This wiki has undergone a migration to Confluence found Here
Difference between revisions of "December 01, 2015 Security Conference Call"
Jump to navigation
Jump to search
| Line 107: | Line 107: | ||
* hoping by January 2016 meeting that 10 verbs will be completed (or mostly completed) | * hoping by January 2016 meeting that 10 verbs will be completed (or mostly completed) | ||
| − | PASS Access Control | + | '''PASS Access Control Conceptual Model''' |
* ballot reconciliation - all of the comments have been reviewed, resolutions provided | * ballot reconciliation - all of the comments have been reviewed, resolutions provided | ||
* VA will be contacted to withdraw the negative vote | * VA will be contacted to withdraw the negative vote | ||
| Line 115: | Line 115: | ||
| − | FHIR Connect-ta-thon work (before the WGM) | + | '''January WGM 2016, Orlando, Florida''' |
| − | Monday - joint with CBCC | + | Agenda Item topids: |
| − | * Update on the FHIR Connect-ta-thon | + | * FHIR Connect-ta-thon work (before the WGM) |
| + | |||
| + | * ''Monday'' - joint with CBCC | ||
| + | ** Update on the FHIR Connect-ta-thon | ||
* Interest on the approach in privacy protection (Alex's student has written on this subject) - security risks on health | * Interest on the approach in privacy protection (Alex's student has written on this subject) - security risks on health | ||
** Alex will contact student to possibly have student join call | ** Alex will contact student to possibly have student join call | ||
** a look beyond what we normally look at ''beyond healthcare'' | ** a look beyond what we normally look at ''beyond healthcare'' | ||
** ''privacy protective security protective mechanisms'' (Glen, Alex, Kathleen) | ** ''privacy protective security protective mechanisms'' (Glen, Alex, Kathleen) | ||
| − | * Kantara - tokens | + | ** Kantara - tokens |
| − | Tuesday | + | ''Tuesday'' |
| + | Tuesday Q3/Q4 - Access Control Catalog - ballot reconciliation; w/CBCC representative | ||
| − | Wednesday Q2 - Scheduling in PASS Access Control ballot reconciliation | + | ''Wednesday'' |
| + | * Q2 - Scheduling in PASS Access Control ballot reconciliation | ||
Wednesday Q3 - Vocabulary Alignment w/EHR, CBCC representative, Security | Wednesday Q3 - Vocabulary Alignment w/EHR, CBCC representative, Security | ||
| − | |||
Wednesday Q4 - ballot reconciliation; S&P Access Control Catalog | Wednesday Q4 - ballot reconciliation; S&P Access Control Catalog | ||
| − | time for: | + | Also agenda time for: |
# proposed audit standard for SOA (supported by Security), maybe WedQ2 | # proposed audit standard for SOA (supported by Security), maybe WedQ2 | ||
# framework; FHIR provenance | # framework; FHIR provenance | ||
| Line 142: | Line 146: | ||
Audit Service diagram <<add link>> | Audit Service diagram <<add link>> | ||
| + | Detailed walkthrough provided | ||
| − | |||
Model was created such that it will render on a landscape page | Model was created such that it will render on a landscape page | ||
| Line 151: | Line 155: | ||
ultimately an audit record is created (which we want to keep) | ultimately an audit record is created (which we want to keep) | ||
Audit record... | Audit record... | ||
| + | |||
| + | Meeting Adjourned at 1400 AZT --[[User:Suzannegw|Suzannegw]] ([[User talk:Suzannegw|talk]]) 16:04, 1 December 2015 (EST) | ||
Revision as of 21:04, 1 December 2015
Attendees
| x | Member Name | x | Member Name | x | Member Name | |||
|---|---|---|---|---|---|---|---|---|
| x | Mike DavisSecurity Co-chair | Duane DeCouteau | . | Chris Clark | ||||
| John MoehrkeSecurity Co-chair | Johnathan Coleman | . | Aaron Seib | |||||
| x | Alexander Mense Security Co-chair | . | Ken Salyards | . | Christopher D Brown TX | |||
| . | Trish WilliamsSecurity Co-chair | . | Gary Dickinson | x | Dave Silver | |||
| x | Kathleen Connor | . | Ioana Singureanu | Mohammed Jafari | ||||
| x | Suzanne Gonzales-Webb | Rob Horn | . | Galen Mulrooney | ||||
| x | Diana Proud-Madruga | Ken Rubin | x | William Kinsley | ||||
| x | Rick Grow | Paul Knapp | . | Debbie Bucci | ||||
| x | Glen Marshall, SRS | Bill Kleinebecker | x | Christopher Shawn | ||||
| Oliver Lawless | Rob Horn | Serafina Versaggi | ||||||
| x | Beth Pumo | Russell McDonell | Paul Petronelli , Mobile Health | |||||
| Christopher Doss | x | Kamalini Vaidya | [mailto: ] |
Agenda DRAFT
- ( 5 min) Roll Call, Agenda Approval
- ( 5 min) Approve November 24 Meeting Minutes
- ( 5 min) Healthcare Security and Privacy Access Control Catalog Update - Rick, Suzanne
- ( 5 min) Joint Vocabulary Alignment Update - Diana
- ( min) FHIR Security report out - John
- ( 5 min) PASS Access Control Conceptual Model (SOA) ballot reconciliation Update - Diana, Don, Mike, Dave
- (10 min) Upcoming January WGM 2016 - Orlando, Florida - AGENDA ITEMS
- Update Preview of Audit Functional Model - Dave
- in future to update the PASS Audit
**New** FHIR Security Topics in support of FHIM Meeting Information: Tuesdays 2:00PM PT/5:00PM ET Phone: +1 770-657-9270, Participant Code: 994563 hosted by Security Web meeting Info: https://global.gotomeeting.com/join/520841173 Discussion includes: Security - Audit, Provenance, Labels, Signature
**New** Wednesday Consent on FHIR Topics ' 3:00PM PT/6:00 PM ET hosted by CBCC GoToMeeting information: https://global.gotomeeting.com/join/520841173 Phone: +1 770-657-9270, Participant Code: 994563
Meeting Minutes (DRAFT)
Approve meeting minutes for November 24 Objections: none, Abstentions: none, Meeting Minutes approved
Healthcare Access Control Catalog
Ballot voting begins on Friday
- Document completed for ballot
Joint vocabulary Update
- This AM looked at diagrams completed for vocabulary verbs
- Reviewed changes made
- revisiting verb: received
- the items looked at this AM are 80-90% complete
- other verbs are being diagrammed
- hoping by January 2016 meeting that 10 verbs will be completed (or mostly completed)
PASS Access Control Conceptual Model
- ballot reconciliation - all of the comments have been reviewed, resolutions provided
- VA will be contacted to withdraw the negative vote
- still need to contact Bernd
- need to contact DoD on adopting the VA comments, withdrawing/retracting their negative vote
- changes from the resolutsion will be added to the document
January WGM 2016, Orlando, Florida
Agenda Item topids:
- FHIR Connect-ta-thon work (before the WGM)
- Monday - joint with CBCC
- Update on the FHIR Connect-ta-thon
- Interest on the approach in privacy protection (Alex's student has written on this subject) - security risks on health
- Alex will contact student to possibly have student join call
- a look beyond what we normally look at beyond healthcare
- privacy protective security protective mechanisms (Glen, Alex, Kathleen)
- Kantara - tokens
Tuesday Tuesday Q3/Q4 - Access Control Catalog - ballot reconciliation; w/CBCC representative
Wednesday
- Q2 - Scheduling in PASS Access Control ballot reconciliation
Wednesday Q3 - Vocabulary Alignment w/EHR, CBCC representative, Security Wednesday Q4 - ballot reconciliation; S&P Access Control Catalog
Also agenda time for:
- proposed audit standard for SOA (supported by Security), maybe WedQ2
- framework; FHIR provenance
- approvals needed for proposals in changes
- provide an outline, work on during summer in prep for May 2016 ballot
- note that VA folk will be not going to May/Canada meeting
Audit Service diagram <<add link>>
Detailed walkthrough provided
Model was created such that it will render on a landscape page
based on the open group mode of audit server which reflect other standards (typing back to ISO standards)
- Audit event - something has happened somewhere (OS, processes, hardwired to
- creating an AuditEvent, which pulls together configured raw data
ultimately an audit record is created (which we want to keep) Audit record...
Meeting Adjourned at 1400 AZT --Suzannegw (talk) 16:04, 1 December 2015 (EST)
