Direct Secure Messaging, commonly referred to as Direct, is a secure communication transport mechanism for sensitive information over the open internet. While appearing like email, Direct utilizes digital certificates and a Public Key Infrastructure (PKI) to encrypt the contents of a message, meaning only the intended recipient can decrypt the message.
DirectTrust maintains a secure communication network for exchange between trusted partners. DirectTrust federates that trust by accrediting the Health Information Service Providers, or HISPs, that operate as part of the network in what’s referred to as a trust bundle, eliminating the need for point-to-point agreements between each HISP. Accredited HISPs can issue identity-proofed Direct Addresses for communication in accordance with DirectTrust policies. DirectTrust also acts as a governance body, using member consensus to update and enforce policy.