This wiki has undergone a migration to Confluence found Here

CMHAFF call, Monday, February 20

From HL7Wiki
Jump to navigation Jump to search

Attendees: Nathan Botts, Bill Kleinbecker, David Tao

In response to Security and CBCC workgroups' request to identify the risk domains, cMHAFF has identified some excellent resources:

David will continue gathering information from the literature, and map these against the cMHAFF categories, identifying gaps. The end result will be a clearer statement of "what" areas of risk cMHAFF aims to mitigate.

David will also modify one of the Exemplary Use Cases (probably #3, the most complex), to more explicitly illustrate the risk domains within the use case, so that it will be clear how cMHAFF can help the developer fulfill the use case while addressing the risks.

cMHAFF's intent is not to rewrite or paraphrase existing standards and best practices, but rather to "cover the ground" and inform vendors of what they should be aware of.