SlideShare a Scribd company logo

5 2 Mobile Veteran Facing Applications Design Pattern Signed 4Nov2015

N
Nick Bogden
1 of 21
Download to read offline
VA Enterprise Design Patterns: 5. Enterprise Mobility 5.2. Mobile Veteran-Facing Applications Office of Technology Strategies (TS) Architecture, Strategy, and Design (ASD) Office of Information and Technology (OI&T) Version 1.0 Date Issued: November 4, 2015
THIS PAGE INTENTIONALLY LEFT BLANK FOR PRINTING PURPOSES
= APPROVAL COORDINATION TIMOTHY L MCGRAIL 111224 Olg1to1lly519nedby TIMOTHY l MCGAAJL 111224 ON ck=gov.dc.•vJ1,o-fnlttn1I. OU•, :..i:::. ;.f'L1 9 t• Date: 111224 0.1t:201S 101310:0S4S-04'00' Tim McGrail Senior Program Analyst ASD Technology Strategies Paul A. Tibbits, M.D. DCIO Architecture, Strategy, and Design
REVISION HISTORY Version Date Organization Notes 0.1 3/17/2015 ASD TS Initial Draft 0.5 4/30/2015 ASD TS Second draft document with updates made throughout document based upon initial internal/external stakeholder review and comment. 0.7 8/31/2015 ASD TS Third and final draft for stakeholder review prior to TS leadership approval/signature. Updates made following Public Forum collaborative feedback and working session. 1.0 ASD TS Final version for TS leadership approval and signature, including all applicable updates addressing stakeholder feedback and Section 508 Compliance. REVISION HISTORY APPROVALS Version Date Approver Role 0.1 3/17/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.5 4/30/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.7 6/9/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.9 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 1.0 11/03/15 Tim McGrail ASD TS Design Pattern Final Reviewer
TABLE OF CONTENTS 1.0 INTRODUCTION.........................................................................................................................................1 1.1 BUSINESS NEED........................................................................................................................................................1 1.2 APPROACH ..............................................................................................................................................................1 2.0 CURRENT CAPABILITIES AND LIMITATIONS................................................................................................1 3.0 FUTURE CAPABILITIES ......................................................................................................................................3 3.1 MOBILE STRATEGY FOR VETERAN-FACING APPLICATIONS ..................................................................................................3 3.2 USER EXPERIENCE .....................................................................................................................................................4 3.3 TYPE OF APPLICATIONS ..............................................................................................................................................5 3.3 CENTRALIZED APPLICATION STORE ..................................................................................................................................... 5 3.4 SCALABLE AND SECURE INFRASTRUCTURE.......................................................................................................................5 3.5 ANALYTICS AND METRICS ...........................................................................................................................................6 4.0 USE CASES .................................................................................................................................................6 APPENDIX A. BACKGROUND INFORMATION....................................................................................................11 SCOPE........................................................................................................................................................................11 INTENDED AUDIENCE.....................................................................................................................................................11 DOCUMENT DEVELOPMENT AND MAINTENANCE.................................................................................................................12 APPENDIX B. DEFINITIONS ............................................................................................................................... 13 APPENDIX C. ACRONYMS................................................................................................................................. 14 APPENDIX D. REFERENCES, STANDARDS AND POLICIES....................................................................................16 FIGURES Figure 1: Phased Roadmap to address Current Limitations ..........................................................................3 Figure 2: Use Case #1 - Veteran Updates Address ........................................................................................8 Figure 3: Use Case #2 - Veteran Accesses Data Across Lines of Business....................................................10 TABLES Table 1: Current Set of Veteran-Facing Applications.....................................................................................2
Page 1 1.0 INTRODUCTION Secretary Robert A. MacDonald observed in his 2014 MyVA Presentation that “Assessments informing the [2014-2020] strategic plan told us VA often provides a fragmented, disjointed experience that result in poor customer service and frustrated Veterans and beneficiaries.” The Secretary described how Veterans and their beneficiaries take on the burden of serving as their own integration point for “multiple VAs.” Extending VA’s enterprise resources to an increasingly technology-savvy and mobile Veteran population is a high priority for achieving strategic goals stemming from the MyVA initiative. The purpose of this Enterprise Design Pattern is to establish an enterprise direction for Veteran- facing mobile computing using enterprise services and common Information Technology (IT) infrastructure platforms. This document focuses on technical capabilities supporting the “external user” component of the Mobile Architecture Design Pattern (see Appendix A). This document provides guidance on the use of a standardized mobile solution via an enterprise-- wide mobile middleware platform capable of supporting a robust, Veteran-centric customer experience. 1.1 Business Need Veteran-facing mobile applications will help VA close the “mobile” infrastructure gap outlined in the Enterprise Technology Strategic Plan (ETSP) and move the VA towards a future-state IT vision supporting all VA lines of business. Extending enterprise resources to mobile devices requires consistent visibility of Veteran data and a central location to update this information. Veterans require a single access point to review their data and update personal information. A single access point reduces the burden on VA employees who are manually assisting and updating information for Veterans. 1.2 Approach Achieving a robust mobile infrastructure requires a multi-year initiative supported by Office of Information & Technology (OI&T) and Administration leadership that encompasses strategy, governance, and technology investments. Simply migrating the current commercial off-the- shelf (COTS) mobile middleware platform to a new platform is insufficient for resolving the current capability limitations discussed in Section 2. Section 3 includes a phased approach to establishing future-state capabilities based on industry best practices for public-facing applications. 2.1 CURRENT CAPABILITIES AND LIMITATIONS The following figure presents the current set of applications Veterans can download from public application stores. These applications include both native (e.g., iOS, Android) mobile applications and HTML5-based mobile websites. These applications require validated external user credentials, including DoD Self-Service Logon (DS Logon), for accessing enterprise data.
Page 2 Requires DoD Self Service Logon Account to log in 14 Mobile Applications are available on the Public App Store, 10 of these are available on iOS only Launchpad (Web App) ACT Coach (iOS) Mindfulness Coach (iOS) PTSD Coach (iOS, Android) Airborne Hazards & Open Burn Pit Registry (Web App) CBT-I Coach (iOS) Moving Forward (iOS) StayQuit Coach (iOS) Mobile Blue Button (Web App) Concussion Coach (iOS) Parenting2Go (iOS) 311 Vet (iOS, Android) Summary of Care (Web App) CPT Coach (iOS) PE Coach (iOS, Android) Move! Coach (iOS) Veteran Appointment Request (Web App) Exposure Ed (iOS) PFA Mobile (iOS, Android) Table 1: Current Set of Veteran-Facing Applications These applications provide a wide range of functionality to Veterans, however, the current architecture and runtime environments limit this mobile experience supporting the MyVA initiative. The limitations are as follows: • Inconsistent Single Sign-On: Currently, five Veteran-facing applications provide access to electronic health records (EHRs). While the Launchpad application is intended to provide a Veteran access to applications requiring access to EHRs, gaining access to MyHealtheVet and eBenefits from this portal requires a secondary login. • Limited User Experience: Applications are developed to address business requirements with general assumptions about user interests. Applications are not shared with Veterans for feedback until late in the development process, or after launch. • Lack of Multi-Platform availability: Over 50 percent of applications are iOS only, limiting the availability to Veterans with phones using other operating systems. • Lack of scalable infrastructure: Current systems can only support 3,500 concurrent Veteran log-ins. • Limited User Analytics: Analytics are only available for iOS Applications. • Non-standard Veteran-Facing Application Maintenance: Applications have a three- month support period after which they become the responsibility of the business owner. There is no operations and maintenance support of applications beyond three months. • Lengthy Compliance Reviews: The complexity of systems and the lack of a comprehensive testing capability, impact the current compliance turn-around times.
Page 3 Applications currently spend a minimum 33 percent of the development cycle in compliance review. 3.0 FUTURE CAPABILITIES The phased approach to achieve future-state mobile capabilities to address limitations in Section 2 is as follows: Figure 1: Phased Roadmap to address Current Limitations 3.1 Mobile Strategy for Veteran-facing Applications The initial phase focuses on establishing an enterprise mobile strategy addressing technology, governance, compliance and security, and support as shown in Figure 1. VA is currently deploying Enterprise Shared Services (ESS) to support Veteran-facing applications, and VA will expand on them in the next three years. These services include support for standardized authentication and authorization (A&A) and scalable, enterprise-wide mobile middleware to support automated development and operations (DevOps), standardized analytics, and an
Page 4 enhanced mobile application store (Phases 2 and 3). Mobile middleware provided as an ESS supports the strategy through the following actions: (Near-Term): • ESS are established within the enterprise IT Infrastructure and are available to all approved applications and devices for authenticated users. Requires the appropriate authorizations for access. (Mid-Term): • Continued prioritization and execution of enhancements to old applications. Ensure capability of new applications to use ESS, as shown in the use case in Section 4. • Enhance Identity and Access Management (IAM) for external users to ensure secure A&A provided as an ESS. Continue enhancing legacy applications and ensure capability of new applications to use ESS for A&A. (End-State): • Device-agnostic application development using HTML5 integrated with ESS. • Enterprise compliance with procedures and policy for management of VA IT organizational processes including Risk Management, Change Management, and Disaster Recovery. • All applications leverage centrally managed IT controls for mobile acquisitions of hardware, software and infrastructure integrated with A&A ESS. The following subsections provide context for the requirements that future-state technical capabilities satisfy to resolve the Veteran-facing application limitations in Section 2. 3.2 User Experience User experience is the process of enhancing the usability, accessibility, and interaction between the Veteran and the application. User experience comprises information architecture and visual design, and VA’s requirements for Veteran-facing applications are as follows: • Establish Focus Groups: Divide the Veteran population into focus groups. Generate a unique persona from each focus group. Build use cases on the personas and define how the system needs to act. • Define a Service Request Capability: A Veteran issues a “service request” for the requested information. A service request for information is made to the existing database and presented to the Veteran. • Design logical Information Architecture: Prioritize main features and contents on the landing page according to the Veteran’s needs. Enable Veterans to navigate to the most important content and functionality in as few steps as possible. • Leverage Device Capability: Use device features and capabilities to support the Veteran’s context of use. Accommodate for changes in context depending on time of the day and when the Veteran is using the application. Use location to identify where the Veteran is and display relevant content.
Page 5 • Provide Offline Data Access: An enterprise mobile app needs to support offline data access and maintain data integrity. Applications should have an encrypted database for short-lived data inside the app. This approach will address security concerns due to data at rest while providing vital information to a Veteran when offline. • Enable Always-On Virtual Private Network (VPN): A Veteran currently enters credentials as many as three times to access data and again submits credentials when switching networks or whenever the phone goes into a sleep mode. The security of an Always-On VPN improves user experience without compromising security. 3.3 Type of Applications Services will be consolidated so that Veterans have one interface to access and acquire the status of services and capabilities. A Veteran will be able to access information when offline (e.g., appointments). Applications will provide a temporary cache to store any updates as a Veteran moves between networks or is temporarily without network coverage. Uninterrupted access to relevant data improves customer experience. Veteran-facing applications use a mobile platform with one code base to support multiple operating systems (i.e., IOS, Android, Windows, etc.) and devices. • Informational Applications: All informational applications need to be web applications. HTML5 based applications are device agnostic and provide cross platform support. • Transactional Application: Consolidated services will provide Veterans one main application to transact and retrieve status on services and capabilities available to them. A native application with the ability to temporarily cache data delivers an increased user experience. 3.3 Centralized Application Store A centralized application store will allow VA to more securely manage and distribute Veteran- facing applications to Veteran’s devices from a central location ensuring: • Mobile application discovery and distribution • Multiple Platform Support • User authentication for application installation • Over-the-Air application installation, configuration, and updates • Over-the-Air application removal for Veterans’ devices • End to end application management 3.4 Scalable and Secure Infrastructure Veteran-facing applications require the following mobile infrastructure requirements to support the business needs:
Page 6 • Deploy Mobile Middleware: Implement Scalable Mobile middleware by leveraging backend Service-oriented Architecture (SOA) services and security capabilities. An enterprise mobile middleware platform will support increased user availability. • Adopt Single Sign-On: A Federated identity management system and a transition to IAM Single Sign-On (AccessVA) will facilitate the sharing of identity information across administrative boundaries. A Veteran will be able to login with a single set of credential to access the authorized services provided they have the right level of assurance. • Establish Mobile Application Management: Veterans will be able to access ESS and data through their mobile applications. Mobile Application Management ensures application security and remote application management. • Enforce Multi-Device and Multi-Channel Support: Veteran’s applications work on any device, instantly and seamlessly. This multi-channel approach provides users access to available infromation, with a consistent user experience. Transitioning to cross-platform development tools and an integration infrastructure will support a multichannel environment 3.5 Analytics and Metrics Veteran-facing applications require the following analytics to support business needs: • Define Metrics: Identify application performance metrics and usage metrics to demonstrate application adoption. Track application performance across multiple devices and device versions. Data providing metrics on slow web service calls, network performance, and service request performance will provide the information to evaluate the capacity of the infrastructure to support an increasing user base. • Create Standardized Analytics: A standardized platform will allow Veteran usage data to be assessed over a variety of parameters. This platform will provide a single view of application usage that will help understand Veteran data access patterns. 4.1 USE CASES The Veteran-facing application use cases demonstrate how a Veteran’s application will support ESS in accordance with the VA Enterprise Technical Architecture. Use Case Use Data Sensitivity Veteran accesses, creates, or modifies personal non-public data Veteran/caregiver accessing medical and patient data using a mobile device for medication and related care information, preventative care. This could also be a Veteran accessing Chapter 33 or other non-health benefits; Right information at the right time for the proper care. VA Sensitive Data (SPI)/Personal Health Information (PHI) Administratively Confidential Information (ACI) (aka. PGD/IAM– DS/Logon/SSOe/OAuth)
Page 7 Use Case # 1 • A Veteran initiates a change of address through a mobile application to reflect the Veteran’s move from the Washington, DC area to the San Francisco, CA area. • The Veteran can login using existing credentials established on VA systems or using an external approved Credential Service Provider (CSP). • Veteran’s token is validated and the CSP brokers the connection between the Veteran and the application. • In the brokered connection, user information is passed to single sign on external (SSOe) integrated applications in HTTP headers, called SSOe Tokens. • A data message is sent from the application through authoritative information services down to the data layer. • The message is processed by the Enterprise Create, Read, Update, Delete (eCRUD) service, which writes the address change to the data lake and also to the ADS for Veteran addresses. User Experience: Veteran Makes on single change securely that is updated across all VA systems
Page 8 Figure 2: Use Case #1 - Veteran Updates Address
Page 9 Use Case # 2 • A Veteran accesses his or her medical prescription and then looks for benefits information through a mobile application. • The Veteran can login using existing credentials established on VA systems or using an external approved Credential Service Provider. • Veteran’s token is validated and the CSP brokers the connection between the Veteran and the application. • In the brokered connection, user information is passed to SSOe integrated applications in HTTP headers, called SSOe Tokens. • Veteran selects option to view list of his or her prescriptions. Applications calls on authoritative information services to access VistA for prescription records associated with Veteran’s Veteran Health Administration (VHA) patient Identification (ID). Veteran can now view the information. • Veteran now selects an option to view current benefits. Application calls on shared services to retrieve Veteran’s benefit information. Information is displayed on the mobile device. User Experience: Veteran accesses a single application to access critical information pertinent to the Veteran. Veteran securely logs on using credentials previously established on an existing VA system.
Page 10 Figure 3: Use Case #2 - Veteran Accesses Data Across Lines of Business
Page 11 Appendix A.BACKGROUND INFORMATION Scope This Enterprise Design Pattern document provides an enterprise-level view of the current and future mobile capabilities relevant to Veteran-facing mobile applications and the standard processes in use. The document will refer to, rather than duplicate, lower-level solution guidance associated with these capabilities. This document focuses on: • A set of use cases that will allow Veterans to have access to VA services and their personal data through a single point of access or mobile gateway (i.e., VAMF). • Veteran-facing mobile applications that are device agnostic, and will be able to perform on a wide variety of mobile devices that are commonly used by Veterans. • What application development and deployment capabilities and constraints will need to be considered to provide application access to available ESS. • Guidance that ensures a framework for seamless, Veteran-facing, user experience applicable to both internal VA mobile application development and 3rd party mobile application developers. This Enterprise Design Pattern represents the external, Veteran-facing component of the overarching Mobile Architecture Design Pattern. The Enterprise Design Pattern document is generally applicable across all VA Lines of Business (LOB) and describes: • Current VA mobile capabilities • VA mobile infrastructure • Processes to be used by the developers and the Veteran • Enterprise-level mobile constraints, strategic guidance, and terminology This Enterprise Design Pattern document does not address detailed technical solution guidance for implementing specific mobile applications. It will only provide the constraints to drive VA projects towards development of mobile solutions that effectively meet the specific goals of their initiatives. Topics that are out of scope for this Enterprise Design Pattern, but may be referenced, are: • Mobile applications used by doctors, clinicians, and care-givers • Mobile applications used by VA staff • Interactions between wearable devices that produce patient generated data • Certification processes for fielding applications • Mobile security, including SSO Intended Audience The document is applicable to all programs and key stakeholders involved in developing and supporting mobile applications for Veterans across VA.
Page 12 Document Development and Maintenance This document was developed collaboratively with internal stakeholders from across the Department and included participation from VA’s Office of Information and Technology (OI&T), Product Development (PD), Office of Information Security (OIS), Architecture, Strategy and Design (ASD), and Service Delivery and Engineering (SDE). Extensive input and participation was also received from VHA, Veteran Benefits Association (VBA), and National Cemetery Administration (NCA). In addition, the development effort included engagements with industry experts to review, provide input, and comment on the proposed pattern. This document contains a revision history and revision approval logs to track all changes. Updates will be coordinated with the Government lead for this document, which will also facilitate stakeholder coordination and subsequent re-approval depending on the significance of the change.
Page 13 Appendix B.DEFINITIONS Key Term Definition Enterprise Shared Service A SOA service that is visible across the enterprise and can be accessed by users across the enterprise, subject to appropriate security and privacy restrictions. http://vaww.ea.OI&T.va.gov/enterprise-shared-services-service- oriented-architecture/ Service A mechanism to enable access to one or more capabilities, where the access is provided using a prescribed interface and is exercised consistent with constraints and policies as specified by the service description. Service Oriented Architecture A paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. It provides a uniform means to offer, discover, interact with and use capabilities to produce desired effects consistent with measurable preconditions and expectations.
Page 14 Appendix C. ACRONYMS The following table provides a list of acronyms used within this document. Acronym Description AA&A Authentication, Authorization and Audit ACI Administratively Confidential Information ASD Architecture, Strategy and Design ADS Authoritative Data Sources ATO Authority to Operate BPE Business Partner Extranet COTS Commercial Off the Shelf EA Enterprise Architecture EAA Enterprise Application Architecture EHR Electronic Health Record eMI Enterprise Messaging Infrastructure EMM Enterprise Mobility Management ESCCB Enterprise Security Change Control Board ESS Enterprise Shared Services ETA Enterprise Technical Architecture ETSP Enterprise Technology Strategic Plan FHIR Fast Healthcare Interoperability Resource FIPS Federal Information Processing Standards FISMA Federal Information Security Management Act FOUO For Official Use Only GFE Government Furnished Equipment IaaS Infrastructure-as-a-Service IAM Identity and Access Management IPT Integrated Project Team IT Information Technology LOB Line of Business MA Mobile Application MADP Mobile Application Development Platform MAGB Mobile Application Governance Board MAE Mobile Application Environment MAM Mobile Application Management MAP Mobile Application Program MARA Mobile Application Reference Architecture MAS Mobile Application Store MDM Mobile Device Management MHED Mobile Health External Development MVI Master Veteran Index NCA National Cemetery Administration NSOC Network Security Operations Center OIS Office of Information Security
Page 15 Acronym Description OI&T Office of Information and Technology OEF Operation Enduring Freedom PGD Patient Generated Data PHI Protected Health Information PII Personally Identifiable Information PIV Personal Identity Verification PMAS Project Management Accountability System SAML Security Assertion Markup Language SDD System Design Document SDE Service Delivery and Engineering SDLC Software Development Lifecycle SLA Service Level Agreement SOA Service-Oriented Architecture SPI Sensitive Personal Information SSO Single Sign-On – SSOe/SSOi: External and Internal designations TIC Trusted Internet Connection TRM Technical Reference Model VAMF VA Mobile Framework VBA Veteran Benefits Association VHA Veteran Health Administration VistA Veterans Health Information Systems and Technology Architecture VLER Virtual Lifetime Electronic Record VPN Virtual Private Network
Page 16 Appendix D.REFERENCES, STANDARDS AND POLICIES # Issuing Agency Applicable Reference/Standard Purpose 1 VA OIS VA 6500 Handbook Directive from the OI&T OIS for establishment of an information security program in the VA, which applies to all applications that leverage ESS. http://www1.va.gov/vapubs/viewPublication.asp?Pub_ID=56 2 CIO Council Government Mobile and Wireless Security Baseline This document explains the essential elements of mobile computing (devices, access networks, agency infrastructure), and describes threats and risks to mobile computing. https://cio.gov/wp- content/uploads/downloads/2013/05/Federal-Mobile- Security-Baseline.pdf 4 CIO Council Mobile Security Reference Architecture (MSRA) The MSRA has been released by the Federal CIO Council and the Department of Homeland Security (DHS) to assist Federal Departments and Agencies (D/As) in the secure implementation of mobile solutions through their enterprise architectures. https://cio.gov/wp- content/uploads/downloads/2013/05/Mobile-Security- Reference-Architecture.pdf 5 VA MAP VA Mobile Framework System Design Document The VA Mobile Framework (VAMF) provides the infrastructure to allow VA Apps to be hosted in a standard architectural framework. It provides software services, including authentication of users and retrieval and updating of data within VA. https://mobile.va.gov/content/mobile-app-environment-and- services

Recommended

Data Storage Enterprise Design Pattern
Data Storage Enterprise Design PatternData Storage Enterprise Design Pattern
Data Storage Enterprise Design PatternNick Bogden
 
3.3 Utilizing Enterprise Identities Enterprise Design Pattern
3.3 Utilizing Enterprise Identities Enterprise Design Pattern3.3 Utilizing Enterprise Identities Enterprise Design Pattern
3.3 Utilizing Enterprise Identities Enterprise Design PatternNick Bogden
 
Staff Facing Mobile Devices and Applications DP V1 0_Final
Staff Facing Mobile Devices and Applications DP V1 0_FinalStaff Facing Mobile Devices and Applications DP V1 0_Final
Staff Facing Mobile Devices and Applications DP V1 0_FinalNick Bogden
 
State of Georgia Annual state it report 2012 final
State of Georgia Annual state it report 2012 finalState of Georgia Annual state it report 2012 final
State of Georgia Annual state it report 2012 finalState of Georgia
 
Energy Management System Market: Increasing Demand for Energy Conservation an...
Energy Management System Market: Increasing Demand for Energy Conservation an...Energy Management System Market: Increasing Demand for Energy Conservation an...
Energy Management System Market: Increasing Demand for Energy Conservation an...AmanpreetSingh409
 
Global Lidar Market
Global Lidar MarketGlobal Lidar Market
Global Lidar MarketBIS Research Inc.
 
Global Point-of-Care Imaging Devices Market
Global Point-of-Care Imaging Devices Market Global Point-of-Care Imaging Devices Market
Global Point-of-Care Imaging Devices MarketBIS Research Inc.
 
Microsoft Dynamics RoleTailored Business Productivity
Microsoft Dynamics RoleTailored Business ProductivityMicrosoft Dynamics RoleTailored Business Productivity
Microsoft Dynamics RoleTailored Business ProductivityCRMreviews
 

Recommended

Data Storage Enterprise Design Pattern
Data Storage Enterprise Design PatternData Storage Enterprise Design Pattern
Data Storage Enterprise Design PatternNick Bogden
 
3.3 Utilizing Enterprise Identities Enterprise Design Pattern
3.3 Utilizing Enterprise Identities Enterprise Design Pattern3.3 Utilizing Enterprise Identities Enterprise Design Pattern
3.3 Utilizing Enterprise Identities Enterprise Design PatternNick Bogden
 
Staff Facing Mobile Devices and Applications DP V1 0_Final
Staff Facing Mobile Devices and Applications DP V1 0_FinalStaff Facing Mobile Devices and Applications DP V1 0_Final
Staff Facing Mobile Devices and Applications DP V1 0_FinalNick Bogden
 
State of Georgia Annual state it report 2012 final
State of Georgia Annual state it report 2012 finalState of Georgia Annual state it report 2012 final
State of Georgia Annual state it report 2012 finalState of Georgia
 
Energy Management System Market: Increasing Demand for Energy Conservation an...
Energy Management System Market: Increasing Demand for Energy Conservation an...Energy Management System Market: Increasing Demand for Energy Conservation an...
Energy Management System Market: Increasing Demand for Energy Conservation an...AmanpreetSingh409
 
Global Lidar Market
Global Lidar MarketGlobal Lidar Market
Global Lidar MarketBIS Research Inc.
 
Global Point-of-Care Imaging Devices Market
Global Point-of-Care Imaging Devices Market Global Point-of-Care Imaging Devices Market
Global Point-of-Care Imaging Devices MarketBIS Research Inc.
 
Microsoft Dynamics RoleTailored Business Productivity
Microsoft Dynamics RoleTailored Business ProductivityMicrosoft Dynamics RoleTailored Business Productivity
Microsoft Dynamics RoleTailored Business ProductivityCRMreviews
 
Global Epigenetics Market
Global Epigenetics MarketGlobal Epigenetics Market
Global Epigenetics MarketBIS Research Inc.
 
Infrastructure Business Management Insight
Infrastructure Business Management InsightInfrastructure Business Management Insight
Infrastructure Business Management InsightReportLinker.com
 
CRISPR Gene Editing Market
CRISPR Gene Editing MarketCRISPR Gene Editing Market
CRISPR Gene Editing MarketBIS Research Inc.
 
Report on Dasborad & scorecard
Report on Dasborad & scorecardReport on Dasborad & scorecard
Report on Dasborad & scorecardNewGate India
 
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...Alessandro Vigilante
 
3D Web
3D Web3D Web
3D WebReportLinker.com
 
01 content analytics-iw2015
01 content analytics-iw201501 content analytics-iw2015
01 content analytics-iw2015Kaizenlogcom
 
Functional Design Specification v2_pvt
Functional Design Specification v2_pvtFunctional Design Specification v2_pvt
Functional Design Specification v2_pvtSandra Willms
 
Expanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business StrategiesExpanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business StrategiesBaker Khader Abdallah, PMP
 
Extending capture capabilities measuring the roi
Extending capture capabilities measuring the roiExtending capture capabilities measuring the roi
Extending capture capabilities measuring the roiVander Loto
 
Trastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajoTrastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajoMutua Montañesa
 
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM Portugal
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM PortugalEvento SugarCRM 2008 - Casos de Sucesso SugarCRM Portugal
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM PortugalDRI - Discovery/Reinvention/Integration/
 
Angeles and devils dis
Angeles and devils disAngeles and devils dis
Angeles and devils disMiguel Angel Cubas Bohorquez
 
Precio valor calidad
Precio valor calidadPrecio valor calidad
Precio valor calidadmariacamilabedoyacsj
 
Agenda digital
Agenda digitalAgenda digital
Agenda digitalLili Gil
 
Trabajo en equipo camila bedoya
Trabajo en equipo camila bedoyaTrabajo en equipo camila bedoya
Trabajo en equipo camila bedoyamariacamilabedoyacsj
 
Edt 574 assignment 2.4
Edt 574 assignment 2.4Edt 574 assignment 2.4
Edt 574 assignment 2.4tsalter28
 
Reference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_EnReference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_EnRajesh ASHANI
 
ETA 1994 Certification Administrator
ETA 1994 Certification AdministratorETA 1994 Certification Administrator
ETA 1994 Certification AdministratorRon Hessman
 
Mcbj1
Mcbj1Mcbj1
Mcbj1mariacamilabedoyacsj
 
Underlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärendeUnderlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärendeMarcus Jerräng
 
marketing lateral
marketing lateralmarketing lateral
marketing lateralNestorRecinos
 

More Related Content

What's hot

Infrastructure Business Management Insight
Infrastructure Business Management InsightInfrastructure Business Management Insight
Infrastructure Business Management InsightReportLinker.com
 
Report on Dasborad & scorecard
Report on Dasborad & scorecardReport on Dasborad & scorecard
Report on Dasborad & scorecardNewGate India
 
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...Alessandro Vigilante
 
01 content analytics-iw2015
01 content analytics-iw201501 content analytics-iw2015
01 content analytics-iw2015Kaizenlogcom
 
Functional Design Specification v2_pvt
Functional Design Specification v2_pvtFunctional Design Specification v2_pvt
Functional Design Specification v2_pvtSandra Willms
 
Expanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business StrategiesExpanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business StrategiesBaker Khader Abdallah, PMP
 
Extending capture capabilities measuring the roi
Extending capture capabilities measuring the roiExtending capture capabilities measuring the roi
Extending capture capabilities measuring the roiVander Loto
 

What's hot (10)

Global Epigenetics Market
Global Epigenetics MarketGlobal Epigenetics Market
Global Epigenetics Market
 
Infrastructure Business Management Insight
Infrastructure Business Management InsightInfrastructure Business Management Insight
Infrastructure Business Management Insight
 
CRISPR Gene Editing Market
CRISPR Gene Editing MarketCRISPR Gene Editing Market
CRISPR Gene Editing Market
 
Report on Dasborad & scorecard
Report on Dasborad & scorecardReport on Dasborad & scorecard
Report on Dasborad & scorecard
 
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
IDC (sponsored by COLT Telecom): High Quality Network: A Prerequisite for Uni...
 
3D Web
3D Web3D Web
3D Web
 
01 content analytics-iw2015
01 content analytics-iw201501 content analytics-iw2015
01 content analytics-iw2015
 
Functional Design Specification v2_pvt
Functional Design Specification v2_pvtFunctional Design Specification v2_pvt
Functional Design Specification v2_pvt
 
Expanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business StrategiesExpanding Businesses by Integrating e-Business Strategies
Expanding Businesses by Integrating e-Business Strategies
 
Extending capture capabilities measuring the roi
Extending capture capabilities measuring the roiExtending capture capabilities measuring the roi
Extending capture capabilities measuring the roi
 

Viewers also liked

Trastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajoTrastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajoMutua Montañesa
 
Agenda digital
Agenda digitalAgenda digital
Agenda digitalLili Gil
 
Edt 574 assignment 2.4
Edt 574 assignment 2.4Edt 574 assignment 2.4
Edt 574 assignment 2.4tsalter28
 
Reference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_EnReference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_EnRajesh ASHANI
 
ETA 1994 Certification Administrator
ETA 1994 Certification AdministratorETA 1994 Certification Administrator
ETA 1994 Certification AdministratorRon Hessman
 
Underlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärendeUnderlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärendeMarcus Jerräng
 
( Espiritismo) e a e - aula 37 # a genese da alma # 01
( Espiritismo) e a e - aula 37 # a genese da alma # 01( Espiritismo) e a e - aula 37 # a genese da alma # 01
( Espiritismo) e a e - aula 37 # a genese da alma # 01Alencar Santana
 
議題一02:引言簡報 蘇漢邦所長
議題一02:引言簡報 蘇漢邦所長議題一02:引言簡報 蘇漢邦所長
議題一02:引言簡報 蘇漢邦所長正吉 詹
 
Tipos de turismo
Tipos de turismoTipos de turismo
Tipos de turismovalejulissa
 

Viewers also liked (18)

Trastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajoTrastornos musculo-esqueléticos en el trabajo
Trastornos musculo-esqueléticos en el trabajo
 
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM Portugal
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM PortugalEvento SugarCRM 2008 - Casos de Sucesso SugarCRM Portugal
Evento SugarCRM 2008 - Casos de Sucesso SugarCRM Portugal
 
Angeles and devils dis
Angeles and devils disAngeles and devils dis
Angeles and devils dis
 
Precio valor calidad
Precio valor calidadPrecio valor calidad
Precio valor calidad
 
Agenda digital
Agenda digitalAgenda digital
Agenda digital
 
Trabajo en equipo camila bedoya
Trabajo en equipo camila bedoyaTrabajo en equipo camila bedoya
Trabajo en equipo camila bedoya
 
Edt 574 assignment 2.4
Edt 574 assignment 2.4Edt 574 assignment 2.4
Edt 574 assignment 2.4
 
Reference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_EnReference_letter_Saliou_signed_En
Reference_letter_Saliou_signed_En
 
ETA 1994 Certification Administrator
ETA 1994 Certification AdministratorETA 1994 Certification Administrator
ETA 1994 Certification Administrator
 
Mcbj1
Mcbj1Mcbj1
Mcbj1
 
Underlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärendeUnderlag för yttrandet till Polisen i arbetsmiljöärende
Underlag för yttrandet till Polisen i arbetsmiljöärende
 
marketing lateral
marketing lateralmarketing lateral
marketing lateral
 
( Espiritismo) e a e - aula 37 # a genese da alma # 01
( Espiritismo) e a e - aula 37 # a genese da alma # 01( Espiritismo) e a e - aula 37 # a genese da alma # 01
( Espiritismo) e a e - aula 37 # a genese da alma # 01
 
Curso de costura
Curso de costuraCurso de costura
Curso de costura
 
議題一02:引言簡報 蘇漢邦所長
議題一02:引言簡報 蘇漢邦所長議題一02:引言簡報 蘇漢邦所長
議題一02:引言簡報 蘇漢邦所長
 
Cardápio Na Praça
Cardápio Na PraçaCardápio Na Praça
Cardápio Na Praça
 
Tipos de turismo
Tipos de turismoTipos de turismo
Tipos de turismo
 
ridhi_catalog_-_Final
ridhi_catalog_-_Finalridhi_catalog_-_Final
ridhi_catalog_-_Final
 

Similar to 5 2 Mobile Veteran Facing Applications Design Pattern Signed 4Nov2015

Delphix modernization whitepaper
Delphix modernization whitepaperDelphix modernization whitepaper
Delphix modernization whitepaperFranco_Dagosto
 
Blood Donors and Receivers Management System
Blood Donors and Receivers Management SystemBlood Donors and Receivers Management System
Blood Donors and Receivers Management SystemIRJET Journal
 
IRJET- Trend Analysis on Twitter
IRJET- Trend Analysis on TwitterIRJET- Trend Analysis on Twitter
IRJET- Trend Analysis on TwitterIRJET Journal
 
200 ok Solutions urban-app-ios-case-study
200 ok Solutions urban-app-ios-case-study200 ok Solutions urban-app-ios-case-study
200 ok Solutions urban-app-ios-case-study200oksolutions
 
Smart Traffic Monitoring System Report
Smart Traffic Monitoring System ReportSmart Traffic Monitoring System Report
Smart Traffic Monitoring System ReportALi Baker
 
The Complete Guide to Embedded Analytics
The Complete Guide to Embedded AnalyticsThe Complete Guide to Embedded Analytics
The Complete Guide to Embedded AnalyticsJessica Sprinkel
 
Mobile App Virtualization (MAV)
Mobile App Virtualization (MAV) Mobile App Virtualization (MAV)
Mobile App Virtualization (MAV) Michael P. Gagnon
 
IRJET- City Complaint Management System
IRJET- City Complaint Management SystemIRJET- City Complaint Management System
IRJET- City Complaint Management SystemIRJET Journal
 
The Evolving Role of the Network Engineer - Jon Hudson
The Evolving Role of the Network Engineer - Jon HudsonThe Evolving Role of the Network Engineer - Jon Hudson
The Evolving Role of the Network Engineer - Jon Hudsonscoopnewsgroup
 
India Energy Security Scenarios Calculator - BTech Project
India Energy Security Scenarios Calculator - BTech ProjectIndia Energy Security Scenarios Calculator - BTech Project
India Energy Security Scenarios Calculator - BTech ProjectAditya Gupta
 
Future of IIoT Predictive Maintenance Study
Future of IIoT Predictive Maintenance StudyFuture of IIoT Predictive Maintenance Study
Future of IIoT Predictive Maintenance StudyPresenso
 
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.com
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.comCmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.com
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.comULLPTT
 
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...IJERA Editor
 

Similar to 5 2 Mobile Veteran Facing Applications Design Pattern Signed 4Nov2015 (20)

Delphix modernization whitepaper
Delphix modernization whitepaperDelphix modernization whitepaper
Delphix modernization whitepaper
 
Blood Donors and Receivers Management System
Blood Donors and Receivers Management SystemBlood Donors and Receivers Management System
Blood Donors and Receivers Management System
 
IRJET- Trend Analysis on Twitter
IRJET- Trend Analysis on TwitterIRJET- Trend Analysis on Twitter
IRJET- Trend Analysis on Twitter
 
200 ok Solutions urban-app-ios-case-study
200 ok Solutions urban-app-ios-case-study200 ok Solutions urban-app-ios-case-study
200 ok Solutions urban-app-ios-case-study
 
Final Proposal
Final ProposalFinal Proposal
Final Proposal
 
Smart Traffic Monitoring System Report
Smart Traffic Monitoring System ReportSmart Traffic Monitoring System Report
Smart Traffic Monitoring System Report
 
The Complete Guide to Embedded Analytics
The Complete Guide to Embedded AnalyticsThe Complete Guide to Embedded Analytics
The Complete Guide to Embedded Analytics
 
FinalProjectReport
FinalProjectReportFinalProjectReport
FinalProjectReport
 
NarendraKolla
NarendraKollaNarendraKolla
NarendraKolla
 
Mobile App Virtualization (MAV)
Mobile App Virtualization (MAV) Mobile App Virtualization (MAV)
Mobile App Virtualization (MAV)
 
IRJET- City Complaint Management System
IRJET- City Complaint Management SystemIRJET- City Complaint Management System
IRJET- City Complaint Management System
 
The Evolving Role of the Network Engineer - Jon Hudson
The Evolving Role of the Network Engineer - Jon HudsonThe Evolving Role of the Network Engineer - Jon Hudson
The Evolving Role of the Network Engineer - Jon Hudson
 
AIRPORT MANAGEMENT USING FACE RECOGNITION BASE SYSTEM
AIRPORT MANAGEMENT USING FACE RECOGNITION BASE SYSTEMAIRPORT MANAGEMENT USING FACE RECOGNITION BASE SYSTEM
AIRPORT MANAGEMENT USING FACE RECOGNITION BASE SYSTEM
 
India Energy Security Scenarios Calculator - BTech Project
India Energy Security Scenarios Calculator - BTech ProjectIndia Energy Security Scenarios Calculator - BTech Project
India Energy Security Scenarios Calculator - BTech Project
 
Future of IIoT Predictive Maintenance Study
Future of IIoT Predictive Maintenance StudyFuture of IIoT Predictive Maintenance Study
Future of IIoT Predictive Maintenance Study
 
altowebWhitePaper
altowebWhitePaperaltowebWhitePaper
altowebWhitePaper
 
EY-Performance-Products
EY-Performance-ProductsEY-Performance-Products
EY-Performance-Products
 
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.com
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.comCmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.com
Cmgt 554 cmgt554 cmgt 554 forecasting and strategic planning -uopstudy.com
 
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...
Is ‘Enterprise Mobility’ The Way Forward For Enterprises? Part I: Findings an...
 
project plan
project planproject plan
project plan
 

5 2 Mobile Veteran Facing Applications Design Pattern Signed 4Nov2015

  • 1. VA Enterprise Design Patterns: 5. Enterprise Mobility 5.2. Mobile Veteran-Facing Applications Office of Technology Strategies (TS) Architecture, Strategy, and Design (ASD) Office of Information and Technology (OI&T) Version 1.0 Date Issued: November 4, 2015
  • 2. THIS PAGE INTENTIONALLY LEFT BLANK FOR PRINTING PURPOSES
  • 3. = APPROVAL COORDINATION TIMOTHY L MCGRAIL 111224 Olg1to1lly519nedby TIMOTHY l MCGAAJL 111224 ON ck=gov.dc.•vJ1,o-fnlttn1I. OU•, :..i:::. ;.f'L1 9 t• Date: 111224 0.1t:201S 101310:0S4S-04'00' Tim McGrail Senior Program Analyst ASD Technology Strategies Paul A. Tibbits, M.D. DCIO Architecture, Strategy, and Design
  • 4. REVISION HISTORY Version Date Organization Notes 0.1 3/17/2015 ASD TS Initial Draft 0.5 4/30/2015 ASD TS Second draft document with updates made throughout document based upon initial internal/external stakeholder review and comment. 0.7 8/31/2015 ASD TS Third and final draft for stakeholder review prior to TS leadership approval/signature. Updates made following Public Forum collaborative feedback and working session. 1.0 ASD TS Final version for TS leadership approval and signature, including all applicable updates addressing stakeholder feedback and Section 508 Compliance. REVISION HISTORY APPROVALS Version Date Approver Role 0.1 3/17/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.5 4/30/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.7 6/9/2015 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 0.9 Nicholas Bogden ASD TS Mobile Veteran-Facing Design Pattern Lead 1.0 11/03/15 Tim McGrail ASD TS Design Pattern Final Reviewer
  • 5. TABLE OF CONTENTS 1.0 INTRODUCTION.........................................................................................................................................1 1.1 BUSINESS NEED........................................................................................................................................................1 1.2 APPROACH ..............................................................................................................................................................1 2.0 CURRENT CAPABILITIES AND LIMITATIONS................................................................................................1 3.0 FUTURE CAPABILITIES ......................................................................................................................................3 3.1 MOBILE STRATEGY FOR VETERAN-FACING APPLICATIONS ..................................................................................................3 3.2 USER EXPERIENCE .....................................................................................................................................................4 3.3 TYPE OF APPLICATIONS ..............................................................................................................................................5 3.3 CENTRALIZED APPLICATION STORE ..................................................................................................................................... 5 3.4 SCALABLE AND SECURE INFRASTRUCTURE.......................................................................................................................5 3.5 ANALYTICS AND METRICS ...........................................................................................................................................6 4.0 USE CASES .................................................................................................................................................6 APPENDIX A. BACKGROUND INFORMATION....................................................................................................11 SCOPE........................................................................................................................................................................11 INTENDED AUDIENCE.....................................................................................................................................................11 DOCUMENT DEVELOPMENT AND MAINTENANCE.................................................................................................................12 APPENDIX B. DEFINITIONS ............................................................................................................................... 13 APPENDIX C. ACRONYMS................................................................................................................................. 14 APPENDIX D. REFERENCES, STANDARDS AND POLICIES....................................................................................16 FIGURES Figure 1: Phased Roadmap to address Current Limitations ..........................................................................3 Figure 2: Use Case #1 - Veteran Updates Address ........................................................................................8 Figure 3: Use Case #2 - Veteran Accesses Data Across Lines of Business....................................................10 TABLES Table 1: Current Set of Veteran-Facing Applications.....................................................................................2
  • 6. Page 1 1.0 INTRODUCTION Secretary Robert A. MacDonald observed in his 2014 MyVA Presentation that “Assessments informing the [2014-2020] strategic plan told us VA often provides a fragmented, disjointed experience that result in poor customer service and frustrated Veterans and beneficiaries.” The Secretary described how Veterans and their beneficiaries take on the burden of serving as their own integration point for “multiple VAs.” Extending VA’s enterprise resources to an increasingly technology-savvy and mobile Veteran population is a high priority for achieving strategic goals stemming from the MyVA initiative. The purpose of this Enterprise Design Pattern is to establish an enterprise direction for Veteran- facing mobile computing using enterprise services and common Information Technology (IT) infrastructure platforms. This document focuses on technical capabilities supporting the “external user” component of the Mobile Architecture Design Pattern (see Appendix A). This document provides guidance on the use of a standardized mobile solution via an enterprise-- wide mobile middleware platform capable of supporting a robust, Veteran-centric customer experience. 1.1 Business Need Veteran-facing mobile applications will help VA close the “mobile” infrastructure gap outlined in the Enterprise Technology Strategic Plan (ETSP) and move the VA towards a future-state IT vision supporting all VA lines of business. Extending enterprise resources to mobile devices requires consistent visibility of Veteran data and a central location to update this information. Veterans require a single access point to review their data and update personal information. A single access point reduces the burden on VA employees who are manually assisting and updating information for Veterans. 1.2 Approach Achieving a robust mobile infrastructure requires a multi-year initiative supported by Office of Information & Technology (OI&T) and Administration leadership that encompasses strategy, governance, and technology investments. Simply migrating the current commercial off-the- shelf (COTS) mobile middleware platform to a new platform is insufficient for resolving the current capability limitations discussed in Section 2. Section 3 includes a phased approach to establishing future-state capabilities based on industry best practices for public-facing applications. 2.1 CURRENT CAPABILITIES AND LIMITATIONS The following figure presents the current set of applications Veterans can download from public application stores. These applications include both native (e.g., iOS, Android) mobile applications and HTML5-based mobile websites. These applications require validated external user credentials, including DoD Self-Service Logon (DS Logon), for accessing enterprise data.
  • 7. Page 2 Requires DoD Self Service Logon Account to log in 14 Mobile Applications are available on the Public App Store, 10 of these are available on iOS only Launchpad (Web App) ACT Coach (iOS) Mindfulness Coach (iOS) PTSD Coach (iOS, Android) Airborne Hazards & Open Burn Pit Registry (Web App) CBT-I Coach (iOS) Moving Forward (iOS) StayQuit Coach (iOS) Mobile Blue Button (Web App) Concussion Coach (iOS) Parenting2Go (iOS) 311 Vet (iOS, Android) Summary of Care (Web App) CPT Coach (iOS) PE Coach (iOS, Android) Move! Coach (iOS) Veteran Appointment Request (Web App) Exposure Ed (iOS) PFA Mobile (iOS, Android) Table 1: Current Set of Veteran-Facing Applications These applications provide a wide range of functionality to Veterans, however, the current architecture and runtime environments limit this mobile experience supporting the MyVA initiative. The limitations are as follows: • Inconsistent Single Sign-On: Currently, five Veteran-facing applications provide access to electronic health records (EHRs). While the Launchpad application is intended to provide a Veteran access to applications requiring access to EHRs, gaining access to MyHealtheVet and eBenefits from this portal requires a secondary login. • Limited User Experience: Applications are developed to address business requirements with general assumptions about user interests. Applications are not shared with Veterans for feedback until late in the development process, or after launch. • Lack of Multi-Platform availability: Over 50 percent of applications are iOS only, limiting the availability to Veterans with phones using other operating systems. • Lack of scalable infrastructure: Current systems can only support 3,500 concurrent Veteran log-ins. • Limited User Analytics: Analytics are only available for iOS Applications. • Non-standard Veteran-Facing Application Maintenance: Applications have a three- month support period after which they become the responsibility of the business owner. There is no operations and maintenance support of applications beyond three months. • Lengthy Compliance Reviews: The complexity of systems and the lack of a comprehensive testing capability, impact the current compliance turn-around times.
  • 8. Page 3 Applications currently spend a minimum 33 percent of the development cycle in compliance review. 3.0 FUTURE CAPABILITIES The phased approach to achieve future-state mobile capabilities to address limitations in Section 2 is as follows: Figure 1: Phased Roadmap to address Current Limitations 3.1 Mobile Strategy for Veteran-facing Applications The initial phase focuses on establishing an enterprise mobile strategy addressing technology, governance, compliance and security, and support as shown in Figure 1. VA is currently deploying Enterprise Shared Services (ESS) to support Veteran-facing applications, and VA will expand on them in the next three years. These services include support for standardized authentication and authorization (A&A) and scalable, enterprise-wide mobile middleware to support automated development and operations (DevOps), standardized analytics, and an
  • 9. Page 4 enhanced mobile application store (Phases 2 and 3). Mobile middleware provided as an ESS supports the strategy through the following actions: (Near-Term): • ESS are established within the enterprise IT Infrastructure and are available to all approved applications and devices for authenticated users. Requires the appropriate authorizations for access. (Mid-Term): • Continued prioritization and execution of enhancements to old applications. Ensure capability of new applications to use ESS, as shown in the use case in Section 4. • Enhance Identity and Access Management (IAM) for external users to ensure secure A&A provided as an ESS. Continue enhancing legacy applications and ensure capability of new applications to use ESS for A&A. (End-State): • Device-agnostic application development using HTML5 integrated with ESS. • Enterprise compliance with procedures and policy for management of VA IT organizational processes including Risk Management, Change Management, and Disaster Recovery. • All applications leverage centrally managed IT controls for mobile acquisitions of hardware, software and infrastructure integrated with A&A ESS. The following subsections provide context for the requirements that future-state technical capabilities satisfy to resolve the Veteran-facing application limitations in Section 2. 3.2 User Experience User experience is the process of enhancing the usability, accessibility, and interaction between the Veteran and the application. User experience comprises information architecture and visual design, and VA’s requirements for Veteran-facing applications are as follows: • Establish Focus Groups: Divide the Veteran population into focus groups. Generate a unique persona from each focus group. Build use cases on the personas and define how the system needs to act. • Define a Service Request Capability: A Veteran issues a “service request” for the requested information. A service request for information is made to the existing database and presented to the Veteran. • Design logical Information Architecture: Prioritize main features and contents on the landing page according to the Veteran’s needs. Enable Veterans to navigate to the most important content and functionality in as few steps as possible. • Leverage Device Capability: Use device features and capabilities to support the Veteran’s context of use. Accommodate for changes in context depending on time of the day and when the Veteran is using the application. Use location to identify where the Veteran is and display relevant content.
  • 10. Page 5 • Provide Offline Data Access: An enterprise mobile app needs to support offline data access and maintain data integrity. Applications should have an encrypted database for short-lived data inside the app. This approach will address security concerns due to data at rest while providing vital information to a Veteran when offline. • Enable Always-On Virtual Private Network (VPN): A Veteran currently enters credentials as many as three times to access data and again submits credentials when switching networks or whenever the phone goes into a sleep mode. The security of an Always-On VPN improves user experience without compromising security. 3.3 Type of Applications Services will be consolidated so that Veterans have one interface to access and acquire the status of services and capabilities. A Veteran will be able to access information when offline (e.g., appointments). Applications will provide a temporary cache to store any updates as a Veteran moves between networks or is temporarily without network coverage. Uninterrupted access to relevant data improves customer experience. Veteran-facing applications use a mobile platform with one code base to support multiple operating systems (i.e., IOS, Android, Windows, etc.) and devices. • Informational Applications: All informational applications need to be web applications. HTML5 based applications are device agnostic and provide cross platform support. • Transactional Application: Consolidated services will provide Veterans one main application to transact and retrieve status on services and capabilities available to them. A native application with the ability to temporarily cache data delivers an increased user experience. 3.3 Centralized Application Store A centralized application store will allow VA to more securely manage and distribute Veteran- facing applications to Veteran’s devices from a central location ensuring: • Mobile application discovery and distribution • Multiple Platform Support • User authentication for application installation • Over-the-Air application installation, configuration, and updates • Over-the-Air application removal for Veterans’ devices • End to end application management 3.4 Scalable and Secure Infrastructure Veteran-facing applications require the following mobile infrastructure requirements to support the business needs:
  • 11. Page 6 • Deploy Mobile Middleware: Implement Scalable Mobile middleware by leveraging backend Service-oriented Architecture (SOA) services and security capabilities. An enterprise mobile middleware platform will support increased user availability. • Adopt Single Sign-On: A Federated identity management system and a transition to IAM Single Sign-On (AccessVA) will facilitate the sharing of identity information across administrative boundaries. A Veteran will be able to login with a single set of credential to access the authorized services provided they have the right level of assurance. • Establish Mobile Application Management: Veterans will be able to access ESS and data through their mobile applications. Mobile Application Management ensures application security and remote application management. • Enforce Multi-Device and Multi-Channel Support: Veteran’s applications work on any device, instantly and seamlessly. This multi-channel approach provides users access to available infromation, with a consistent user experience. Transitioning to cross-platform development tools and an integration infrastructure will support a multichannel environment 3.5 Analytics and Metrics Veteran-facing applications require the following analytics to support business needs: • Define Metrics: Identify application performance metrics and usage metrics to demonstrate application adoption. Track application performance across multiple devices and device versions. Data providing metrics on slow web service calls, network performance, and service request performance will provide the information to evaluate the capacity of the infrastructure to support an increasing user base. • Create Standardized Analytics: A standardized platform will allow Veteran usage data to be assessed over a variety of parameters. This platform will provide a single view of application usage that will help understand Veteran data access patterns. 4.1 USE CASES The Veteran-facing application use cases demonstrate how a Veteran’s application will support ESS in accordance with the VA Enterprise Technical Architecture. Use Case Use Data Sensitivity Veteran accesses, creates, or modifies personal non-public data Veteran/caregiver accessing medical and patient data using a mobile device for medication and related care information, preventative care. This could also be a Veteran accessing Chapter 33 or other non-health benefits; Right information at the right time for the proper care. VA Sensitive Data (SPI)/Personal Health Information (PHI) Administratively Confidential Information (ACI) (aka. PGD/IAM– DS/Logon/SSOe/OAuth)
  • 12. Page 7 Use Case # 1 • A Veteran initiates a change of address through a mobile application to reflect the Veteran’s move from the Washington, DC area to the San Francisco, CA area. • The Veteran can login using existing credentials established on VA systems or using an external approved Credential Service Provider (CSP). • Veteran’s token is validated and the CSP brokers the connection between the Veteran and the application. • In the brokered connection, user information is passed to single sign on external (SSOe) integrated applications in HTTP headers, called SSOe Tokens. • A data message is sent from the application through authoritative information services down to the data layer. • The message is processed by the Enterprise Create, Read, Update, Delete (eCRUD) service, which writes the address change to the data lake and also to the ADS for Veteran addresses. User Experience: Veteran Makes on single change securely that is updated across all VA systems
  • 13. Page 8 Figure 2: Use Case #1 - Veteran Updates Address
  • 14. Page 9 Use Case # 2 • A Veteran accesses his or her medical prescription and then looks for benefits information through a mobile application. • The Veteran can login using existing credentials established on VA systems or using an external approved Credential Service Provider. • Veteran’s token is validated and the CSP brokers the connection between the Veteran and the application. • In the brokered connection, user information is passed to SSOe integrated applications in HTTP headers, called SSOe Tokens. • Veteran selects option to view list of his or her prescriptions. Applications calls on authoritative information services to access VistA for prescription records associated with Veteran’s Veteran Health Administration (VHA) patient Identification (ID). Veteran can now view the information. • Veteran now selects an option to view current benefits. Application calls on shared services to retrieve Veteran’s benefit information. Information is displayed on the mobile device. User Experience: Veteran accesses a single application to access critical information pertinent to the Veteran. Veteran securely logs on using credentials previously established on an existing VA system.
  • 15. Page 10 Figure 3: Use Case #2 - Veteran Accesses Data Across Lines of Business
  • 16. Page 11 Appendix A.BACKGROUND INFORMATION Scope This Enterprise Design Pattern document provides an enterprise-level view of the current and future mobile capabilities relevant to Veteran-facing mobile applications and the standard processes in use. The document will refer to, rather than duplicate, lower-level solution guidance associated with these capabilities. This document focuses on: • A set of use cases that will allow Veterans to have access to VA services and their personal data through a single point of access or mobile gateway (i.e., VAMF). • Veteran-facing mobile applications that are device agnostic, and will be able to perform on a wide variety of mobile devices that are commonly used by Veterans. • What application development and deployment capabilities and constraints will need to be considered to provide application access to available ESS. • Guidance that ensures a framework for seamless, Veteran-facing, user experience applicable to both internal VA mobile application development and 3rd party mobile application developers. This Enterprise Design Pattern represents the external, Veteran-facing component of the overarching Mobile Architecture Design Pattern. The Enterprise Design Pattern document is generally applicable across all VA Lines of Business (LOB) and describes: • Current VA mobile capabilities • VA mobile infrastructure • Processes to be used by the developers and the Veteran • Enterprise-level mobile constraints, strategic guidance, and terminology This Enterprise Design Pattern document does not address detailed technical solution guidance for implementing specific mobile applications. It will only provide the constraints to drive VA projects towards development of mobile solutions that effectively meet the specific goals of their initiatives. Topics that are out of scope for this Enterprise Design Pattern, but may be referenced, are: • Mobile applications used by doctors, clinicians, and care-givers • Mobile applications used by VA staff • Interactions between wearable devices that produce patient generated data • Certification processes for fielding applications • Mobile security, including SSO Intended Audience The document is applicable to all programs and key stakeholders involved in developing and supporting mobile applications for Veterans across VA.
  • 17. Page 12 Document Development and Maintenance This document was developed collaboratively with internal stakeholders from across the Department and included participation from VA’s Office of Information and Technology (OI&T), Product Development (PD), Office of Information Security (OIS), Architecture, Strategy and Design (ASD), and Service Delivery and Engineering (SDE). Extensive input and participation was also received from VHA, Veteran Benefits Association (VBA), and National Cemetery Administration (NCA). In addition, the development effort included engagements with industry experts to review, provide input, and comment on the proposed pattern. This document contains a revision history and revision approval logs to track all changes. Updates will be coordinated with the Government lead for this document, which will also facilitate stakeholder coordination and subsequent re-approval depending on the significance of the change.
  • 18. Page 13 Appendix B.DEFINITIONS Key Term Definition Enterprise Shared Service A SOA service that is visible across the enterprise and can be accessed by users across the enterprise, subject to appropriate security and privacy restrictions. http://vaww.ea.OI&T.va.gov/enterprise-shared-services-service- oriented-architecture/ Service A mechanism to enable access to one or more capabilities, where the access is provided using a prescribed interface and is exercised consistent with constraints and policies as specified by the service description. Service Oriented Architecture A paradigm for organizing and utilizing distributed capabilities that may be under the control of different ownership domains. It provides a uniform means to offer, discover, interact with and use capabilities to produce desired effects consistent with measurable preconditions and expectations.
  • 19. Page 14 Appendix C. ACRONYMS The following table provides a list of acronyms used within this document. Acronym Description AA&A Authentication, Authorization and Audit ACI Administratively Confidential Information ASD Architecture, Strategy and Design ADS Authoritative Data Sources ATO Authority to Operate BPE Business Partner Extranet COTS Commercial Off the Shelf EA Enterprise Architecture EAA Enterprise Application Architecture EHR Electronic Health Record eMI Enterprise Messaging Infrastructure EMM Enterprise Mobility Management ESCCB Enterprise Security Change Control Board ESS Enterprise Shared Services ETA Enterprise Technical Architecture ETSP Enterprise Technology Strategic Plan FHIR Fast Healthcare Interoperability Resource FIPS Federal Information Processing Standards FISMA Federal Information Security Management Act FOUO For Official Use Only GFE Government Furnished Equipment IaaS Infrastructure-as-a-Service IAM Identity and Access Management IPT Integrated Project Team IT Information Technology LOB Line of Business MA Mobile Application MADP Mobile Application Development Platform MAGB Mobile Application Governance Board MAE Mobile Application Environment MAM Mobile Application Management MAP Mobile Application Program MARA Mobile Application Reference Architecture MAS Mobile Application Store MDM Mobile Device Management MHED Mobile Health External Development MVI Master Veteran Index NCA National Cemetery Administration NSOC Network Security Operations Center OIS Office of Information Security
  • 20. Page 15 Acronym Description OI&T Office of Information and Technology OEF Operation Enduring Freedom PGD Patient Generated Data PHI Protected Health Information PII Personally Identifiable Information PIV Personal Identity Verification PMAS Project Management Accountability System SAML Security Assertion Markup Language SDD System Design Document SDE Service Delivery and Engineering SDLC Software Development Lifecycle SLA Service Level Agreement SOA Service-Oriented Architecture SPI Sensitive Personal Information SSO Single Sign-On – SSOe/SSOi: External and Internal designations TIC Trusted Internet Connection TRM Technical Reference Model VAMF VA Mobile Framework VBA Veteran Benefits Association VHA Veteran Health Administration VistA Veterans Health Information Systems and Technology Architecture VLER Virtual Lifetime Electronic Record VPN Virtual Private Network
  • 21. Page 16 Appendix D.REFERENCES, STANDARDS AND POLICIES # Issuing Agency Applicable Reference/Standard Purpose 1 VA OIS VA 6500 Handbook Directive from the OI&T OIS for establishment of an information security program in the VA, which applies to all applications that leverage ESS. http://www1.va.gov/vapubs/viewPublication.asp?Pub_ID=56 2 CIO Council Government Mobile and Wireless Security Baseline This document explains the essential elements of mobile computing (devices, access networks, agency infrastructure), and describes threats and risks to mobile computing. https://cio.gov/wp- content/uploads/downloads/2013/05/Federal-Mobile- Security-Baseline.pdf 4 CIO Council Mobile Security Reference Architecture (MSRA) The MSRA has been released by the Federal CIO Council and the Department of Homeland Security (DHS) to assist Federal Departments and Agencies (D/As) in the secure implementation of mobile solutions through their enterprise architectures. https://cio.gov/wp- content/uploads/downloads/2013/05/Mobile-Security- Reference-Architecture.pdf 5 VA MAP VA Mobile Framework System Design Document The VA Mobile Framework (VAMF) provides the infrastructure to allow VA Apps to be hosted in a standard architectural framework. It provides software services, including authentication of users and retrieval and updating of data within VA. https://mobile.va.gov/content/mobile-app-environment-and- services