============================================================================= Run Date: MAY 24, 2016 Designation: PREC*6*1 Package : PREC - PHARMACY ENTERPRISE CUSTOM S Priority: Mandatory Version : 6 SEQ #1 Status: Released Compliance Date: JUN 24, 2016 ============================================================================= Subject: PEC 6.0.01 Category: - Other - Enhancement (Mandatory) - Informational Description: ============ Pharmacy Enterprise Customization System (PECS) is a Java 2 Enterprise Edition (J2EE) application used to research, review, report, and manage customized drug information from First Data Bank's (FDB) MedKnowledge Framework (formerly Drug Information Framework (DIF)), which is a Commercial-off-the-Shelf (COTS) product, used in the enhanced order checking process. The PECS application, through a web-based Graphical User Interface (GUI), allows VHA pharmacists and clinicians to research and request custom changes to Drug-Drug Interaction, Drug Pairs, Dose Range, Duplicate Therapy, and Professional Monograph records, controlling access through a role based authorization. VHA Pharmacy Benefits Management (PBM) periodically (as needed in support of VA procedures and priorities) prepare, review and approve the customizations, which result in VA Custom drug data, which will supersede or enhance the industry standard FDB-drug data. PECS v6.0 includes New Functionality and Enhancements to the system to provide better data integrity. It will include fixes to security vulnerabilities identified by HPE Fortify Static Code Analyzer 4.42 with rulepacks 2015.4.0.0008. Changes for this release are: New Functionality * Implement sFTP for PECS, MOCHA Server, and DATUP * WebLogic version Upgrade for PECS per TRM recommendation * Implement design solution Comparison Report- redesigns PECS Enhancements * Enhance User Roles functionality * Enhancements for PECS Easy Search Dose Range: Add links to PECS records from search results * Resolution of export query results limitations in Excel format * Corrected cross-site-scripting vulnerabilities. * Corrected open redirect vulnerabilities. Impacts to Administrators, Pharmacists and Clinicians: 1. As a PECS Administrator, I would like the Approver, Release Manager and Administrator functionality to only allow access to users defined in the User Roles table with the role assigned so that a user with any of these keys in VistA would not be able to perform the role-specific functions without the corresponding User Roles definition in PECS. 2. Multiple PECS roles can be assigned to a user. 3. A user must have a corresponding VistA Security Key to have a PECS role of Approver, Release Manager, or Administrator 4. As a PECS User, I would like a link to the corresponding PECS record from the Easy Search Dose Range results page so that I can access the PECS record. Patch Components: ----------------- N/A Files & Fields Associated: File Name (Number) Field Name (Number) New/Modified/Deleted ------------------ ------------------- -------------------- N/A Forms Associated: Form Name File # New/Modified/Deleted --------- ------ -------------------- N/A Mail Groups Associated: Mail Group Name New/Modified/Deleted --------------- -------------------- N/A Options Associated: Option Name Type New/Modified/Deleted ----------- ---- -------------------- N/A Protocols Associated: Protocol Name New/Modified/Deleted ------------- -------------------- N/A Security Keys Associated: Security Key Name ----------------- N/A Templates Associated: Template Name Type File Name (Number) New/Modified/Deleted ------------- ---- ------------------ -------------------- N/A Additional Information: N/A New Service Requests (NSRs): ---------------------------- N/A Patient Safety Issues (PSIs): ----------------------------- N/A Remedy Ticket(s) & Overview: ---------------------------- N/A Problem: ------- N/A Resolution: ---------- N/A Test Sites: ---------- Chillicothe VAMC Mann-Grandstaff VAMC Nebraska/Western Iowa HCS (Omaha) Software and Documentation Retrieval Instructions: ---------------------------------------------------- Software being released as a host file and/or documentation describing the new functionality introduced by this patch are available. The preferred method is to retrieve files from download.vista.domain.ext. This transmits the files from the first available server. Sites may also elect to retrieve files directly from a specific server. Sites may retrieve the software and/or documentation directly using Secure File Transfer Protocol (SFTP) from the ANONYMOUS.SOFTWARE directory at the following OI Field Offices: Albany: domain.ext Hines: domain.ext Salt Lake City: domain.ext Documentation can also be found on the VA Software Documentation Library at: http://www.domain.ext/vdl/ Title File Name FTP Mode ----------------------------------------------------------------------- PECS v6.0 Release Notes PREC_6_0_RN_R0516.PDF Binary PECS v6.0 Troubleshooting Guide PREC_6_0_TG_R0516.PDF Binary PECS v6.0 User Guide PREC_6_0_UM_R0516.PDF Binary Patch Installation: ------------------------------- N/A Pre/Post Installation Overview: ------------------------------- N/A Pre-Installation Instructions: ------------------------------ N/A Installation Instructions: -------------------------- This is a Web Application JAVA Build. This is a Centralized Server promotion. NO installation is required at Local sites. Post-Installation Instructions: ------------------------------- N/A Routine Information: ==================== No routines included. ============================================================================= User Information: Entered By : Date Entered : FEB 16, 2016 Completed By: Date Completed: APR 29, 2016 Released By : Date Released : MAY 24, 2016 ============================================================================= Packman Mail Message: ===================== No routines included