Skip to content

narfindustries/digiheals-public

BranchesTags

Repository files navigation

EHR-FIST: Digital Format Rehabilitation to Improve Interoperability of EHR Systems and Records

We have currently built and hosted the following services in this Docker Compose Project.

  • OpenEMR
  • GNU Health
  • OSEHRA VistA
  • OpenMRS
  • HAPI FHIR
  • LinuxForHealth FHIR (by IBM)
  • Samply Blaze
  • Intersystems

Running

  • git submodule update --init --recursive
  • export COMPOSE_PROFILES=neo4jDev or export COMPOSE_PROFILES=neo4jTest to set between Dev or Test Environment
  • docker compose up should get the containers built and spinning.
  • For diff results, by default you get the full diff result. We also provide a comprehensive summary of the diff result if selected. For the summary, access to openAI's API key is required. Set export OPENAI_API_KEY="your_openai_api_key", export ORGANIZATION_KEY="your_organization_key" and export PROJECT_KEY="your_project_key" using your personal access keys.

Run your script

python your_script.py

NOTE: Although we provide Docker setups for some FHIR servers and EHRs, these must not be used in production setups. This repository contains hardcoded passwords and ports meant to make fuzzing and bug discovery easy.

Game of Telephone

  • telephone-basic.py: A simple script that would upload a file to Vista, pass it on to HAPI FHIR, and then to IBM FHIR server.
  • telephone.py --file FILENAME --type <xml or json> -c hop1 -c hop2 -c hop3, where the hops can be ibm, hapi, vista, blaze or iris.
  • Or telephone.py --generate -c hop1 -c hop2 -c hop3, if you want to generate a new file via Synthea on the fly.
  • Or telephone.py --generate --all-chains --chain-length 2, if you want to generate all possible chains.

NOTE: Supports FHIR JSON and XML (for Hapi, Blaze, IBM and Iris).

Contributing

We use git pre-commit hooks to ensure code standard. Please run:

  • pip install -r requirements.txt
  • pre-commit install to install the pre-commit hooks

Components

  • tools: contains clients for the FHIR APIs and tools to chain requests and responses across them
  • ehr-garden: docker setup to create instances of various EHRs and FHIR servers

Web UIs

The Web UIs live in various containers and can be accessed using the port mappings specified in the docker-compose.yml file.

EHR Server Source Username/Password Port FHIR Path Notes
GNU Health GNU Health Dockerized setup admin/ehrgarden 8000 N/A Cannot export FHIR as of now
OpenEMR OpenEMR Production Setup admin/pass 8001/8443 /apis/default/fhir/Patient Takes a while to load the first time, you might also need to run docker compose down -v to erase volumes.
VistA Dockerized FHIR on VistA None 8002 /api/Patient None
OpenMRS OpenMRS Core Repository None 8003 None
HAPI FHIR HAPI FHIR None 8004 /fhir/Patient None
IBM FHIR Linux For Health FHIR fhiruser/change-password 8005 /fhir-server/api/v4/Patient Needs HTTPS. Requires a username and password in the FHIR requests. When using curl, use -u.
Samply Blaze FHIR Blaze: A FHIR Server with internal, fast CQL Evaluation Engine None 8006 /fhir None
Intersystems Iris Iris FHIR Template None 8007 fhir/r4/Patient None

FHIR Data Comparisons

For every chain, the FHIR data moving between servers can be compared data integrity and sanity. The comparison can be run from tools/. Use the following commands:

  • python3 diff.py --guid guid_sequence --type <xml or json> --all-depths to compare the paths taken by the guid for all hops and to get the full diff result.
  • python3 diff.py --guid guid_sequence --type <xml or json> --depth 1 --diff summary to make the comparisons for paths with a single hop and to get the summary of the diff result.

The results will show the differences (if they exist) between the input and output FHIR data through the nodes in a path.

To run the entire process of Game of Telephone and their corresponding Data Comparisons, run the following:

  • python3 run_scripts.py --generate --all-chains --chain-length 2
  • python3 run_scripts.py --file <file_name> --type xml -c hapi -c blaze --diff summary

Publications

More information about this project is available under Publications.

@inproceedings{anantharaman2024healthsec,
authors={Prashant Anantharaman and Rebecca “.bx” Shapiro and Vishnupriya Varadharaju
and Michael E. Locasto},
year={2024},
title={{A Study of Interoperability in Electronic Health Record Software}},
booktitle={Proceedings of the 2024 Workshop on Cybersecurity in Healthcare (HealthSec ’24), October 14–18}
address={Salt Lake City, UT, USA},
publisher={ACM, New York, NY, USA},
numpages={8},
doi={10.1145/3689942.3694743}}

Tests

To run the test environment:

  1. mkdir -p neo4jTest
  2. tar -xJf neo4jTest.tar.xz -C neo4jTest/ Untar the volume mount for the Test Server
  3. export COMPOSE_PROFILES=neo4jTest Set env variable before building containers

Unit tests for Synthea file generation and FHIR clients are in tools/tests. Run make test from the root directory to run all tests.

License

This project is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see https://www.gnu.org/licenses/.

About

Tracking the EHR and FHIR testbench for the Narf EHR-FIST project

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

6 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 7

Languages