After more than a year of work, the
The framework is a set of certifiable and standardized best practices for complying with the HIPAA security rule and other regulatory mandates, as well as internal security policies. Adoption of the best practices would be voluntary, although adopting organizations could require their business associates to become certified.
The alliance will host a Web seminar on March 2 to discuss the need for enhanced protection, including newly enacted changes to the security and privacy rules, and to explain the Common Security Framework.
Members of the alliance include provider and payer organizations and information technology vendors. More information is available at