close

What Is Truth to Power?

[+] A research and advisory resource...

dedicated to bridging the gaps between governance and practice, technology and business, regulation and control, risk management and real market pressures, and your own knowledge and the knowledge of your peers.

[+] An open forum and community...

built to create a common pool of knowledge—one big brain—that lets you work more efficiently, build technology and business practices more effectively, and endure audits more effortlessly.

[+] A plexus nexus...

a neutral hub through which you can reach many valuable information nodes, resource collections, and organizations that are helping people like you already, but in fractured ways.

[+] A rebellion...

against the idea that auditors, analysts, and consultancies can control information simply through their ability to collect and distill it. T2P's goal is to unlock the vast body of knowledge, insight, and conventional wisdom that we all have, make it freely available to you, and help you digest and interpret it—without undue cost, bias, or hype.

Top Panel
WHAT IS T2P?
Top Panel

OASIS Cross-Enterprise Security and Privacy Authorization (XSPA)

Issuer Full Name
Organization for the Advancement of Structured Information Standards (OASIS)
Issued
19 December 2009
Country:
US
More Info URL
www.oasis-open.org/committees/tc_home.php?wg_abbrev=xspa
Download URL
www.oasis-open.org/committees/documents.php?wg_abbrev=xspa
Type
  • Free/open
Keywords
OASISSAMLXSPAHITSPHIPAAHi-Techhealthinformationsecurityprivacy
Meta Description
The XSPA profile of XACML describes mechanisms for authenticating, administering, and enforcing authorization policies that control access to protected information residing within or across enterprise boundaries.
Tags
securityprivacyHIPAAHi-Techhealth informationmarkupschemaXML
The Cross-Enterprise Security and Privacy Authorization (XSPA) Profile of the Security Assertion Markup Language (SAML) for Healthcare and the XSPA Profile of the eXtensible Access Control Markup Language (XACML) enable hospitals and other service providers to validate requests for information access.

These XSPA profiles align SAML and XACML use with the US Healthcare Information Technology Standards Panel's (HITSP) Access Control Transaction Package (TP 20). he XSPA profile of SAML enables hospitals and other service providers to validate requests for information access. The XSPA profile of XACML describes mechanisms for authenticating, administering, and enforcing authorization policies that control access to protected information residing within or across enterprise boundaries.

This standard was developed by a technical committee including representatives from the US Healthcare Information Technology Standards Panel (HITSP), Oracle, Sun Microsystems, and the US Department of Veterans Affairs (VA).
ReviewRecommendPrintVisitReportClaim
Rate this rule
0 vote
Favored:
0
Reviews (0)

Be the first to review this rule!

T2P RECOMMENDS:

AuditNet logo
AuditNet is an online portal for auditors. Created and run by the venerable Jim Kaplan, the organization's mission is to develop a complete "utility" for audit-related information, products, and services.

T2P RECOMMENDS:

The BeyeNETWORK provides resources and professional community support for business intelligence, performance management, data warehousing, data integration and data quality.

T2P RECOMMENDS:

IIA Logo

The Institute of Internal Auditors (IIA) is a powerful research and guidance organization focusing on audit principles and processes for business and IT functions. IIA guidance related to information control includes the Global Technology Audit Guide (GTAG) series and the Guide to the Assessment of IT Risk (GAIT) series.