Federal Government Issues Direct Implementation Guidelines | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Federal Government Issues Direct Implementation Guidelines

May 28, 2013
by Gabriel Perna
| Reprints

The Office for the National Coordinator for Health IT (ONC) has issued an implementation guideline in an attempt to help providers and stakeholders properly and effectively implement Direct. Direct is a federally-developed program that has aimed to create a platform that faciliates the secure exchange of authenticated, encrypted health information directly to known, trusted recipients over the internet.

The guidelines, the ONC’s Kory Mertz said in a blog post, will help ensure Direct is “being executed in a way that will support vendor-to-vendor exchange and interoperability.” They are recommended policies for health information service providers (HISPs), trust communities and accrediting bodies. Within the guidelines, ONC recognizes that there are two distinct roles in Direct exchange organizations: Security and Trust Agents (STAs) and Regulation Authorities (RAs) to establish the identity of certificate subjects and Certificate Authorities (CA) issue certificates.

In addition, Mertz announced ONC is awarding an Exemplar Governance cooperative agreement to DirectTrust, a non-profit organization that creates policy and business processes/practices for Direct exchange. DirectTrust, he says, gives implementers of Direct “a simple way of establishing scalable technical trust via electronic trust bundle exchange,” which is a collection of anchor certificates from HISPs that “comply with a baseline set of common policies and practices.”

Through the agreement, which comes in the form of a $280,205 award, DirectTrust will promote and expand its work to establish and promote the adoption of security and trust “rules of the road.” This includes the aforementioned guidelines issued by ONC for Direct exchange, operationalized via accreditation.



Community Data Sharing: Eight Recommendations From San Diego

A learning guide focuses on San Diego’s experience in building a community health information exchange and the realities of embarking on a broad community collaboration to achieve better data sharing.

HealthlinkNY’s Galanis to Step Down as CEO

Christina Galanis, who has served as president and CEO of HealthlinkNY for the past 13 years, will leave her position at the end of the year.

Email-Related Cyber Attacks a Top Concern for Providers

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

Former Health IT Head in San Diego County Charged with Defrauding Provider out of $800K

The ex-health IT director at North County Health Services, a San Diego County-based healthcare service provider, has been charged with spearheading fraudulent operations that cost the organization $800,000.

Allscripts Touts 1 Billion API Shares in 2017

Officials from Chicago-based health IT vendor Allscripts have attested that the company has reached a new milestone— one billion application programming interface (API) data exchange transactions in 2017.

Dignity Health, CHI Merging to Form New Catholic Health System

Catholic Health Initiatives (CHI), based in Englewood, Colorado, and San Francisco-based Dignity Health officially announced they are merging and have signed a definitive agreement to combine ministries and create a new, nonprofit Catholic health system.