Difference between revisions of "Accreditation Service"

From MgmtWiki
Jump to: navigation, search
(Providers)
(Providers)
 
(18 intermediate revisions by the same user not shown)
Line 9: Line 9:
 
*Category is --tbd--. The rest are closed in the sense that users have limited control over the release of their information. Some provide OpenID as an option when an alternate is shown.
 
*Category is --tbd--. The rest are closed in the sense that users have limited control over the release of their information. Some provide OpenID as an option when an alternate is shown.
 
*Some sites are not [[Accreditation|Accreditors]], but try to create trust by other means.
 
*Some sites are not [[Accreditation|Accreditors]], but try to create trust by other means.
 
  
 
{|border="1" padding="2" width="799px"
 
{|border="1" padding="2" width="799px"
 
| Company || Location || Cat||  Recent News  
 
| Company || Location || Cat||  Recent News  
 +
|-
 +
|Direct Trust||US||Health|| association of 121 health IT orgs to support secure, inter-operable Health info exchange.
 +
|-
 +
| [https://www.hon.ch/en/ Health Online]||WHO||Health|| seems to be focused on the quality of the information rather than privacy and security
 +
|-
 +
|IDEF || US|| Commerce||Founded by NIST now part of Kantara
 +
|-
 +
|EPCS for Prescribers||US||Health|| terms for creating an X.509 cert for prescribers
 
|-
 
|-
 
|NVLAP||US ||Crypto Devices|| [https://www.nist.gov/nvlap National Voluntary Laboratory Accreditation Program] NIST - originally just crypto devices from FIPS 140 and now common criteria
 
|NVLAP||US ||Crypto Devices|| [https://www.nist.gov/nvlap National Voluntary Laboratory Accreditation Program] NIST - originally just crypto devices from FIPS 140 and now common criteria
 
|-
 
|-
|Privo|| US|| U13 ||Child safe - Mark Anthony
+
|Privo|| US|| U13 ||Child safe - Mark Anthony - Denise Tayloe
 
|-
 
|-
 
|TRUSTED NETWORK || US ||Health|| [https://www.ep3foundation.org/trustednetworkaccreditation EP3 Foundation]
 
|TRUSTED NETWORK || US ||Health|| [https://www.ep3foundation.org/trustednetworkaccreditation EP3 Foundation]
Line 31: Line 38:
 
| [https://www.betteridentity.org/ Better ID Coalition] || || || Large US financial companies issued a [https://static1.squarespace.com/static/5a7b7a8490bade8a77c07789/t/5b4fe83b1ae6cfa99e58a05d/1531963453495/Better_Identity_Coalition+Blueprint+-+July+2018.pdf Report]
 
| [https://www.betteridentity.org/ Better ID Coalition] || || || Large US financial companies issued a [https://static1.squarespace.com/static/5a7b7a8490bade8a77c07789/t/5b4fe83b1ae6cfa99e58a05d/1531963453495/Better_Identity_Coalition+Blueprint+-+July+2018.pdf Report]
 
|-
 
|-
|[https://centerforcybersecuritypolicy.org/initiatives/ Center for Cybersecurity Policy] || || ||
+
|CAHIMS CPHIMS|| Health|| IT personnel||HIMMS - CAHIMS directed to IT professionals, CPHIMS management
 +
|-
 +
|CHTS||Health||IT personnel||AHIMA - American Health Information Management Ass.
 +
|-
 +
|[https://medicalinteroperability.org/ Center for Medical Interoperability]||Health|| Information||plug-and-play interoperability in healthcare, meaning the technologies clinicians use to take care of people can seamlessly exchange information
 +
|-
 +
|[https://centerforcybersecuritypolicy.org/initiatives/ Center for Cybersecurity Policy] ||Security ||Infrastructure ||
 +
|-
 +
|Certified EHR Tech||Health||Clerk?||CMS.gov - seems to just be standards
 +
|-
 +
|Certified healthcare constructor||Health||Clerk?|| American Hospital Assoc.
 
|-
 
|-
 
|Distributed ID  || || || One hundred point of identity
 
|Distributed ID  || || || One hundred point of identity
 +
|-
 +
|Electronic Health Record||Health|| Clerk?|| AMCA - may be for profit?
 
|-
 
|-
 
|[https://fidoalliance.org/ FIDO Alliance]|| || [https://fidoalliance.org/download/ UAF U2F]|| Fast ID Online 1.2 specs dtd 2017
 
|[https://fidoalliance.org/ FIDO Alliance]|| || [https://fidoalliance.org/download/ UAF U2F]|| Fast ID Online 1.2 specs dtd 2017
 
|-
 
|-
 
|[https://kantarainitiative.org/ Kantata Initiative] ||Federations || UMA|| also Consent Receipt and IDEF
 
|[https://kantarainitiative.org/ Kantata Initiative] ||Federations || UMA|| also Consent Receipt and IDEF
 +
|-
 +
|HCISPP||Health||IT personnel|| focus on medical records, compliance officer and security or risk management
 +
|-
 +
|HL7||Health||unclear|| knows about FHIR?
 
|-
 
|-
 
|[https://openid.net OpenID Foundation] ||AuthN+AuthZ ||OpenID Connect || OpenID Foundation
 
|[https://openid.net OpenID Foundation] ||AuthN+AuthZ ||OpenID Connect || OpenID Foundation
 
|-
 
|-
|[[SAML 2.0]]||AuthN ||SAML2||OASIS-open.org original single sign on standard
+
|RHIA RHIT||Health||IT personnel|| AHIMA
 +
|-
 +
|[[SAML 2.0]]||AuthN ||SAML2||OASIS-open.org original [[Single Sign-On]] standard
 
|-
 
|-
 
|[http://www.tscp.org/about-tscp/ TSCP]|| || ||Transglobal Secure Collaboration Participation is a collaborative forum of worldwide stakeholders in the defense industry to address security issues
 
|[http://www.tscp.org/about-tscp/ TSCP]|| || ||Transglobal Secure Collaboration Participation is a collaborative forum of worldwide stakeholders in the defense industry to address security issues
Line 49: Line 74:
  
 
==References==
 
==References==
 
+
* See the wiki page [[Federation Trust Registry]] for ideas on how to present the results of an [[Accreditation Service]].
  
 
[[Category:Profile]]
 
[[Category:Profile]]
 
[[Category:Trust]]
 
[[Category:Trust]]

Latest revision as of 14:32, 4 November 2021

Full Title or Meme

A list of the enterprises and standards providers of Accreditation of trusted Enterprises or Web Sites.

Context

On the trust page different roles are defined for Entities.

Providers

The following table is the known trust mark providers and some of their characteristics. Updates and corroboration are encouraged.

  • Category is --tbd--. The rest are closed in the sense that users have limited control over the release of their information. Some provide OpenID as an option when an alternate is shown.
  • Some sites are not Accreditors, but try to create trust by other means.
Company Location Cat Recent News
Direct Trust US Health association of 121 health IT orgs to support secure, inter-operable Health info exchange.
Health Online WHO Health seems to be focused on the quality of the information rather than privacy and security
IDEF US Commerce Founded by NIST now part of Kantara
EPCS for Prescribers US Health terms for creating an X.509 cert for prescribers
NVLAP US Crypto Devices National Voluntary Laboratory Accreditation Program NIST - originally just crypto devices from FIPS 140 and now common criteria
Privo US U13 Child safe - Mark Anthony - Denise Tayloe
TRUSTED NETWORK US Health EP3 Foundation

Non-profits

Note that some of these organizations are just associations of large Enterprises.

Name Type Category Notes
AAMVA Attribute driver's license just verifies information at state Identity providers
Better ID Coalition Large US financial companies issued a Report
CAHIMS CPHIMS Health IT personnel HIMMS - CAHIMS directed to IT professionals, CPHIMS management
CHTS Health IT personnel AHIMA - American Health Information Management Ass.
Center for Medical Interoperability Health Information plug-and-play interoperability in healthcare, meaning the technologies clinicians use to take care of people can seamlessly exchange information
Center for Cybersecurity Policy Security Infrastructure
Certified EHR Tech Health Clerk? CMS.gov - seems to just be standards
Certified healthcare constructor Health Clerk? American Hospital Assoc.
Distributed ID One hundred point of identity
Electronic Health Record Health Clerk? AMCA - may be for profit?
FIDO Alliance UAF U2F Fast ID Online 1.2 specs dtd 2017
Kantata Initiative Federations UMA also Consent Receipt and IDEF
HCISPP Health IT personnel focus on medical records, compliance officer and security or risk management
HL7 Health unclear knows about FHIR?
OpenID Foundation AuthN+AuthZ OpenID Connect OpenID Foundation
RHIA RHIT Health IT personnel AHIMA
SAML 2.0 AuthN SAML2 OASIS-open.org original Single Sign-On standard
TSCP Transglobal Secure Collaboration Participation is a collaborative forum of worldwide stakeholders in the defense industry to address security issues
W3C Credential Community Group Decentralized eg Public Ledger DID, verifiable claims sponsored by blockchain providers

References