This wiki has undergone a migration to Confluence found Here
Difference between revisions of "February 02, 2016 Security Conference Call"
Jump to navigation
Jump to search
JohnMoehrke (talk | contribs) |
|||
| (10 intermediate revisions by 3 users not shown) | |||
| Line 7: | Line 7: | ||
!x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !! | !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !! | ||
|- | |- | ||
| − | ||x|| [mailto:mike.davis@va.gov Mike Davis] | + | ||x|| [mailto:mike.davis@va.gov Mike Davis] |
|||||| [mailto:duane.decouteau@gmail.com Duane DeCouteau] | |||||| [mailto:duane.decouteau@gmail.com Duane DeCouteau] | ||
||||.|| [mailto:Chris.R.Clark@wv.gov Chris Clark] | ||||.|| [mailto:Chris.R.Clark@wv.gov Chris Clark] | ||
|- | |- | ||
| − | || || [mailto:john.moehrke@med.ge.com John Moehrke]Security Co-chair | + | || x|| [mailto:john.moehrke@med.ge.com John Moehrke]Security Co-chair |
|||||| [mailto:jc@securityrs.com Johnathan Coleman] | |||||| [mailto:jc@securityrs.com Johnathan Coleman] | ||
||||.|| [mailto:aaron.seib@2311.net Aaron Seib] | ||||.|| [mailto:aaron.seib@2311.net Aaron Seib] | ||
|- | |- | ||
| − | || || [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair | + | || x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair |
||||.|| [mailto:ken.salyards@samhsa.hhs.gov Ken Salyards] | ||||.|| [mailto:ken.salyards@samhsa.hhs.gov Ken Salyards] | ||
||||.|| [mailto:cbrown@socialcare.com Christopher D Brown] TX | ||||.|| [mailto:cbrown@socialcare.com Christopher D Brown] TX | ||
| Line 22: | Line 22: | ||
||.|| [mailto:trish.williams@ecu.edu.au Trish Williams]Security Co-chair | ||.|| [mailto:trish.williams@ecu.edu.au Trish Williams]Security Co-chair | ||
||||.|| [mailto:gary.dickinson@ehr-standards.com Gary Dickinson] | ||||.|| [mailto:gary.dickinson@ehr-standards.com Gary Dickinson] | ||
| − | |||| | + | ||||x||[mailto:dsilver@electrosoft-inc.com Dave Silver] |
|- | |- | ||
| − | || x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] | + | || x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor]Security Co-chair |
||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu] | ||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu] | ||
||||x|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | ||||x|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | ||
| Line 31: | Line 31: | ||
|- | |- | ||
||x|| [mailto:Suzanne.Webb@engilitycorp.com Suzanne Gonzales-Webb] | ||x|| [mailto:Suzanne.Webb@engilitycorp.com Suzanne Gonzales-Webb] | ||
| − | |||||| [mailto:mailto:robert.horn@agfa.com Rob Horn] | + | ||||x|| [mailto:mailto:robert.horn@agfa.com Rob Horn] |
||||.||[mailto:Galen.Mulrooney@JPSys.com Galen Mulrooney] | ||||.||[mailto:Galen.Mulrooney@JPSys.com Galen Mulrooney] | ||
| Line 45: | Line 45: | ||
|- | |- | ||
| − | || | + | || x|| [mailto:gfm@securityrs.com Glen Marshall], SRS |
|||||| [mailto:akleinebe@gmail.com Bill Kleinebecker ] | |||||| [mailto:akleinebe@gmail.com Bill Kleinebecker ] | ||
|||x||| [mailto:Christopher.Shawn2@va.gov Christopher Shawn] | |||x||| [mailto:Christopher.Shawn2@va.gov Christopher Shawn] | ||
|- | |- | ||
|| || [mailto:oliver@lawless.co Oliver Lawless] | || || [mailto:oliver@lawless.co Oliver Lawless] | ||
| − | |||||| | + | |||||| x |
|||||| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ] | |||||| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ] | ||
|- | |- | ||
| Line 59: | Line 59: | ||
|| || [mailto:cdoss@ncat.edu Christopher Doss] | || || [mailto:cdoss@ncat.edu Christopher Doss] | ||
||||x|| [mailto:kamalinivaidya@systemsmadesimple.com Kamalini Vaidya] | ||||x|| [mailto:kamalinivaidya@systemsmadesimple.com Kamalini Vaidya] | ||
| − | |||||| [mailto: ] | + | ||||x|| [mailto:unknown Stephanie Dyke ] |
|- | |- | ||
| Line 70: | Line 70: | ||
# ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=January_26,_2016_Security_Conference_Call January 26, 2016 Security WG Conference Call Minutes] | # ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=January_26,_2016_Security_Conference_Call January 26, 2016 Security WG Conference Call Minutes] | ||
# ''( 30 min)'' Research Consent codes | # ''( 30 min)'' Research Consent codes | ||
| − | # ''( 10 min)'' | + | # ''( 10 min)'' ''' Privacy and Security by Design PSS discussion''' |
# ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=Security_January_2016_Orlando_WGM_Minutes January 2016 Orlando WGM Minutes] | # ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=Security_January_2016_Orlando_WGM_Minutes January 2016 Orlando WGM Minutes] | ||
# ''( 5 min)'' '''Joint Vocabulary Alignment Update''' - Diana | # ''( 5 min)'' '''Joint Vocabulary Alignment Update''' - Diana | ||
# ''( 5 min)'' '''FHIR Security '''report out - John / not covered | # ''( 5 min)'' '''FHIR Security '''report out - John / not covered | ||
| − | # ''( 5 min)'' ''' | + | # ''( 5 min)'' '''PASS Audit Conceptual Model'''- Diana (no update) |
# ''( 5 min)'' '''PASS Audit Conceptual Model – Diana | # ''( 5 min)'' '''PASS Audit Conceptual Model – Diana | ||
Note that there will be a FHIR Security call at 2pm PT/5pm ET | Note that there will be a FHIR Security call at 2pm PT/5pm ET | ||
| Line 80: | Line 80: | ||
==Minutes== | ==Minutes== | ||
| + | |||
| + | '''Meeting Minutes from January 26, 2016''' | ||
| + | |||
| + | * Motion made to approve (Suzanne/Rick) | ||
| + | ** Objections: none; Abstain: none, Approval: 9 | ||
| + | |||
| + | '''Research Consent codes''' | ||
| + | |||
| + | * Guest speaker, Stephanie O. M. Dyke from the Centre of Genomics and Policy, Faculty of Medicine, McGill University, Montreal, Quebec, Canada, presented on a [http://journals.plos.org/plosgenetics/article?id=info:doi/10.1371/journal.pgen.1005772 Research Consent Code system] developed by the [https://genomicsandhealth.org/about-global-alliance Global Alliance for Genomics and Health (GA4GH)]. | ||
| + | ** Dixie Baker introduced GA4GH to HL7 Security and FHIR WGs to see how we could collaborate. | ||
| + | |||
| + | * Kathleen did a [http://gforge.hl7.org/gf/download/docmanfileversion/9029/13790/HCS%20Vocab%20%20%20Research%20Consent%20Codes.xlsx preliminary map to the HL7 Healthcare Privacy and Security Classification System] normative vocabulary and security label syntax, which is used in DS4P, CDA Consent Directive, and DPROV CDA IGs as well as in FHIR. The map showed that it appears that these codes could easily be integrated with existing security labels for Purpose of Use, Obligations, and Restrain Handling Caveats. | ||
| + | |||
| + | * Kathleen provided Stephanie with an overview of how [http://gforge.hl7.org/gf/download/docmanfileversion/9030/13791/HL7%20HCS%20Security%20Labels%202.pptx HL7 Security Labels] are structured and how the GA4GH codes could be added so that they would become normative and used in multiple HL7 specifications. | ||
| + | |||
| + | '''Privacy and Security by Design PSS''' | ||
| + | |||
| + | Rick and Suzanne will create the DRAFT PSS | ||
| + | |||
| + | '''Approval for WGM meeting minutes''' | ||
| + | |||
| + | * Motion made (Kathleen/Diana) | ||
| + | ** Objections: none; Abstain: none; Approved: 9 | ||
| + | |||
| + | '''Joint Vocabulary Alignment Update''' | ||
| + | |||
| + | * Harmonization proposal to be prepared and submitted for this Sunday, 2-7-16. | ||
| + | * Kathleen has comments to review with Diana | ||
| + | * Mike presented models (based on Provenance models) intended to be useful for security and provenance | ||
| + | ** would like to be presented at a future Security meeting (20-30 minutes of time needed) | ||
| + | * Diana, Gary, Reed - will be meeting to create the harmonization proposal | ||
| + | ** approval needed for initial submissions for harmonization | ||
| + | |||
| + | '''PASS Audit Conceptual Model''' | ||
| + | |||
| + | No update - PSS approved at the WGM | ||
| + | |||
| + | '''PASS Access Control Conceptual Model (SOA) ballot reconciliation Update''' | ||
| + | |||
| + | Diana remains in touch with Alex Mense, who will summarize/clarify one comment from Bernd and return it to Diana; otherwise, reconciliation and updates to document are complete. | ||
| + | |||
| + | ''Meeting adjourned at 1400 Arizona Time'' | ||
Latest revision as of 20:38, 9 February 2016
Back to Security Work Group Main Page
Attendees
| x | Member Name | x | Member Name | x | Member Name | |||
|---|---|---|---|---|---|---|---|---|
| x | Mike Davis | Duane DeCouteau | . | Chris Clark | ||||
| x | John MoehrkeSecurity Co-chair | Johnathan Coleman | . | Aaron Seib | ||||
| x | Alexander Mense Security Co-chair | . | Ken Salyards | . | Christopher D Brown TX | |||
| . | Trish WilliamsSecurity Co-chair | . | Gary Dickinson | x | Dave Silver | |||
| x | Kathleen ConnorSecurity Co-chair | . | Ioana Singureanu | x | Mohammed Jafari | |||
| x | Suzanne Gonzales-Webb | x | Rob Horn | . | Galen Mulrooney | |||
| x | Diana Proud-Madruga | Ken Rubin | William Kinsley | |||||
| x | Rick Grow | Paul Knapp | . | Debbie Bucci | ||||
| x | Glen Marshall, SRS | Bill Kleinebecker | x | Christopher Shawn | ||||
| Oliver Lawless | x | Serafina Versaggi | ||||||
| Beth Pumo | Russell McDonell | Paul Petronelli , Mobile Health | ||||||
| Christopher Doss | x | Kamalini Vaidya | x | Stephanie Dyke |
Agenda DRAFT
- ( 5 min) Roll Call, Agenda Approval
- ( 5 min) Approve January 26, 2016 Security WG Conference Call Minutes
- ( 30 min) Research Consent codes
- ( 10 min) Privacy and Security by Design PSS discussion
- ( 5 min) Approve January 2016 Orlando WGM Minutes
- ( 5 min) Joint Vocabulary Alignment Update - Diana
- ( 5 min) FHIR Security report out - John / not covered
- ( 5 min) PASS Audit Conceptual Model- Diana (no update)
- ( 5 min) PASS Audit Conceptual Model – Diana
Note that there will be a FHIR Security call at 2pm PT/5pm ET See agenda at FHIR Security Agenda
Minutes
Meeting Minutes from January 26, 2016
- Motion made to approve (Suzanne/Rick)
- Objections: none; Abstain: none, Approval: 9
Research Consent codes
- Guest speaker, Stephanie O. M. Dyke from the Centre of Genomics and Policy, Faculty of Medicine, McGill University, Montreal, Quebec, Canada, presented on a Research Consent Code system developed by the Global Alliance for Genomics and Health (GA4GH).
- Dixie Baker introduced GA4GH to HL7 Security and FHIR WGs to see how we could collaborate.
- Kathleen did a preliminary map to the HL7 Healthcare Privacy and Security Classification System normative vocabulary and security label syntax, which is used in DS4P, CDA Consent Directive, and DPROV CDA IGs as well as in FHIR. The map showed that it appears that these codes could easily be integrated with existing security labels for Purpose of Use, Obligations, and Restrain Handling Caveats.
- Kathleen provided Stephanie with an overview of how HL7 Security Labels are structured and how the GA4GH codes could be added so that they would become normative and used in multiple HL7 specifications.
Privacy and Security by Design PSS
Rick and Suzanne will create the DRAFT PSS
Approval for WGM meeting minutes
- Motion made (Kathleen/Diana)
- Objections: none; Abstain: none; Approved: 9
Joint Vocabulary Alignment Update
- Harmonization proposal to be prepared and submitted for this Sunday, 2-7-16.
- Kathleen has comments to review with Diana
- Mike presented models (based on Provenance models) intended to be useful for security and provenance
- would like to be presented at a future Security meeting (20-30 minutes of time needed)
- Diana, Gary, Reed - will be meeting to create the harmonization proposal
- approval needed for initial submissions for harmonization
PASS Audit Conceptual Model
No update - PSS approved at the WGM
PASS Access Control Conceptual Model (SOA) ballot reconciliation Update
Diana remains in touch with Alex Mense, who will summarize/clarify one comment from Bernd and return it to Diana; otherwise, reconciliation and updates to document are complete.
Meeting adjourned at 1400 Arizona Time
