Section 1c: FHIR®
Section 3: Implementation Guides

HL7 FHIR® Implementation Guide: Security for Registration, Authentication, and Authorization, Release 1- US Realm

DESCRIPTION

This implementation guide describes how to extend OAuth 2.0 to support secure and scalable workflows for business-to-business (B2B) apps that implement the client credentials flow or authorization code flow.

ALTERNATIVE NAMES

HL7 FHIR® Implementation Guide: Security for Registration, Authentication, and Authorization, Release 1- US Realm may also go by the following names or acronyms:

"HL7 FHIR® Implementation Guide: UDAP Security for Registration, Authentication, and Authorization, Release 1", , udap-security

BENEFITS

  •  Facilitates the effective scaling of the FHIR ecosystem while the number of deployed servers and clients multiplies
  • Enables automated approaches for application registration and more robust mechanisms to reliably identify participants and manage credentials to avoid bottlenecks in several aspects of the registration, authentication, and authorization processes that occur before the exchange of FHIR resources can take place

IMPLEMENTATIONS/CASE STUDIES

  • Meditech,
  • EMR Direct,
  • Health Gorilla,
  • Evernorth,
  • Okta

RELATED DOCUMENTS

HL7 FHIR® Implementation Guide: Security for Registration, Authentication, and Authorization, Release 1- US Realm

STU DOCUMENTS

HL7 FHIR® Implementation Guide: Security for Registration, Authentication, and Authorization, Release 1- US Realm See the standard at http://hl7.org/fhir/us/udap-security/STU1. (Submit Feedback on STU)

TOPIC

  • Security and Privacy

BALLOT TYPE

  • STU

STATUS DATE

2022-09-27

RESPONSIBLE WORK GROUP

Security

PRODUCT TYPE

  • Implementation Guide

STAKEHOLDERS

  • Clinical and Public Health Laboratories
  • Clinical Decision Support Systems Vendors
  • EHR, PHR Vendors
  • Emergency Services Providers
  • Equipment Vendors
  • Health Care IT Vendors
  • Healthcare Institutions
  • HIS Vendors
  • Immunization Registries
  • Lab Vendors
  • Local and State Departments of Health
  • Medical Imaging Service Providers
  • Payors
  • Pharmaceutical Vendors
  • Quality Reporting Agencies
  • Regulatory Agency
  • Standards Development Organizations (SDOs)

FAMILY

  • FHIR

CURRENT STATE

  • Active

REALM

  • US Realm