Transcript Slide 1

AGENDA
1.
NIEM Impact on Pharmaceutical Drug Monitoring
How do we enable prescription drug monitors to see across state lines?
2.
The NIEM Framework and Process
What common services, governance models, processes and tools are
provided by NIEM? What is NIEM-UML?
3.
NIEM Governance
How is NIEM governed? How does the federated domain governance
function? What are the different NIEM committees?
4.
NIEM Program Updates
What are next steps for the program; NIEM-UML and NIEM 3.0?
Updates on NIEM international adoption? How can NIEM State & Local
practitioners get involved?
2
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
The Standard Prescription
Monitoring Information Exchange
3
NATIONWIDE DRUG ABUSE
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
Prescription Drugs (15.1 million)
Cocaine (5.9 mil.)
From 1992-2003,
15.1 million Americans
abused prescription drugs.
That’s more than cocaine,
hallucinogens, inhalants,
and heroin COMBINED.
Hallucinogens (4 mil.)
Inhalants (2.1 mil.)
Heroin (.3 mil.)
0
2
4
6
8
10
12
14
During the same period, there was a 150% INCREASE in prescriptions written for controlled substances.
The brand cost of 4 mg of Dilaudid is $88.94 per 100.
The street value for the same amount is $10,000. The demand is REAL.
4
16
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
1 in 5 teens are abusing
prescription drugs to get high.
40% of teens
29% of teens
believe that prescription drugs
are safer than illegal drugs.
believe that prescription pain
relievers are not addictive.
“You have young people getting pills for free from
the homes of family members and friends.”
- John Walters, former White House drug czar
5
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
Pharmaceutical drug
abuse is crossing
state lines as
offenders realize the
gap in interstate
reporting.
Where CA Prescriptions Really Go
As this map shows,
less than 20%
of prescriptions
written in California
were written for
California residents.
There are three facets to the problem—
misuse, abuse, and diversion—and three
players—prescribers, dispensers, and patients.
> 0 – .9%
1 – 2.9%
3 – 3.9%
4 – 7%
> 19%
Prescription drug monitoring is the coming together of
pharmacy boards, health agencies, and law enforcement
to monitor drug diversion.
6
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
As diversion of prescription controlled substances and the
abuse involving these drugs continues to escalate, how can
we improve interstate monitoring of drug use?
How do we enable prescription drug
monitors to see across state lines?
7
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
Before NIEM, there was large gap in interstate reporting.
As abuse and diversion escalate, law
enforcement and health practitioners
need a standardized, scalable solution
to share patient drug history.
The Standard NIEM Prescription
Monitoring Program Information
Exchange assists prescribers,
health agencies, and law
enforcement in identifying
potential abuse and diversion.
8
NIEM IMPACT ON PHARMACEUTICAL
DRUG MONITORING
The Prescription Monitoring Program
uses NIEM to empower connections:
1,600,000
284,000
73,000
54
18,000
11,000
140
This map identifies the status of Prescription Drug
Monitoring Programs (PDMPs)
Prescribers
Pharmacists
Pharmacies
Boards of Pharmacy
Law Enforcement
Agencies
Substance Addiction
Treatment Programs
Consumer Protection
Agencies
This is a solution that the
50 states, Canada, and
Mexico can leverage.
9
THE NIEM
FRAMEWORK AND
PROCESS
What common services, governance models,
processes and tools are provided by NIEM?
10
THE NIEM FRAMEWORK
NIEM connects communities of people who share a common need to exchange information
in order to advance their missions, and provides a foundation for seamless information
exchange between federal, state, local, and tribal agencies. Much more than a data model,
NIEM offers an active user community as well as a technical and support framework.
Community
Technical Framework
Support Framework
Formal Governance
Processes
Data Model
Tools for Development
and Discovery
Online Repositories
XML Design Rules
Established
Training Program
Mission-Oriented Domains
Development Methodology
Implementation Support
Self-Managing
Domain Stewards
Predefined
Deliverables (IEPD)
Help Desk &
Knowledge Center
11
STANDARDIZING DATA MOVING ACROSS
SYSTEMS
COMMONLY
FORMATTED
DATA
I N T E R FA C E
LEGACY
DATABASES
I N T E R FA C E
Scope-of-NIEM
LEGACY
DATABASES
Translation
NIEM intentionally does not address standardizing data inside
legacy systems. NIEM serves as a translation layer (providing a
common understanding) between and across disparate systems.
12
THE NIEM LIFECYCLES
Common Language
Repeatable, Reusable Process
(Data Model Lifecycle)
(Exchange Specification Lifecycle)
Built and governed by the business users at
Federal, State, Local, Tribal and Private Sectors
13
NIEM
GOVERNANCE
How is NIEM governed? How does the federated
domain governance function? What are the different
NIEM committees?
14
NIEM GOVERNING STRUCTURE
NIEM’s governing structure is comprised of
Federal, State, Local, Tribal and private organizations
NIEM is jointly managed at an executive level by the Department of Homeland Security (DHS),
Department of Justice (DOJ), and Department of Health and Human Services (HHS)
ESC
Executive Steering Council
NIEM PMO
Executive Director
Deputy Director
NC&OC
NTAC
NBAC
NIEM Communications &
Outreach Committee
NIEM Technical
Architecture Committee
NIEM Business
Architecture Committee
15
WHO STEERS NIEM CURRENTLY?
Voting Members
• Dept of Justice
• Dept of Homeland Security
• Dept of Health and Human Services
Ex-Officio Members
• Global Justice Information
Sharing Initiative
• Office of Management and Budget
• Program Manager, Information
Sharing Environment
• NASCIO
Partners
• Terrorist Screening Center
• Dept of Defense / Dept of Navy
• Dept of State, Consular Affairs (invited)
16
WHO GOVERNS NIEM DOMAINS?
Domain
Executive Steward
Justice
Global Justice (State & Local)
Screening
DHS/Screening Coordination Office
Immigration
DHS/Immigration & Customs Enforcement (ICE), US Citizenship and
Immigration Services (USCIS)
Chem/Bio/Rad/Nuc
DHS/Domestic Nuclear Detection Office (DNDO)
Maritime
DOD/Maritime Domain Awareness (MDA)
Cyber
DHS/National Protection and Programs Directorate (NPPD)/Cyber Security &
Communications (CS&C)
Children, Youth & Family Services
HHS/Administration for Children and Families (ACF) & DOJ (State & Local)
Emergency Management
DHS/FEMA, DHS/Science & Technology (S&T)
Infrastructure Protection
DHS/NPPD
International Trade
DHS/Customs and Border Protection (CBP)
Biometrics
DHS/NPPD, National Institute of Standards & Technology (NIST)
Health
HHS/Office of the National Coordinator (ONC) & HHS/Office of the Chief
Information Officer (OCIO)
Human Services
HHS/ACF & HHS/ONC
Government Resource Management
General Services Administration (GSA)
17
NIEM PROGRAM UPDATES
What are next steps for the program; NIEM-UML and
NIEM 3.0? Updates on NIEM international adoption?
How can NIEM State & Local practitioners get
involved?
18
UML PROFILE FOR NIEM (V2.1 ALIGNMENT)
Objective of the NIEM-UML Profile
To allow modelers and developers to apply NIEM-UML with minimal effort in order to create new models or change
existing models and ultimately to produce NIEM MPD artifacts.
NIEM-UML Implementations
• MagicDraw NIEM-UML Plug-in
• Open Source Implementation (Under Development)
19
NIEM-UML
WHAT IS NIEM-UML?
LEARNING REQUIREMENTS?
• Subset of the Unified Modeling
Language (UML)
• NIEM Logical Concepts Not
the XSD and NIEM Naming &
Design Rules Details
• Set of UML constructs &
Stereotypes
– Platform Independent Model (PIM)
Profile
– Extends UML to represent NIEM
concepts
– Common Profile
`
` are augmented
– NIEM concepts
with NIEM-Platform mapping
information
– Model Package Description Profile
• UML Tooling/Development
Environment
– NIEM Naming & Design Rules
enforced by leveraging the Object
Constraint Language
• A valid NIEM-UML model will
produce a valid MPD
20
NIEM 3.0 TIMELINE (13 MONTHS)
REQUIREMENTS & PREPARATION PHASE
Sep
Oct
Nov
Dec
PRE-ALPHA (19 weeks)
Domain Update Requirements
& Harmonization (3 months)
Jan
DEVELOPMENT & EXECUTION PHASE
Feb
MEETING
Apr
May
Jun
Aug
Sep
ALPHA 2
BETA
RC 1
3.0
(5 weeks)
(10 weeks)
(8.5 weeks)
(9 weeks)
(4 weeks)
RELEASE
ALPHA 2
RELEASE
BETA
90-DAY
DEADLINE
RELEASE
RC 1
Today
RELEASE
NIEM 3.0
RELEASE AUDIENCE
PMO
Jul
ALPHA 1
RELEASE
ALPHA 1
KICKOFF
Mar
NBAC
NTAC
GTRI
Alpha 1
Alpha 2
Beta
RC 1
21
Community
NIEM 3.0 HIGH-LEVEL BASELINE SCOPE *
1
•
•
•
•
•
•
•
TECHNICAL ARCHITECTURE
ENHANCEMENTS AND BUG FIXES
Code List Decoupling & Updates
Optional Code List Complexity Solution
New Augmentation Solution
Integrate Latest Version of IC-ISM
Unify Reference & Content-Bearing
Elements
Ability to Subset structures.xsd and
appinfo.xsd
Conformance Target Declaration
Attributes in appinfo.xsd
•
Local Terminology and Acronym
Capability in appinfo.xsd
•
Resolved Architectural NIEM
Configuration Control Tool (NCCT)
Issues
Newly Identified Architectural NCCT
Issues
•
2
•
•
•
3
•
•
•
HARMONIZED CONTENT, & DOMAIN
CONTENT CHANGE REQUESTS
Domain Content Change Requests
NCCT Content Harmonization
Solutions
Newly Identified NCCT Content
Issues
NIEM.GOV TOOLS UPDATES
SSGT (Updates & NIEM-UML Alignment)
ConTesA
Code List Generator
* Scope is subject to change
22
NASCIO NIEM POLICY ISSUANCE
In April 2011, the National Association of
State CIOs (NASCIO) issued a policy
statement of support recommending
participation and adoption of the NIEM and
provided state CIOs with background,
guidance and recommendations in
support of state government adoption
of NIEM to achieve effectiveness in
government through collaborative
information sharing.
23
PROGRESS ON FEDERAL NIEM ADOPTION
Success of NIEM within the Departments’ of Justice, Homeland Security,
and Health and Human Services propelled growth of NIEM across the
Federal Government
Agency
Department of Agriculture
Department of Defense
Department of Education
Department of Energy
Department of Health and Human Services
Department of Homeland Security
Department of Housing and Urban Development
Department of Justice
Department of Labor
Department of State
Department of the Interior
Department of the Treasury
Department of Transportation
Department of Veterans Affairs
Environmental Protection Agency
General Services Administration
National Aeronautics and Space Administration
National Archives and Records Administration
National Science Foundation
Nuclear Regulatory Commission
Office of the Director of National Intelligence
Social Security Administration
Geospatial Line of Business
Grants Management Line of Business
Financial Management Line of Business
Human Resources Line of Business
Use of NIEM
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Committed to Use
Further Evaluation Required
Committed to Use
Further Evaluation Required
Committed Use
Committed to Use
Will Not Use
Committed Use
Further Evaluation Required
Will Not Use
Further Evaluation Required
Will Not Use
Will Not Use
24
Committed
to Use
Further
Evaluation
Required -
Will Not
Use
MARCH 20 TESTIMONY TO HOUSE WAYS AND MEANS
"Although I am not testifying on behalf of NIEM today, I am
testifying in support of NIEM as it relates to any standards
contemplated by this legislation. The NIEM model is now being used
in many aspects of government around the country and not just
within the Justice domain …Because we in the courts deal with
matters that come before us from a range of other governmental
disciplines, we would hope that any standards developed in the child
support enforcement area would be developed using the NIEM
framework and dictionaries.“
Craig Burlingame, CIO
Trial Court Information Services,
Massachusetts Court System
25
INTERNATIONAL ACTIVITIES
• Beyond the Border
• North America Day
• NIEM in Europe
26
VIRTUAL TOWN HALL
FEBRUARY 14TH 2 – 3 P.M. EST
Agenda
– Preview of 2013 NIEM highlights
Donna Roy
– Progress on 3.0 Andrew Owen
– Community engagement & growth
of the Human Services domain
Joe Bodmer and David Tabler
– Overview of formal NIEM
adoption efforts across states &
territories Doug Robinson
– Achieving interoperability across
the Commonwealth of Virginia
through the use of NIEM Joseph
Grubbs
– Community Q&A
We’re kicking off the new year with a Town
Hall, and you’re invited!
Great initiative. Count on my
active participation.
I’m registered!
27
WE ARE NIEM-IFIED
Dedicated Map on NIEM.gov
(complete)
Outreach Campaign planned
for rollout in Q2FY13
NIEM users are the most credible
source for attesting to “the power of
NIEM!”
28
TAKING ACTION
Help Us Define the Next NIEM Challenge
A large-scale need to connect people and organizations around a common mission, where
information is critical
Participate in NIEM Domains
12 NIEM Domains: Cyber, Biometrics, Maritime, CBRN, Screening, Intel, Immigration,
International Trade, Justice, Infrastructure Protection, Emergency Management, and Children,
Youth, & Family Services
Get Involved – Share Your Expertise
NIEM Committees, NIEM LinkedIn & Twitter Community, Discussion Forms on NIEM.gov—
contact NIEM at [email protected] to discuss opportunitie.
Empower Your Team
Give your team the resources to adopt and use NIEM: Training and Tools
Apply For/Leverage Federal Grant Dollars
DHS and DOJ grant dollars can be applied for NIEM activities
29
Information Sharing Environment:
Delivering Trust in Sharing
Building Trust with Privacy Principles
Privacy Act of 1974, Fair Information Principles, International
Privacy Guidelines, and increased social awareness are drivers for
building IT systems with trust…
1. Citizens, by U.S. law, have rights related to how the government uses their
information
2. Federated democracy compounds this at State and Local level
3. Government entities are expected to practice fair information principles in
their systems and processes
4. Trusted Partners have expectations beyond basic protections provided to
citizens such as protection of law enforcement case data, proprietary
information, etc
5. International protections and expectations may differ and are driven by
cultural variety
6. Google and FaceBook's changing privacy policies are driving increased
consumer awareness
7. Public at large has a higher expectation for lower risk and increased
protection from government....Much more than what they accept with social
media and consumer transactions
Building a Network of Trust for
Sharing
1. How do I know who I am sharing with?
2. Is the environment secure?
3. Is my personal information safe?
4. When I share, how do I know it won't be accessed beyond my
expectations?
5. How and when can I share outside of my COI or group of
associates?
7
Homeland Security Information Network (HSIN)
HSIN is a web-based knowledge management tool
designed to increase collaboration between:
Federal,
State,
Local,
Tribal,
Territorial,
Private sector,
International
• 300+ Million People
• 18,000 Organizations
• 750,000+ Law Enforcement Officers
• 250,000
911 Operators
• 1.2 Million Firefighters
• 2.2 Million Security Officers
• 100,000 Probation/ Parole Officers
* Numbers are estimates
UNCLASSIFIED FOUO
2
Homeland Security Information Network (HSIN)
Sharing:
Strong identity
information… know
who is on the
platform, what their
role or purpose for
sharing, and ensure a
safe entry into the
system each time…
UNCLASSIFIED FOUO
Safeguarding:
Large network of
stakeholders with
expectations of trust
in appropriate use of
data, and identity of4
other users.
HSIN Identity Principles
Account Management
Single account for trusted partners
Identity Proofing
Strong Authentication
Verified at account provisioning,
through automated or manual
methods
Two factor authentication for
getting in....
Credential Store
Federation
Ability to use non HSIN credentials
as well as offer HSIN credentials for
reuse
Ability to federate across trusted
partners with similar capabilities
5
HSIN Information Principles
Access Management
Access decision determined by
originator
Tagging
Stewardship
Minimum tagging required for
safeguarding
Community of interest governed
Shared Value Ratings
Share Risk
Allow comments and ratings on
value of information
Safeguarding against inappropriate
use is everyone's responsibility
5
Homeland Security Information Network (HSIN)
UNCLASSIFIED FOUO
6
HSIN Interoperability Standards
The combination of several XML based standards present a recipe for
interoperability that support the goals for sharing and safeguarding
SAML
GFIPM
XACML
NIEM
Security Assertion Markup
Language (SAML) is an XML based open standard for
exchanging authentication and
authorization data
Global Federated Identity and
Privilege Management
(GFIPM) framework is an XML
–based suite of technical
standards, which are built on
the Security Assertion Markup
Language (SAML) to create
common understanding of
user attributes across law
enforcement and public safety
communities
eXtensible Access Control
Markup Language (XACML)
defines access control policy
language implemented in XML
and a processing model
describing how to evaluate
authorization requests
according to the rules defined
in policies
National Information
Exchange Model is an XML based open standard for
providing a commonly
understood way to describe
data across law enforcement
and public safety communities