Consumer ID & Authentication

Focus: Develop a set of best practices and a framework for implementing the NIST Identity Assurance Level 2 (IAL2) and Authenticator Assurance Level 2 (AAL2) guidelines in health care

Work in Development: The workgroup is collaborating on several workflows that could serve as the foundation of an article or whitepaper that will be drafted to offer solutions for how the industry could use open standards and these workflows as an approach to federating IDs.

CARIN Health Care Digital ID Summit – a cross-section of industry leaders from both inside and outside health care met to discuss how to digitally identify individuals across systems without the need for portals in Washington, D.C. as part of a digital identity summit on June 4th. Participants discussed how to improve the exchange of data across systems leveraging a person’s individual consent preferences and the use of Fast Healthcare Interoperability Resources (FHIR) application programming interfaces (APIs). The group highlighted best practices and open standards for securely identifying, authenticating, and matching individuals to their health information across multiple health plans, providers, and health information exchanges (HIEs) in a trusted way with consumer consent.

CARIN ID Proofing whitepaper – Introduces Health Care organizations to the importance of identity assurance through ID proofing individuals using the NIST guidelines

National Association of Healthcare Access Management (NAHAM) – Best Practices for collecting key patient data attributes – Provides a set of best practices developed by the professional association of patient registrars for better collecting patient data attributes.

NIST Identity GuidelinesDigital Identity and Authentication guidelines from NIST that includes approaches to federation, remote ID proofing, and authentication

Enhanced Patient Matching is Critical to Achieving Full Promise of Digital Health RecordsA person-centric, mobile-first approach to patient matching using biometrics from the Pew Charitable Trusts

IN DEVELOPMENT – An open source framework for federating trusted Identity Assurance Level 2 (IAL2) certified credentials across health care organizations using a person-centric approach that leverages biometrics and mobile technologies

User Authentication – How the FIDO Alliance uses an open, universal two-factor authentication standard (combination of your finger’s biometric and a cryptographic key built into the hardware in your phone) to eliminate the need for user names and passwords on the internet.

Trust and Federation – How third-party certifies independently verify identity providers

ONC FAST Solutions

FAST Technical Learning Community Proposed Solutions: Identity