VistA Security Strategy Document Released

Don Hewitt's picture

OSEHRA’s VistA Security Technical Working Group (TWG) has completed Version 1 of its working document entitled Maintaining a Production VistA EHR: Security Issues, and Mitigation and Remediation Strategies.  The VistA Security TWG is part of OSEHRA’s contract in support of VA and open source, and includes both VA and industry representatives.  It serves as a venue for discussing security-related issues and requirements, as well as identification of vulnerabilities.  This document was written to establish a baseline of best practices and references that will assist community members in securing their VistA production instances. 

Comments and suggestions are welcome, and should be emailed to


Joe Ortman, VA Co-Chair

Mike Henderson, DSS Inc., Community Co-Chair