Difference between revisions of "Direct Messaging"
From Updox API
(→Description) |
(→DirectTrust Activation Purpose) |
||
(2 intermediate revisions by one user not shown) | |||
Line 1: | Line 1: | ||
+ | |||
+ | |||
+ | |||
== Description == | == Description == | ||
A simple, secure, scalable, standards-based way for participants to send authenticated, encrypted health information directly to known, trusted recipients over the Internet. | A simple, secure, scalable, standards-based way for participants to send authenticated, encrypted health information directly to known, trusted recipients over the Internet. | ||
* Similar to email but more secure | * Similar to email but more secure | ||
− | * Sender and Receiver need to have a special type of email address called a | + | * Sender and Receiver need to have a special type of email address called a Direct address |
* Sender and Receiver need to have a [[Direct_Messaging#Trust_Relationship|Trust Relationship]] | * Sender and Receiver need to have a [[Direct_Messaging#Trust_Relationship|Trust Relationship]] | ||
* Message is encrypted and hashed to prevent unauthorized access | * Message is encrypted and hashed to prevent unauthorized access | ||
Line 18: | Line 21: | ||
== DirectTrust Activation Purpose == | == DirectTrust Activation Purpose == | ||
− | The purpose of going through the activation process is so that all participants have had their identity validated | + | The purpose of going through the activation process is so that all participants have had their identity validated. |
* A representative from each practice needs to complete the [[DirectTrust_Activation|activation]] process to validate their identify and relationship to the practice | * A representative from each practice needs to complete the [[DirectTrust_Activation|activation]] process to validate their identify and relationship to the practice | ||
* The representative needs to be someone with a National Provider ID (e.g. doctor or nurse) | * The representative needs to be someone with a National Provider ID (e.g. doctor or nurse) |
Latest revision as of 09:44, 20 December 2013
Contents |
Description
A simple, secure, scalable, standards-based way for participants to send authenticated, encrypted health information directly to known, trusted recipients over the Internet.
- Similar to email but more secure
- Sender and Receiver need to have a special type of email address called a Direct address
- Sender and Receiver need to have a Trust Relationship
- Message is encrypted and hashed to prevent unauthorized access
Trust Relationship
A trusted relationship means that either:
- Sender and Receiver have directly exchanged security certificates with each other OR
- Sender and Receiver are both members of the same Trust Bundle
Trust Bundle
Trust bundles have emerged to eliminate the need to set up a one-to-one trust relationship.
- Participation in a Trust Bundle means that every participant has a Trust Relationship with every other participant, without the need to directly exchange security certificates
- DirectTrust is by far the most widely used trust bundle
- Membership in the DirectTrust Trust Bundle requires that at least one user per site go through the DirectTrust Activation process.
DirectTrust Activation Purpose
The purpose of going through the activation process is so that all participants have had their identity validated.
- A representative from each practice needs to complete the activation process to validate their identify and relationship to the practice
- The representative needs to be someone with a National Provider ID (e.g. doctor or nurse)