This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "November 17, 2015 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
 
(2 intermediate revisions by 2 users not shown)
Line 88: Line 88:
 
==Meeting Minutes (DRAFT)==
 
==Meeting Minutes (DRAFT)==
  
Agenda Approved.
+
'''Meeting Minutes approval for November 10, 2015'''
  
Meeting Minutes approval November 10, 2015
+
* Unanimous approval  
Unanimous approval  
+
* ''Objections: none; Abstentions: none; Approval: 9''
Objections: none; Abstentions: none; Approval: 9
 
  
'''
+
'''Healthcare Security and Privacy Access Control Catalog'''
* review FINAL Draft document on Tuesday, November 24, due one the 29th
+
 
 +
* review FINAL Draft document on Tuesday, November 24; due on the 29th
 
* Suzanne to send Alex current DRAFT, highlighting the items changed in the original RBAC document, and the spreadsheet
 
* Suzanne to send Alex current DRAFT, highlighting the items changed in the original RBAC document, and the spreadsheet
 
** focus in on the spreadsheet
 
** focus in on the spreadsheet
 
** original updates to the spreadsheet were deemed to be part of the PEP (rather than the PIP); as well as more policy and are not AC decisions
 
** original updates to the spreadsheet were deemed to be part of the PEP (rather than the PIP); as well as more policy and are not AC decisions
*** '''distinguishing between what is AC and what is policy, removing the policy related items from the spreadsheet'''
+
*** '''distinguishing between what is AC and what is policy, removing the policy-related items from the spreadsheet'''
  
 
'''Joint Vocabulary Alignment'''
 
'''Joint Vocabulary Alignment'''
 +
 
Looking at finishing up the extended definitions, filling in the blanks for the terms/diagrams already completed
 
Looking at finishing up the extended definitions, filling in the blanks for the terms/diagrams already completed
  
 
'''FHIR Security'''
 
'''FHIR Security'''
 +
 
Wednesday afternoon meetings
 
Wednesday afternoon meetings
* taken items in CP systems, working out the details in each of the subjects (FHIR Provenance, Labels, Signature...)
+
* taking items in CP systems, working out the details in each of the subjects (FHIR Provenance, Labels, Signature...)
 
* suggestion made for an alternate meeting to provide opportunity for additional member participation
 
* suggestion made for an alternate meeting to provide opportunity for additional member participation
  
 
'''PASS Access Control Conceptual Model (SOA) ballot reconciliation'''
 
'''PASS Access Control Conceptual Model (SOA) ballot reconciliation'''
Row 103 (comment 100)
 
  
not discussed were 101, 117, 125, 128, 133, 134, 135, 136, 137, 138, 142, 144, 148-152 are grammatical/formatting issues
+
Row 103 (comment 100) through 147
 +
 
 +
not discussed comments #101, 117, 125, 128, 133, 134, 135, 136, 137, 138, 142, 144, 148-152 (require further discussion)
  
 
Comment #131 - missing information in tables (Chapter 5)
 
Comment #131 - missing information in tables (Chapter 5)
 +
 +
'''MOTION:''' to accept the comment dispositions resolutions for comments #100-147
 +
 +
''Objections: none; Abstentions: none; Approved: 10''
 +
 +
No further discussion
 +
 +
* Comment #101 - should be ''Party Token'' - persuasive
 +
* Comment #117 - should be ''clearance'' - persuasive
 +
* Comment #125 - not persuasive, considered for future use
 +
* Comment #128 - not persuasive, considered for future use
 +
 +
'''Motion:''' accept dispositions for the above information as discussed (Diana/Beth)
 +
 +
''Objections: none; Abstentions: none; Approved: 9'' (Alex left meeting at start of discussion)
 +
 +
''Meeting Adjourned at 1300 PST''  --[[User:Suzannegw|Suzannegw]] ([[User talk:Suzannegw|talk]]) 16:01, 17 November 2015 (EST)

Latest revision as of 14:32, 24 November 2015

Attendees

x Member Name x Member Name x Member Name
x Mike DavisSecurity Co-chair Duane DeCouteau . Chris Clark
x John MoehrkeSecurity Co-chair Johnathan Coleman . Aaron Seib
x Alexander Mense Security Co-chair . Ken Salyards x Christopher D Brown TX
. Trish WilliamsSecurity Co-chair . Gary Dickinson x Dave Silver
Kathleen Connor . Ioana Singureanu Mohammed Jafari
x Suzanne Gonzales-Webb Rob Horn . Galen Mulrooney
x Diana Proud-Madruga Ken Rubin x William Kinsley
x Rick Grow Paul Knapp . Debbie Bucci
x Glen Marshall, SRS Bill Kleinebecker x Christopher Shawn
Oliver Lawless Rob Horn Serafina Versaggi
x Beth Pumo Russell McDonell Paul Petronelli , Mobile Health
Christopher Doss x [mailto: ] [mailto: ]

Back to Security Main Page

Agenda DRAFT

  1. ( 5 min) Roll Call, Agenda Approval
  2. ( 5 min) Approve November 10 Meeting Minutes
  3. ( 5 min) Healthcare Security and Privacy Access Control Catalog Update - Rick, Suzanne
  4. ( 5 min) Joint Vocabulary Alignment Update - Diana
  5. ( min) FHIR Security report out - John
  6. (35 min) PASS Access Control Conceptual Model (SOA) ballot reconciliation Update - Diana, Don Jorgenson, Mike, Dave


**New** 
FHIR Security Topics  in support of FHIM
Meeting Information:  Tuesdays 2:00PM PT/5:00PM ET
Phone: +1 770-657-9270, Participant Code: 994563 hosted by Security
Web meeting Info:   https://global.gotomeeting.com/join/520841173  
Discussion includes: Security - Audit, Provenance, Labels, Signature
**New** 
Wednesday Consent on FHIR Topics ' 3:00PM PT/6:00 PM ET hosted by CBCC
GoToMeeting information: https://global.gotomeeting.com/join/520841173 
Phone: +1 770-657-9270, Participant Code: 994563 

Meeting Minutes (DRAFT)

Meeting Minutes approval for November 10, 2015

  • Unanimous approval
  • Objections: none; Abstentions: none; Approval: 9

Healthcare Security and Privacy Access Control Catalog

  • review FINAL Draft document on Tuesday, November 24; due on the 29th
  • Suzanne to send Alex current DRAFT, highlighting the items changed in the original RBAC document, and the spreadsheet
    • focus in on the spreadsheet
    • original updates to the spreadsheet were deemed to be part of the PEP (rather than the PIP); as well as more policy and are not AC decisions
      • distinguishing between what is AC and what is policy, removing the policy-related items from the spreadsheet

Joint Vocabulary Alignment

Looking at finishing up the extended definitions, filling in the blanks for the terms/diagrams already completed

FHIR Security

Wednesday afternoon meetings

  • taking items in CP systems, working out the details in each of the subjects (FHIR Provenance, Labels, Signature...)
  • suggestion made for an alternate meeting to provide opportunity for additional member participation

PASS Access Control Conceptual Model (SOA) ballot reconciliation

Row 103 (comment 100) through 147

not discussed comments #101, 117, 125, 128, 133, 134, 135, 136, 137, 138, 142, 144, 148-152 (require further discussion)

Comment #131 - missing information in tables (Chapter 5)

MOTION: to accept the comment dispositions resolutions for comments #100-147

Objections: none; Abstentions: none; Approved: 10

No further discussion

  • Comment #101 - should be Party Token - persuasive
  • Comment #117 - should be clearance - persuasive
  • Comment #125 - not persuasive, considered for future use
  • Comment #128 - not persuasive, considered for future use

Motion: accept dispositions for the above information as discussed (Diana/Beth)

Objections: none; Abstentions: none; Approved: 9 (Alex left meeting at start of discussion)

Meeting Adjourned at 1300 PST --Suzannegw (talk) 16:01, 17 November 2015 (EST)