Reminder: Do not include any PHI or PII in Confluence. If you require 508 accessibility assistance or any other support for this system, then please send an email to onc-jira-questions@healthit.gov
For technical difficulties email cryan@irishealthsolutions.com
#HcDIR2019
Exercise 2
Disclaimer: The content in this space is DRAFT and will change in the next coming weeks once recordings have been listened to.
As a group we will discuss the governance, verification, and operations impacts of:
Data attestation
vs.
Data verification by a third party
Trusted 3rd party certification process? Is this mechanism required?
Do you have control of the process of which you attest to being a primary source?
What is a trusted 3rd party? What is attestation?
What is the criteria for accepting something as authoritative?
Look at Registration authorities/ certificate bridges.
Attestation tied to credentialing UC with specific governing rules, prescriptive on steps to go through and what is an appropriate attestation and what is deemed primary sources. Rule setting bodies at least in payors.
Directory data is a lot looser, there is no explicit attestation requirements. Concerned their are very different use cases.