerock.com</a>] <br><b>Sent:</b> Monday, November 23, 2015 5:16 PM<br><b>To:</b> Moehrke, John (GE Healthcare)<br><b>Cc:</b> Debbie Bucci; <a href="mailto:openid-specs-heart@lists.openid.net">openid-specs-heart@lists.openid.net</a><br><b>Subject:</b> Re: [Openid-specs-heart] HEART Agenda 2015-11-23</span><o:p></o:p></p><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal>Very close. We are going through a review process of these three:<o:p></o:p></p><div><p class=MsoNormal> <o:p></o:p></p></div><div><div><p class=MsoNormal><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Doauth2.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=ylEoYlfAxzLFYhR-Ye1sBIwd7B4e4TipaFnBZAQ9GDg&e=">HEART profile for OAuth 2.0.</a><o:p></o:p></p></div></div><div><p class=MsoNormal><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Doidc.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=THEUmknDPFvGXSNjIxA2nI1iydGla0tCLBlcsKVQGPM&e=">HEART profile for OpenID Connect.</a><o:p></o:p></p></div><div><p class=MsoNormal><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Duma.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=b8V9qAKvjn1GHivPC65T0SPQjNtnwAc-9CGugLERNy4&e=">HEART profile for User-Managed Access (UMA).</a><o:p></o:p></p></div><div><p class=MsoNormal> <o:p></o:p></p></div><div><p class=MsoNormal>Each succeeding one builds on the last, and none is particularly healthcare-specific. The approval process will be for Implementer's Draft status, which is still an interim status that has IPR review implications for those on the WG.<o:p></o:p></p></div><div><p class=MsoNormal> <o:p></o:p></p></div></div><div><p class=MsoNormal><br clear=all><o:p></o:p></p><div><div><div><div><div><p><b>Eve Maler<br></b>ForgeRock Office of the CTO | VP Innovation & Emerging Technology<br>Cell +1 425.345.6756 | Skype: xmlgrrl | Twitter: @xmlgrrl<br>Join our <a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__forgerock.org_openuma_&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=Sws29jXfadLec1pfIhWr4C7UxkYqzY0rUZ_C5U3oxhg&e=" target="_blank">ForgeRock.org OpenUMA</a> community!<o:p></o:p></p></div></div></div></div></div><p class=MsoNormal> <o:p></o:p></p><div><p class=MsoNormal>On Mon, Nov 23, 2015 at 2:26 PM, Moehrke, John (GE Healthcare) <<a href="mailto:John.Moehrke@med.ge.com">John.Moehrke@med.ge.com</a>> wrote:<o:p></o:p></p><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'>so If I understood the discussion today, we want to ask for review, comment, and eventual approval of the existing three profiles. Specifically</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:Symbol'>·</span> HEART profile for <a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Doauth2.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=ylEoYlfAxzLFYhR-Ye1sBIwd7B4e4TipaFnBZAQ9GDg&e=" target="_blank">OAuth 2.0. </a><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:Symbol'>·</span> HEART profile for <a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Doidc.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=THEUmknDPFvGXSNjIxA2nI1iydGla0tCLBlcsKVQGPM&e=" target="_blank">OpenID Connect.</a> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-family:Symbol'>·</span> HEART profile for Fast Healthcare Interoperability Resources <a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__openid.bitbucket.org_HEART_openid-2Dheart-2Dfhir-2Doauth2.html&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=rS3pe-l_SlZIPbiM9CyqyoxDO6rBXbNpd9ONniqk700&e=" target="_blank">(FHIR) OAuth 2.0 scopes</a>.<o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>Where, as we reviewed today, the first two are really not specialized for healthcare, as they are foundational. The third one is a set of scopes that are proposed for use with FHIR DSTU2. All three are important building blocks for the work we are currently developing.<o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'>John<o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1F497D'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma","sans-serif"'> Openid-specs-heart [mailto:<a href="mailto:openid-specs-heart-bounces@lists.openid.net">openid-specs-heart-bounces@lists.openid.net</a>] <b>On Behalf Of </b>Debbie Bucci<br><b>Sent:</b> Sunday, November 22, 2015 7:13 PM<br><b>To:</b> <a href="mailto:openid-specs-heart@lists.openid.net" target="_blank">openid-specs-heart@lists.openid.net</a><br><b>Subject:</b> [Openid-specs-heart] HEART Agenda 2015-11-23</span><o:p></o:p></p><div><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'> <o:p></o:p></p><div><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><strong><span style='font-family:"Times","serif"'>When: 1 PM PST/4 PM EST</span></strong><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:10.0pt;font-family:"Times","serif"'>Where: Gotomeeting – </span></b><span style='font-size:10.0pt;font-family:"Times","serif"'><a href="https://global.gotomeeting.com/join/785234357">https://global.gotomeeting.com/join/785234357</a></span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:10.0pt;font-family:"Times","serif"'>US phone number</span></b><span style='font-size:10.0pt;font-family:"Times","serif"'>: <a href="tel:%2B1%20%28619%29%20550-0003" target="_blank"><span style='color:#0066CC'>+1 (619) 550-0003</span></a>. Access Code 785-234-357</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:10.0pt'> </span></b><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><span style='font-size:10.0pt'> </span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto'><b><span style='font-size:10.0pt'>Agenda :</span></b><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:47.25pt'><span style='font-size:10.0pt;font-family:Symbol'>·</span><span style='font-size:7.0pt'> </span><span style='font-size:10.0pt'>Implementer's Draft - Justin Richer</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:47.25pt'><span style='font-size:10.0pt;font-family:Symbol'>·</span><span style='font-size:7.0pt'> </span><span style='font-size:10.0pt'>Update from MITFuture Commerce <br>Hackathon & Symposium - Adrian Gropper</span><o:p></o:p></p><p class=MsoNormal style='mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:47.25pt'><span style='font-size:10.0pt;font-family:Symbol'>·</span><span style='font-size:7.0pt'> </span><span style='font-size:10.0pt'>AOB</span><o:p></o:p></p></div></div></div></div></div><p class=MsoNormal style='margin-bottom:12.0pt'><br>_______________________________________________<br>Openid-specs-heart mailing list<br><a href="mailto:Openid-specs-heart@lists.openid.net">Openid-specs-heart@lists.openid.net</a><br><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__lists.openid.net_mailman_listinfo_openid-2Dspecs-2Dheart&d=CwMFaQ&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=WszmQrRkhRd7JPxJrFwDlwE2aZySbtQv0mbSuqgkbsk&s=xVY6SFS5-GPcB9vzAnUQJKs8LpWsY-9l4Uk10egzcN4&e=" target="_blank">http://lists.openid.net/mailman/listinfo/openid-specs-heart</a><o:p></o:p></p></div><p class=MsoNormal> <o:p></o:p></p></div><p class=MsoNormal><br><br><br><br><o:p></o:p></p><pre>_______________________________________________<o:p></o:p></pre><pre>Openid-specs-heart mailing list<o:p></o:p></pre><pre><a href="mailto:Openid-specs-heart@lists.openid.net">Openid-specs-heart@lists.openid.net</a><o:p></o:p></pre><pre><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__lists.openid.net_mailman_listinfo_openid-2Dspecs-2Dheart&d=CwMD-g&c=IV_clAzoPDE253xZdHuilRgztyh_RiV3wUrLrDQYWSI&r=B4hg7NQHul-cxfpT_e9Lh49ujUftqzJ6q17C2t3eI64&m=vk43d5JA9xKnpMqtfkrMZzZ2d_2m1wJiHmJlmiw4cOs&s=t1nOUW91on-hOV93CeIo77vc5hxJadaSkGBhdQtWzLw&e=">http://lists.openid.net/mailman/listinfo/openid-specs-heart</a><o:p></o:p></pre></blockquote><p class=MsoNormal> <o:p></o:p></p></blockquote><p class=MsoNormal><o:p> </o:p></p></div></body></html>