This page gathers information about implementation efforts and interest, along with interoperability testing plans. We have a goal to develop a hosted validator that can exercise implementors' AM, Host, Requester, and User Agent endpoints to increase interoperability. To this end, we undertook a bounty program in 2010 that facilitated the creation of test cases.Maciej Maciej Machulak is the UMA group's implementation coordinator. Several efforts are gearing up in earnest now.
Interest and effort mentioned so far (no obligation implied!):
...
Who
...
Protocol: AM
...
Protocol: Host
...
Protocol: Requester
...
UX: "relationship manager"
...
Notes
...
Newcastle University SMART project
...
...
...
...
...
SMART project developed in Java, including UMA/j framework, sample applications, and OAuth implementation. See the SMART blog. The OAuth portion, originally named leeloo, has been contributed to Apache Amber. The rest is anticipated to be open-sourced soon.
...
Fraunhofer AISEC
...
...
...
...
...
Working on a mobile location scenario. Based on Apache Amber. To be demonstrated in fall 2011. See draft V0.6 of implementation doc.
...
MITRE/Project hData
...
...
...
...
...
Considering implementation of a health data-specific profile that matches Project hData needs and an implementation of an UMA-compliant native-app requester.
...
Christian Scholz/COMlounge.net
...
...
...
...
...
Prototype and demo in Python. Now out of date compared to the latest specs.
...
Azigo
...
...
...
...
...
Intends to do an UMA-compliant implementation.
...
Connect.me
...
...
...
...
...
Intends to do an UMA-compliant implementation.
...
Mydex
...
...
...
...
...
Intends to do an UMA-compliant implementation.
...
Neustar
...
...
...
...
...
Interested in doing a mobile-based AM prototype.
...
The Customer's Voice
...
...
...
...
...
. Key existing implementations that we know about are noted below, in alphabetical order of the project or organization.
Date labels indicate when an entry was added or last updated on this page. Implementers are welcome to get in touch with the implementation coordinator or any member of the leadership team to add entries or make corrections.
Table of Contents |
---|
ForgeRock
Status | ||||||
---|---|---|---|---|---|---|
|
Gluu
Status | ||||
---|---|---|---|---|
|
HealthyMePHR
Status | ||||
---|---|---|---|---|
|
HealthyMePHR was selected as a Phase 2 winner of The Department of Health and Human Service’s Move Health Data Forward Challenge. Since the intention was to free the patient from the many roadblocks currently in place, the implementers wanted to implement a wide ecosystem for exchange, adding an external OpenID Connect IdP to support that goal. Since other components were not available at the time of development, the solution was developed to be free standing. It is the intention that any of the components could be substituted. While the initial client is a HEART based viewer, it is actually accessing discrete data. This approach demonstrates an important building block for accessing discrete data via an API, under the control of patient-directed consent. HealthyMePHR has also been connected to EMRs via CDS hooks, providing physician’s with the ability to access the patient’s data which may be external to the EMR. For more information, see the Case Studies page or contact info@lgisoftware.com.
HIE of One - Trustee
Status | ||||
---|---|---|---|---|
|
HIE of One acts as a Health Information Exchange service but under control by the patient themselves. It is coupled in the same root domain URL with a resource server that acts as a patient-centered health record (NOSH ChartingSystem), although they are two separate projects. HIE of One allows the patient to control user-managed access to her resources served by NOSH ChartingSystem using a specific RESTful API (FHIR) for health-related information. This allows other third-party applications to take advantage of the patient's health-related information in a secure and privileged manner, governed by the user and not by another third party.
HIE of One is not in production at this time; fully working code is in GitHub and is used for current demonstration of how HIE of One is coupled with NOSH ChartingSystem for the above functionality.
This implementation leverages third-party OAuth and OpenID Connect implementations Google OAuth2, Twitter OAuth2, and mdNOSH (this is for demo purposes for physician single-sign-on, not federated). HIE of One also implements blockchain-based authentication using the uPort implementation and the project is tracking the Decentralized ID (DID) standards for self-sovereign identity and W3C verifiable claims as these progress.
IDENTOS Federated Privacy Exchange (FPX)
Status | ||||||
---|---|---|---|---|---|---|
|
The Federated Privacy Exchange was created as a response to an innovation challenge released by the Ontario Government’s Ministry of Government and Consumer Services (MGCS) to deliver a privacy-respecting consumer digital identity solution. FPX was built in the image of the Pan-Canadian Trust Framework to bootstrap conformance to many international privacy and security regulations.
PatientShare
Status | ||||
---|---|---|---|---|
|
PatientShare is a product of Patient Centric Solutions, Inc. For more information contact info@patientcentricsolutions.com.
Pauldron
Pauldron is an open-source (MIT license) UMA authorization server, with several extensions catering to use cases that have come out of healthcare-related work in the HL7 environment, available on GitHub.
RedHat KeyCloak
Status | ||||
---|---|---|---|---|
|
WSO2
Status | ||||
---|---|---|---|---|
|
Jericho Systems
In 2016 the company Jericho Systems announced a product, EnterSpace 9, with UMA support as follow-on to its Consentral on FHIR product.
MITREid Connect
The open-source MITREid Connect project has UMA1 support. An experimental branch called MPD (for "multi-party delegation") has been used as a sandbox for UMA2 features, but has not yet been updated to full UMA2 support.
SMART project (non-healthcare-related)
This older Java implementation includes an UMA/j framework and sample applications. See the SMART blog. The OAuth portion, originally named leeloo, was contributed to Apache Amber (now Apache Oltu, which is going to include OpenID Connect and good JWT support too). Part the SMART project involves development of set of open-source Python libraries, called Puma, for UMA-enabling web apps to become UMA resource servers and clients. Note that this SMART project is distinct from the SMART health IT initiative.
Synergetics
The company Cloud Identity Limited (since acquired by Synergetics) developed an UMA Authorization Server - NuveAM (Online Demo). NuveAM implements the UMA protocol and supports other open standards including OAuth 2.0, OpenID Connect, and SAML 2.0. The company also developed Java and Python SDKs. More information is on the company's website and the company's YouTube channel. The company integrated UMA with its NuveLogin service to simplify the flow for Resource Server and Client applications.
Telia
The Telia telecom company has an identity solution that provides UMA support.
Universidad de Alcalá Telematic Services Engineering Group
This Python implementation, part of the European Union-funded project SITAC, focuses on IoT use cases. See a video here.