Discussions

Specifically, for the health wallet app I pick, I’d like guidance on threat models (lost/stolen phone, malware, account takeover), consent and granular sharing (time-limited links, role-based access for doctors vs. family), true end-to-end encryption with non-exportable keys, and zero-knowledge recovery that doesn’t rely on plain email resets. How important is interoperability in practice (FHIR/SMART on FHIR, CDA, DICOM imaging, vaccine QR formats), and what should I test to confirm it works across clinics, pharmacies, and cross-border travel? What about data residency options (EU/US), offline-first behavior, multi-device sync without exposing secrets, emergency access that’s auditable, and revocation after sharing? Finally, which red flags should disqualify a vendor (no security whitepaper, unclear breach response, opaque analytics, lack of export), and do you have examples of wallets that handled real hospital workflows well (check-in, eRx pickup, prior auth) versus those that looked good on paper but failed in the clinic?