The HITrust Alliance
announced a common security framework
for moving Electronic Medical Records (EMRs), which seems to be based on a Verisign certificate authority
The Common Security Framework was announced in San Francisco, with the tools available through HITrust at prices starting at $1,875.
The group's executive council consists of incumbent providers of IT services, health insurers and hospitals, which will lead some to question whether this standard will indeed be open, or closed.
The group has a full community center, albeit much of it behind a registration firewall. You know you're in the public section because the https appears as https.
The group's blog features a complaint about new regulations on reporting identity theft, increased penalties for HIPAA violations under the Stimulus Act (which it supported), and fears about peer-to-peer programs.
The good news is the group's offering is based on existing standards like COBIT, NIST and ISO 270001.
What do you think about it?