This wiki has undergone a migration to Confluence found Here
Difference between revisions of "August 15, 2017 CBCC Conference Call"
Jump to navigation
Jump to search
| Line 25: | Line 25: | ||
|| x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-Chair | || x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-Chair | ||
| − | |||| | + | ||||x|| [mailto:mike.davis@va.gov Mike Davis] |
||||.|| [mailto:johnmoehrke@gmail.com John Moehrke] Security Co-Chair | ||||.|| [mailto:johnmoehrke@gmail.com John Moehrke] Security Co-Chair | ||
||||x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga] SOA Co-Chair | ||||x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga] SOA Co-Chair | ||
| Line 32: | Line 32: | ||
|| .|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | || .|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | ||
||||.|| [mailto:ali.khan@gmail.com Ali Khan] | ||||.|| [mailto:ali.khan@gmail.com Ali Khan] | ||
| − | |||| | + | ||||x|| [mailto:kenneth.salyards@samhsa.hhs.gov Ken Salyards] |
||||.|| [mailto:kensinn@gmail.com Ken Sinn] | ||||.|| [mailto:kensinn@gmail.com Ken Sinn] | ||
|- | |- | ||
| Line 42: | Line 42: | ||
|- | |- | ||
|| x|| [mailto:Chistopher.Shawn@va.gov Chris Shawn] | || x|| [mailto:Chistopher.Shawn@va.gov Chris Shawn] | ||
| − | |||| | + | ||||x|| [mailto:neelimaj70@gmail.com Neelima Chennamaraja] |
||||.|| [mailto:Joe.lamy@ssa.gov Joe Lamy] | ||||.|| [mailto:Joe.lamy@ssa.gov Joe Lamy] | ||
||||x|| [mailto:Joseph.Quinn@optum.com Joseph Quinn] | ||||x|| [mailto:Joseph.Quinn@optum.com Joseph Quinn] | ||
|- | |- | ||
| + | |- | ||
| + | || x|| [mailto: Oliver Lawless] | ||
| + | ||||.|| [ | ||
| + | ||||.|| [mailto: | ||
| + | ||||.|| [mailto: | ||
|} | |} | ||
| Line 66: | Line 71: | ||
* '''Roll Call, Agenda Approved''' | * '''Roll Call, Agenda Approved''' | ||
* '''Approval of Meeting Minutes for [http://wiki.hl7.org/index.php?title=August_1,_2017_CBCC_Conference_Call August 1, 2017]''' | * '''Approval of Meeting Minutes for [http://wiki.hl7.org/index.php?title=August_1,_2017_CBCC_Conference_Call August 1, 2017]''' | ||
| − | ** Abstain: | + | ** Abstain: 1 (KenS) Against: none Approve: 7 |
'''FHIR FRIDAY''' Update | '''FHIR FRIDAY''' Update | ||
| Line 72: | Line 77: | ||
* [http://gforge.hl7.org/gf/download/docmanfileversion/9485/14983/FHIR%20Consent%20Resource%20STU3%20POU%20Discussion.docx FHIR Consent discussion] | * [http://gforge.hl7.org/gf/download/docmanfileversion/9485/14983/FHIR%20Consent%20Resource%20STU3%20POU%20Discussion.docx FHIR Consent discussion] | ||
* FHIR Consent CPs are located: [http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerQueryBrowse&tracker_id=677 link to ALL Change requests] | * FHIR Consent CPs are located: [http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerQueryBrowse&tracker_id=677 link to ALL Change requests] | ||
| − | + | * continuing to work through CRs | |
| + | * making adjustments in Add to dictionary we are content with where we are--we can do a content ballot | ||
| + | * consent request was withdrawn/considered for treatment and adv directive request/adv directive is not that far along so that was the reasoning behind this | ||
| + | * we are making good headway on this | ||
| + | * if you are aviailbel please join | ||
'''Security and Privacy Impact Assessment Cookbook (SPIA) - SUR definition''' | '''Security and Privacy Impact Assessment Cookbook (SPIA) - SUR definition''' | ||
| Line 80: | Line 89: | ||
'''POSTED: [[September 2017 CBCC Working Group Meeting - San Diego, California USA]], September xx-xx, 2017 ''DRAFT'' AGENDA ''' | '''POSTED: [[September 2017 CBCC Working Group Meeting - San Diego, California USA]], September xx-xx, 2017 ''DRAFT'' AGENDA ''' | ||
* | * | ||
| + | |||
| + | Mike: would like to announce NIST SP 800-53 REV 5 DRAFT; the reason this is important is that they have integrated privacy into security controls fully--previously the privacy controls were just an add-on, now they are no longer add-on, but totally integrated. [http://csrc.nist.gov/groups/SMA/fisma/sp800-53r5_pre-draft.html Draft Document LINK]; | ||
| + | if you look at this new document draft you will find a table that has both security and privacy controls in it--purely security and controls that are joint/VENN diagram where overlap occurs and also purely privacy controls. you'll find consent listed as a pure privacy control in this new draft. (released | ||
| + | comment period: we have a chance to take a look at it and how we like an dhow it works for us. | ||
| + | giant leap forward: security and privacy controls for information systems (Mike thinks its brilliant); mike is currently working on the IoT which is old school. this draft has been brought forward in 'CIA" (confirm acronym) mike is in the process of analyzing; one appendix where they go through the controls;( appendix F?) you'll find the listing/relationship mentioned above. | ||
| + | recommend analysis and comment period to identified gaps. | ||
| + | 1st serious effort to put these two services together | ||
| + | recommend CBCC and security to combine efforts and submit responses together. | ||
Revision as of 18:19, 15 August 2017
Contents
Community-Based Collaborative Care Working Group Meeting
Meeting Information
Dial-in Number: (515) 604-9861; Access Code: 429554 * Online Meeting Link: http://join.freeconferencecall.com/cbhs * Click on Join an Online Meeting * at Join Meeting Enter Online Meeting ID: cbhs * Enter Name, e-mail if prompted * Run the FCC_Installer if prompted
Please be aware that teleconference meetings are recorded to assist with creating meeting minutes
Attendees
| Member Name | x | Member Name | x | Member Name | x | Member Name | |||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| . | Johnathan ColemanCBCC Co-Chair | x | Suzanne Gonzales-Webb CBCC Co-Chair | x | Jim Kretz CBCC Co-Chair | x | David Pyke CBCC Co-Chair | ||||
| x | Kathleen Connor Security Co-Chair | x | Mike Davis | . | John Moehrke Security Co-Chair | x | Diana Proud-Madruga SOA Co-Chair | ||||
| . | Mohammed Jafari | . | Ali Khan | x | Ken Salyards | . | Ken Sinn | ||||
| x | David Staggs | . | Steve Eichner | . | Ioana Singureanu | x | Beth Pumo | ||||
| x | Chris Shawn | x | Neelima Chennamaraja | . | Joe Lamy | x | Joseph Quinn | ||||
| x | [mailto: Oliver Lawless] | . | [ | . | [mailto: | . | [mailto: |
Agenda
- (05 min) Roll Call, Approve Agenda
- Approve Meeting Minutes for August 1, 2017
- (05 min) CBCC FHIR FRIDAY call at 2:00 ET // FHIR Consent Directive Project Wiki, Main page
- FHIR Consent discussion
- FHIR Consent CPs are located: link to ALL Change requests
- (05 min) Security and Privacy Impact Assessment Cookbook (SPIA) - SUR definition // moved to next agenda - Suzanne
- September 2017 CBCC Working Group Meeting - San Diego, California USA, September xx-xx, 2017 DRAFT AGENDA
Please contact a CBCC Co-chair if you wish to add agenda items! Thank you!
Meeting Minutes (DRAFT)
- Roll Call, Agenda Approved
- Approval of Meeting Minutes for August 1, 2017
- Abstain: 1 (KenS) Against: none Approve: 7
FHIR FRIDAY Update FHIR Consent Directive Project Wiki, Main page
- FHIR Consent discussion
- FHIR Consent CPs are located: link to ALL Change requests
- continuing to work through CRs
- making adjustments in Add to dictionary we are content with where we are--we can do a content ballot
- consent request was withdrawn/considered for treatment and adv directive request/adv directive is not that far along so that was the reasoning behind this
- we are making good headway on this
- if you are aviailbel please join
Security and Privacy Impact Assessment Cookbook (SPIA) - SUR definition
- Suzanne has update from Rick Grow (will need to find information since she's been away)
POSTED: September 2017 CBCC Working Group Meeting - San Diego, California USA, September xx-xx, 2017 DRAFT AGENDA
Mike: would like to announce NIST SP 800-53 REV 5 DRAFT; the reason this is important is that they have integrated privacy into security controls fully--previously the privacy controls were just an add-on, now they are no longer add-on, but totally integrated. Draft Document LINK; if you look at this new document draft you will find a table that has both security and privacy controls in it--purely security and controls that are joint/VENN diagram where overlap occurs and also purely privacy controls. you'll find consent listed as a pure privacy control in this new draft. (released comment period: we have a chance to take a look at it and how we like an dhow it works for us. giant leap forward: security and privacy controls for information systems (Mike thinks its brilliant); mike is currently working on the IoT which is old school. this draft has been brought forward in 'CIA" (confirm acronym) mike is in the process of analyzing; one appendix where they go through the controls;( appendix F?) you'll find the listing/relationship mentioned above. recommend analysis and comment period to identified gaps. 1st serious effort to put these two services together recommend CBCC and security to combine efforts and submit responses together.
