This wiki has undergone a migration to Confluence found Here
Difference between revisions of "January 26, 2016 Security Conference Call"
Jump to navigation
Jump to search
(4 intermediate revisions by one other user not shown) | |||
Line 77: | Line 77: | ||
See agenda at [http://wiki.hl7.org/index.php?title=HL7_FHIR_Security_2016-26-05 FHIR Security Agenda] | See agenda at [http://wiki.hl7.org/index.php?title=HL7_FHIR_Security_2016-26-05 FHIR Security Agenda] | ||
==Minutes== | ==Minutes== | ||
− | * The [http://wiki.hl7.org/index.php?title=January_05,_2016_Security_Conference_Call January 5, 2016 Security WG Conference Call Minutes] were unanimously approved | + | *RE 1: Roll taken. Agenda approved with modification. |
− | * A vote to approve the [http://wiki.hl7.org/index.php?title=Security_January_2016_Orlando_WGM_Minutes January 2016 Orlando WGM Minutes] was deferred after the group walked through them to give members another week to review. | + | *RE 2: The [http://wiki.hl7.org/index.php?title=January_05,_2016_Security_Conference_Call January 5, 2016 Security WG Conference Call Minutes] were unanimously approved |
− | *Diana and Mike discussed current work and status of the Joint Vocabulary Alignment project. In preparation for [http://www.hl7.org/events/harmonization/index.cfm?ref=nav March Harmonization], Kathleen will pre-populate a Harmonization proposal for the initial submission, which is due 02-07-16. Mike and Diana can add the models and the Lifecycle term definitions. | + | *RE 3: A vote to approve the [http://wiki.hl7.org/index.php?title=Security_January_2016_Orlando_WGM_Minutes January 2016 Orlando WGM Minutes] was deferred after the group walked through them to give members another week to review. |
− | *Since John is unable to attend, Kathleen gave an update. Per John, most of the FHIR AuditEvent and Provenance Resource CPs have been addressed, but not all have been implemented. | + | *RE 4: Diana and Mike discussed current work and status of the Joint Vocabulary Alignment project. In preparation for [http://www.hl7.org/events/harmonization/index.cfm?ref=nav March Harmonization], Kathleen will pre-populate a Harmonization proposal for the initial submission, which is due 02-07-16. Mike and Diana can add the models and the Lifecycle term definitions. |
− | + | *RE 5: Since John is unable to attend, Kathleen gave an update. Per John, most of the FHIR AuditEvent and Provenance Resource CPs have been addressed, but not all have been implemented. Documentation, changes and additions to elements need to be added to the build, and vocabulary bindings need to be pulled in. | |
Kathleen also noted that she intends to submit: | Kathleen also noted that she intends to submit: | ||
− | + | *A CP to add a Provenance.Lifecycle element so that records management perspective on changes to the Provenance target can be differentiated from a system or trigger/provenance event perspective on the activity that caused the current state of the target. | |
− | + | *A CP to make Security Labels immutable based on the foundational standards for HL7 Healthcare Privacy and Security Classification and the HL7 Security Labeling Service, which describe the processes and procedures for classifying, reclassifying, and declassifying security labels. The CP will propose that a new type of metadata be added for policy tags that would not be immutable, although profiles could change the versioning requirements. | |
+ | *RE 6: Dave had already presented the Audit Conceptual Model being developed for VA. Mike stated that this model may be brought to HL7. | ||
+ | *RE 7: Diana reported on status of the PASS Audit Conceptual Model work. Mike reported on discussions with SOA WG at HL7 Orlando WGM about whether SOA or Security WG should be the sponsor and owner of this model. Mike stated that the TSC may be approached to see if it is possible for both SOA and Security WGs to be joint owners of this model. | ||
+ | *RE FHIR Security Meeting scheduled for later in the day: Decision was to go ahead with the meeting so we can get a detailed walk through of the Lifecycle models, which are based on Provenance, and discussion about definitions under development. Another question to the FHIR Security group is any historical background on the source of the current list of Lifecycle codes. | ||
+ | *The call was adjourned early. |
Latest revision as of 18:08, 2 February 2016
Back to Security Work Group Main Page
Attendees
x | Member Name | x | Member Name | x | Member Name | |||
---|---|---|---|---|---|---|---|---|
x | Mike DavisSecurity Co-chair | Duane DeCouteau | . | Chris Clark | ||||
John MoehrkeSecurity Co-chair | Johnathan Coleman | . | Aaron Seib | |||||
Alexander Mense Security Co-chair | . | Ken Salyards | . | Christopher D Brown TX | ||||
. | Trish WilliamsSecurity Co-chair | . | Gary Dickinson | . | Dave Silver | |||
x | Kathleen Connor | . | Ioana Singureanu | x | Mohammed Jafari | |||
x | Suzanne Gonzales-Webb | Rob Horn | . | Galen Mulrooney | ||||
x | Diana Proud-Madruga | Ken Rubin | William Kinsley | |||||
x | Rick Grow | Paul Knapp | . | Debbie Bucci | ||||
. | Glen Marshall, SRS | Bill Kleinebecker | x | Christopher Shawn | ||||
Oliver Lawless | Rob Horn | Serafina Versaggi | ||||||
Beth Pumo | Russell McDonell | Paul Petronelli , Mobile Health | ||||||
Christopher Doss | x | Kamalini Vaidya | [mailto: ] |
Agenda DRAFT
- ( 5 min) Roll Call, Agenda Approval
- ( 5 min) Approve January 5, 2016 Security WG Conference Call Minutes
- ( 5 min) Approve January 2016 Orlando WGM Minutes
- ( 5 min) Joint Vocabulary Alignment Update - Diana
- (10 min) FHIR Security report out - John / not covered
- ( 5 min) Update Preview of Audit Conceptual Model - Dave
- ( 5 min) PASS Audit Conceptual Model – Diana
Note that there will be a FHIR Security call at 2pm PT/5pm ET See agenda at FHIR Security Agenda
Minutes
- RE 1: Roll taken. Agenda approved with modification.
- RE 2: The January 5, 2016 Security WG Conference Call Minutes were unanimously approved
- RE 3: A vote to approve the January 2016 Orlando WGM Minutes was deferred after the group walked through them to give members another week to review.
- RE 4: Diana and Mike discussed current work and status of the Joint Vocabulary Alignment project. In preparation for March Harmonization, Kathleen will pre-populate a Harmonization proposal for the initial submission, which is due 02-07-16. Mike and Diana can add the models and the Lifecycle term definitions.
- RE 5: Since John is unable to attend, Kathleen gave an update. Per John, most of the FHIR AuditEvent and Provenance Resource CPs have been addressed, but not all have been implemented. Documentation, changes and additions to elements need to be added to the build, and vocabulary bindings need to be pulled in.
Kathleen also noted that she intends to submit:
- A CP to add a Provenance.Lifecycle element so that records management perspective on changes to the Provenance target can be differentiated from a system or trigger/provenance event perspective on the activity that caused the current state of the target.
- A CP to make Security Labels immutable based on the foundational standards for HL7 Healthcare Privacy and Security Classification and the HL7 Security Labeling Service, which describe the processes and procedures for classifying, reclassifying, and declassifying security labels. The CP will propose that a new type of metadata be added for policy tags that would not be immutable, although profiles could change the versioning requirements.
- RE 6: Dave had already presented the Audit Conceptual Model being developed for VA. Mike stated that this model may be brought to HL7.
- RE 7: Diana reported on status of the PASS Audit Conceptual Model work. Mike reported on discussions with SOA WG at HL7 Orlando WGM about whether SOA or Security WG should be the sponsor and owner of this model. Mike stated that the TSC may be approached to see if it is possible for both SOA and Security WGs to be joint owners of this model.
- RE FHIR Security Meeting scheduled for later in the day: Decision was to go ahead with the meeting so we can get a detailed walk through of the Lifecycle models, which are based on Provenance, and discussion about definitions under development. Another question to the FHIR Security group is any historical background on the source of the current list of Lifecycle codes.
- The call was adjourned early.