The twin forces of privacy law and data breaches have fundamentally challenged how we collect, store, and share sensitive information. Within this landscape, healthcare information is sacrosanct – and intimately tied to identity and data ownership. Building on prior work with UCLA Health, Genentech (a member of the Roche Group), Sanofi, Amgen, Biogen, and others, we offer this opinion piece to promote the development of a standard for decentralized Verifiable Credentials (VCs). This will empower Authorized Trading Partners (ATPs) in the pharmaceutical supply chain to trade and exchange information in compliance with the US federal law. Starting with credentialing and interoperability for the ATP community, our ultimate goal was to chart a path to a global standard for all health care VCs – providing individuals and health-care professionals control over their own data. By sharing our results and releasing essential components of the work to the public domain, we hope to align and connect with other foundational efforts, thus evolving standards within a truly open framework with broad stakeholder involvement.
Heath B. SolarWinds hack was “largest and most sophisticated attack” ever -Microsoft president. 22AD;
2.
22AD;
3.
Bossert T. I was the homeland security adviser to Trump. We’re being hacked [Internet]. The New York Times. 2020;
4.
Krebs B. At least 30,000 U.S. organizations newly hacked via holes in Microsoft’s email software [Internet]. Krebs on Security. 2021;
5.
Newton C. Warning signal: the messaging app’s new features are causing internal turmoil. 22AD;
6.
Tobin A, Reed D. The inevitable rise of self-sovereign identity [Internet]. Sovrin Foundation. 2017;
7.
Mitre E. Broad coalition of health and technology industry leaders announce vaccination credential initiative to accelerate digital access to COVID-19 vaccination records [Internet]. 22AD;
8.
DIF -Decentralized Identity Foundation. 22AD;
9.
Commonpass. 22AD;
10.
identifying trading partners under the drug supply chain security act: guidance for industry -draft guidance. 2017;
11.
HDA saleable returns pilot study identifies two recommendations to meet 2019 DSCSA requirements [Internet]. Healthcare Distribution Alliance (HDA. 2016;
12.
U. Department of Health and Human Services Food and Drug Administration. Drug Supply Chain Security Act (DSCSA).
13.
FDA’s Technology Modernization Action Plan (TMAP). 2019;
14.
GS1 standards resources for DSCSA implementation support. 22AD;
15.
Xatp W, Group. Framework for eXtended ATP authentication, enhanced verification, and saleable returns documentation.
16.
Vegas L. NV: LedgerDomain. 2020;
17.
Ashkar G, Patel K, De J, Vinnakota N, Helms N, Jack W. Evaluation of decentralized verifiable credentials to authenticate authorized trading partners and verify drug provenance. BHTY [Internet] 2021.
18.
Ashkar GL, Patel K s., De Jesus J, Vinnakota N, Helms N, Jack W, et al. Evaluation of Decentralized Verifiable Credentials to Authenticate Authorized Trading Partners and Verify Drug Provenance. Blockchain in Healthcare Today. 2021;
19.
Sporny M, Longley D, Chadwick D. Verifiable credentials data model 1.0 [Internet]. W3C Working Group. 2019;
20.
Reed D, Zundel B. What are Decentralized Identifiers (DIDs)? 22AD;
21.
Object manage ment group issues request for information for disposable self-sovereign identity standard.
22.
Lodder M, Hardman D. Sovrin DID method specification.
23.
Looker T, Steele O. BBS + signatures 2020 draft community group report [Internet]. W3C Community Group; 2021.
24.
Ursa H, Github. 2021;
25.
Usfda. Drug Supply Chain Security Act Public-Private Partnership [Internet]. 15AD;
26.
Housley R, Ashmore S, Wallace C. Trust anchor format.
27.
Internet Engineering Task Force (IETF. 2010;
28.
Thayer W. Why does Mozilla maintain our own root certificate store?
29.
Security M, Mozilla B, ; 2019;
30.
Otto N, Lee S, Sletten B, Burnett D, Sporny M, Ebert K. Verifiable credentials use cases [Internet]. W3C Working Group. W. 2019;
31.
Spherity, Entities. 22AD;
32.
22AD;
33.
Google. Protocol buffers -Google’s data interchange format. 2008;
34.
Young K. Verifiable credentials flavors explained. COVID-19 Credentials Initiative. 2021;
35.
Dodds L, Davis I. Follow your nose [Internet]. Linked Data Patterns. 2012;
36.
Searls D. New hope for digital identity. Linux J. 2017;
37.
Temoshok D, Abruzzi C. Developing trust frameworks to support identity federations. National Institute of Standards and Technology; 2018.
38.
Makaay E, Smedinghoff T, Thibeau D. Trust frameworks for identity systems [Internet]. Open Identity Exchange.
39.
Webassembly.
40.
Network MD, Mdn (, Docs W. 2021;
41.
Rossberg A. WebAssembly core specification.
42.
Kaptijn B, Gort S, Stöcker C. 509 DID method [Internet]. Web of Trust Info. 2019;
43.
Sovrin governance framework V2. 2019;
44.
Callahan J, Vescent H, Young K, Duane D, Appelcline S, Othman A. Six principles for self-sovereign biometrics. Web of Trust Info. 2019;
Citation
Copyright
This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
The statements, opinions and data contained in the journal are solely those of the individual authors and contributors and not of the publisher and the editor(s). We stay neutral with regard to jurisdictional claims in published maps and institutional affiliations.
