We had a tough discussion with different points of view on fine-grained security policies for healthcare beyond OAuth2.
What are the limitations of OAuth 2.0 in managing fine-grained security policies for FHIR? How can advanced access control mechanisms improve data security and compliance in healthcare systems? What strategies and tools are available to implement these policies effectively?
In this meetup, experts discuss the challenges of fine-grained security in FHIR, exploring solutions beyond OAuth 2.0. Learn how to design and enforce advanced access control policies to meet the complex security needs of modern healthcare applications.
Nikolai is a CTO at Health Samurai and technical leader of the Aidbox FHIR Platform with more than 15 years of experience in healthcare IT. Since 2012, it has been actively contributing to the FHIR standard and popular open-source projects like Fhirbase and FHIR.js. Author of the FHIR-first development approach and regular speaker of FHIR events.
Working on the cutting edge of Health Interoperability with the best team around.
I am a Senior Director of Biomedical Signal Processing at Microsoft Health Futures (Microsoft Research). I work on scalable time domain signal processing. My background is in scientific computing, signal processing and medical imaging. I have 15+ years of experience in developing reliable, high-performance scientific computing software. Cloud Computing has revolutionized how novel applications are developed and deployed. It has changed what we can do, where we can do it, and how fast. I help develop next generation cloud services that help transform the healthcare industry.
Justin is a technologist working on a wide variety of projects and problems throughout the internet. He is the author of OAuth in Action (https://www.manning.com/books/oauth-2-in-action) along with Antonio Sanso. Justin founded Bespoke Engineering, a technical consultancy focusing on internet security. He is the editor of several security standards including http message signatures, GNAP, OAuth dynamic client registration, OAuth token introspection, and vectors of trust, and has contributed to dozens of others. He previously spent 15 years at the MITRE Corporation contributing to a many different efforts, including collaboration, identity, serious gaming, and security research programs.
Aidbox is a developer-friendly FHIR platform where everything remains under your control. Build your enterprise-grade digital healthcare apps and systems using a habitual tech stack and suitable cloud infrastructure: Google, Azure, AWS, or on-premises.
// Read More
