Download pdf - UAF Case Study by MedImpact

Transcript
Page 1: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

ThecontentsofthispresentationareconfidentialandproprietarytoMedImpactHealthcareSystems,Inc.andmaycontainmaterialMedImpactconsidersTradeSecrets.Thispresentationmaynotbereproduced,transmitted,published,ordisclosedtootherswithoutMedImpact’spriorwrittenauthorization.

MedImpactandFIDOACaseStudyofaUAFDeploymentFIDO Alliance SeminarWashington DCOct 6th 2015

Presented by Steven Secker

MedImpactHealthcareSystems,Inc.

Page 2: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

TopicsforthisCaseStudy

•WhyFIDOforMedImpact?•OurUseCases•DeploymentStrategy:WheretoStart&Why•WhyFIDOUAFratherthanFIDOU2F?• FuturePlans•Discussion/Q&A

Page 3: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

WhatMedImpactDoes:PBMMedImpactmanagespharmacybenefitsformorethan50millionlivesaroundtheglobe

PharmacyBenefitManager

Claim

ApprovalCopayAmount

Drug-to-DrugWarnings

Invoice

Health InsuranceCompany

PayPharmacyforApprovedClaims

Page 4: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

SoWhyFIDO?

PharmacyBenefitManager

Claim

ApprovalCopayAmount

Drug-to-DrugWarnings

Invoice

Health InsuranceCompany

PayPharmacyforApprovedClaims

Allofthisstuffisbehindthescenesasfarastheaverageconsumeris

concerned.

SowheredoesFIDOfit?

Page 5: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

OurBusinessRequiresDataAccess

Page 6: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

ITSecurityinHealthcare:HIGHPRIORITY!

Page 7: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

HealthcareDataTargetedSpecifically

“Yourmedicalinformationisworth10timesmorethanyourcreditcardnumberontheblackmarket.”

Page 8: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

LikeEveryoneElse,We’veReliedonPasswords

Foryearswe’veknowthisisbroken,buttherewasn’taclearlybetterwayuntilFIDO!

Page 9: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UseCasesforMedImpact

MembersofHealthInsurancePlans:

• Whatdrugsarecovered?• What’smycopayforthisdrug?• DoIneedaPriorAuthorization?• HaveImetmydeductible?• Whatpharmaciesareinmynetwork?• HowmuchdidIspendonprescriptionsfortaxesor

FlexSpendingAccount(FSA)reimbursement?• HowgoodhaveIbeenabouttakingmymaintenance

meds(gettingthemrefilledontime)?

Page 10: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UseCasesforMedImpact

HealthcareProviders:

• Whatotherdrugsismypatienttakingthatotherdoctorsprescribed?

• Hasmypatientbeentakinghisorhermaintenancemeds(gettingthemrefilledontime)?

Page 11: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UseCasesforMedImpact

Pharmacists:

• HaveIbeenaccuratelyreimbursedforalltheclaimsI’vesubmitted?

Page 12: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UseCasesforMedImpact

HealthInsuranceCompanies,MCOs,HMOs,Self-InsuredPlans:

• ManageMemberEligibility• BenefitDesign• FormularyManagement• PriorAuthorizationManagement• ManageDeniedClaimsAppeals• Allmanorofreporting

Page 13: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UseCasesforMedImpact

MedImpactEmployeesauthorizedtoaccessproductiondata

Page 14: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UserCommunityProfiles– WheretoStart?#ofUsers FrequencyofUse OS/Browser Mobile

BrowerApp

PotentiallyMillions

+90daysbetweenvisits

AllUncontrolled Yes Future

PotentiallyThousands

VariesGreatly

WindowsIE11/Firefox

No NoPlans

TensofThousands

WeeklytoMonthly WindowsIE11/Firefox No

NoPlans

Thousands Daily WindowsIE11/Firefox

No Future

Thousands Daily WindowsIE11/Firefox

NoPlans

NoPlans

Page 15: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

SecurityandUsability– ROIforUserCommunities

Page 16: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

UAFvs.U2F• Followtheleadofearly

deployments (Google,Dropbox)

• Userexperience buildsontopofongoodold,familiarusernamepassword

• Lesspotential forconfusionaboutusingmultiple computers

U2F

UAF

• Getsridofthepasswordcompletely

• Usersalwayshavetheirphones,andmillions ofthosephoneshavefingerprintreaders

Arguably,U2Fwouldhavebeenaneasierpathgivenourtargetusercommunityandtheirusecasesforthe initialdeployment. Butyoustill forceuserstochoseandrememberapassword

“Getsridofthepasswordcompletely”wonthedayforus

Page 17: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

DeviceKnowsYou,WebsiteKnowsYourDevice

AccessWebsite1

SwipesFingerprint3

FIDOAuthenticationRequest Sentto

Laptop

2

Page 18: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

DeviceKnowsYou,WebsiteKnowsYourDevice

AccessGranted

5

Cryptographicallysignedmessage

confirmsuserbacktowebsite

4

Page 19: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

LongTermVision:WorkswithPhoneToo

AccessWebsite1

SwipesFingerprint3

FIDOAuthenticationRequest Sentto

Phone

2

Page 20: UAF Case Study by MedImpact

©2015MedImpact,Inc.Allrightsreserved.

Challenges/DiscussionPoints

• Prioritization:gettingthebusinesstoagreetoallocatedevelopmentcyclestoaddingFIDOsupportrequireseducation,internalandexternalmarketing,evangelismandhigh-levelexecutivesponsorship

• FallbackSolution:whatdousersdoiftheyneedtologinanddon’thavetheirlaptop(orinthefuture,phone)withthefingerprintreader?

• Messaging:howdoyouexplainthistouserswhoarenotlikelytogoreadwww.fidoalliance.organdrealizewhatagreatsolutionthisis?DoyoucallattentiontotheFIDObrand?Howdoyouovercomefearslike“Icanresetapasswordifit’sstolenfromyourserver,butIcan’tresetmyfingerprint!”

• Client-SideObstacles:Lackofbuilt-insupportforFIDOclientatOSlevelmeansusersneedinstall/configureaFIDOclientfortheirbrowser(FIDO2.0IbelieveaimstosolvethisandalreadyWin10hasbuilt-insupport)

• Support:RollingoutFIDOsuccessfullyrequireseducatingtheentireITsupportteam,fromfront-linecallcenterstafftoLevel2and3engineers.

Page 21: UAF Case Study by MedImpact

©2014MedImpact,Inc.Allrightsreserved.

Questions


Recommended

UAF CAMPUS COMMUNITY GARDEN
UAF CAMPUS COMMUNITY GARDEN Documents
UAF Accounting Structure
UAF Accounting Structure Documents
ANÁLISIS FINANCIERO - UAF
ANÁLISIS FINANCIERO - UAF Documents
Dan Gavora - UAF
Dan Gavora - UAF Documents
UAF Viewbook 2014
UAF Viewbook 2014 Documents
CEDARS-SINAI MEDIMPACT PRESCRIPTION DRUG BENEFIT
CEDARS-SINAI MEDIMPACT PRESCRIPTION DRUG BENEFIT Documents
GRUPO UAF, S.A
GRUPO UAF, S.A Documents
CURRICULUM VITAE - UAF
CURRICULUM VITAE - UAF Documents
Uaf Imaging Photo Lab
Uaf Imaging Photo Lab Documents
Uaf I Design
Uaf I Design Business
2008-2009 - UAF
2008-2009 - UAF Documents
Key Points in Linking Dynamic Ecosystem Models with Permafrost and Hydrology Models A. David McGuire (UAF), Eugenie Euskirchen (UAF), and Shuhua Yi (UAF)
Key Points in Linking Dynamic Ecosystem Models with Permafrost and Hydrology Models A. David McGuire (UAF), Eugenie Euskirchen (UAF), and Shuhua Yi (UAF) Documents
UAF Jaarrekening 2014
UAF Jaarrekening 2014 Documents
UAF Convocation 2014
UAF Convocation 2014 Education
Week 03 Affordance & UAF
Week 03 Affordance & UAF Education
UAF Case Study by NTT Docomo
UAF Case Study by NTT Docomo Technology
VPAT Version 2.1 March 2018 - MedImpact Direct
VPAT Version 2.1 March 2018 - MedImpact Direct Documents
UAF Administration, Faculty and Emeriti · UAF . Administration, Faculty and Emeriti. ... UAF ADMINISTRATION. ... 2000—Professor of Marine Science
UAF Administration, Faculty and Emeriti · UAF . Administration, Faculty and Emeriti. ... UAF ADMINISTRATION. ... 2000—Professor of Marine Science Documents