This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "May 29, 2018 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
 
(6 intermediate revisions by 2 users not shown)
Line 8: Line 8:
 
||  .|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
 
||  .|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
||||x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
+
||||.|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 
||||.|| [mailto:trish.williams@ecu.edu.au Trish Williams] Security Co-chair
 
||||.|| [mailto:trish.williams@ecu.edu.au Trish Williams] Security Co-chair
 
|-.
 
|-.
||  .|| [mailto:Christopher.Shawn2@va.gov Christopher Shawn] Security Co-chair
+
||  x|| [mailto:Christopher.Shawn2@va.gov Christopher Shawn] Security Co-chair
 
||||x|| [mailto:Suzanne.Webb@bookzurman.com Suzanne Gonzales-Webb]
 
||||x|| [mailto:Suzanne.Webb@bookzurman.com Suzanne Gonzales-Webb]
 
||||x|| [mailto:mike.davis@va.gov Mike Davis]
 
||||x|| [mailto:mike.davis@va.gov Mike Davis]
||||x|| [mailto:david.staggs@bookzurman.com David Staggs]
+
||||.|| [mailto:david.staggs@bookzurman.com David Staggs]
 
   
 
   
 
|-
 
|-
||  .|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
+
||  x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
||||.|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
+
||||x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
||||.|| [mailto:joe.lamy@aegis.net Joe Lamy]
+
||||x|| [mailto:joe.lamy@aegis.net Joe Lamy]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
|-
 
|-
||  x|| [mailto:rhonna.clark@va.gov Rhonna Clark]
+
||  .|| [mailto:rhonna.clark@va.gov Rhonna Clark]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
 
||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
 
||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
Line 28: Line 28:
 
|-
 
|-
 
||. || [mailto:mjafari@edmondsci.com Mohammed Jafari]
 
||. || [mailto:mjafari@edmondsci.com Mohammed Jafari]
||||.|| [mailto:jim.kretz@samhsa.gov Jim Kretz]
+
||||x|| [mailto:jim.kretz@samhsa.gov Jim Kretz]
 
||||.|| [mailto:pbspamfilteracct@gmail.com Peter Bachman]
 
||||.|| [mailto:pbspamfilteracct@gmail.com Peter Bachman]
 
||||x|| [mailto:dsilver@electrosoft-inc.com Dave Silver]
 
||||x|| [mailto:dsilver@electrosoft-inc.com Dave Silver]
Line 45: Line 45:
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
 
#''(5 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=May_1,_2018_Security_Conference_Call May 1st  minutes (last call prior to WGM call cancellations)]
 
#''(5 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=May_1,_2018_Security_Conference_Call May 1st  minutes (last call prior to WGM call cancellations)]
#''(5 min)'' '''Review and Approval of Cologne WGM Security Minutes'''
+
#''(5 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=HL7_May_2018_WGM_MINUTES_-_Cologne,_Germany Cologne WGM Security Minutes]'''
 
#''(15 min)'' ''' Cologne GDPR Connectathon Report Out & Interim Work Plans on FHIR GDPR IG''' - Alex, John, Kathleen
 
#''(15 min)'' ''' Cologne GDPR Connectathon Report Out & Interim Work Plans on FHIR GDPR IG''' - Alex, John, Kathleen
 
#''(15 min)'' '''TF4FA Normative Ballot Reconciliation Spreadsheet]'''Vote Summary Report and disposition work session - Kathleen
 
#''(15 min)'' '''TF4FA Normative Ballot Reconciliation Spreadsheet]'''Vote Summary Report and disposition work session - Kathleen
Line 53: Line 53:
 
*[http://wiki.hl7.org/index.php?title=GDPR_(General_Data_Protection_Regulation)Security GDPR wiki]
 
*[http://wiki.hl7.org/index.php?title=GDPR_(General_Data_Protection_Regulation)Security GDPR wiki]
 
*[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202018/PSAF%20TF4FA%20May%202018%20Reconciliation/ballotcomments_V3_PSAF_R1_N1_2018MAY%20amalgamated.xls TF4FA May 2018 Amalgamated Ballot Spreadsheet]
 
*[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202018/PSAF%20TF4FA%20May%202018%20Reconciliation/ballotcomments_V3_PSAF_R1_N1_2018MAY%20amalgamated.xls TF4FA May 2018 Amalgamated Ballot Spreadsheet]
 +
 +
==Meeting Minutes (DRAFT)==
 +
Roll Call take, Chris Shawn, chair
 +
 +
'''Approval of meeting minutes from 5/1/2018 - confirm date)''
 +
No Discussion
 +
Motion: Suzanne/Kathleen
 +
Vote: Objections: none, Abstentions: none; Approved: 6
 +
 +
'''Approval of Cologne Minutes'''
 +
* [http://wiki.hl7.org/index.php?title=HL7_May_2018_WGM_MINUTES_-_Cologne,_Germany HL7 WGM Cologne, Germany Meeting MINUTES]
 +
* Minutes walk thru by Kathleen
 +
** '''NOTE ''LINKS incorporated'' into meeting minutes '''
 +
 +
Motion to approve (Kathleen/Suzanne)
 +
Objections: none; Abstentions: none; approved: 8
 +
 +
Cologne GDPR Connectathon
 +
* suggestion made to move this agenda item to next week when involved persons are abailvel
 +
* meeting held 25 May;
 +
* lots of interested at WGM, connectathon track and continued at several WG session
 +
* how will HL7 (with FHIR focus) can support the implementation of GDPR
 +
** includes beset practices
 +
** which HL7 artifacts, concepts, FHIR resources, can be used to fulfill support GDPR
 +
** spreadsheet started with knowledge
 +
*** mapping, FHIR resources, content being completed
 +
*** initial meeting FHIR support of GDPR
 +
* currently operational -
 +
* implications of FHIR
 +
** many organizations are already prepared, but not completed with their measurements/set-up
 +
* PPT by lawyer in Brussels <<link ?>>
 +
* HL7 would like to come up with guidance (audit resources? Security? best practices, etc.)
 +
 +
* Question: are healthcare organizations capable able to support labeling of healthcare data?
 +
** (per Alex 'no' )
 +
** labeling is probably not required if no exchange is occurring between enterprises/cross border
 +
** beyond that, most organizations will not know how to label data in regard to GDPR
 +
* lots of room for interpretation
 +
 +
* There is need for useful work - mapping has been initiated; possible use cases, FHIR support --
 +
<<link to PPT by Alex on GDPR>>
 +
Call: Monday 10AM Eastern <<add link to meeting information>>
 +
* <<add Google Doc link >> - editing rights can be obtained by John Moehrke
 +
 +
'''Ballot spreadsheet for V3_PSAF_R1_N1_2018 MAY''' <<add link>>
 +
* Bernd
 +
* Bulk of comments were questions on editing,
 +
** moving illustrations (do not appear to align), editing text, introduction (i.e. normative vs. informative clarification within the document)
 +
* Chris Hills group (IPO) had issues primary on editorial information which may warrant discussion
 +
* Patty Craig (joint commission) typically looking at quality measures; code systems
 +
** initial discussion on code SNOMED/code sets to HCS; mapping of codes on the data to sensitivity based on policy
 +
* Ballot Reconciliation: Separate call to be created/information to be sent to Security list serve
 +
 +
'''Separate meeting to do ballot reconciliation on Trust Framework'''
 +
* meeting invite to be sent to Security listserve
 +
* 11 ET on Tuesday starting two weeks from today (Kathleen to send)
 +
 +
Meeting adjourned at 1158 Arizona Time --[[User:Suzannegw|Suzannegw]] ([[User talk:Suzannegw|talk]]) 15:59, 29 May 2018 (EDT)

Latest revision as of 19:59, 29 May 2018

Back to Security Main Page

Attendees

x Member Name x Member Name x Member Name x Member Name
. John Moehrke Security Co-chair x Kathleen Connor Security Co-chair . Alexander Mense Security Co-chair . Trish Williams Security Co-chair
x Christopher Shawn Security Co-chair x Suzanne Gonzales-Webb x Mike Davis . David Staggs
x Diana Proud-Madruga x Francisco Jauregui x Joe Lamy . Greg Linden
. Rhonna Clark . Grahame Grieve . Johnathan Coleman . [mailto: Matt Blackman, Sequoia]
. Mohammed Jafari x Jim Kretz . Peter Bachman x Dave Silver
. Beth Pumo . Bo Dagnall . Riki Merrick . Theresa Connor

Back to Security Main Page

Agenda

  1. (2 min) Roll Call, Agenda Approval
  2. (5 min) Review and Approval of May 1st minutes (last call prior to WGM call cancellations)
  3. (5 min) Review and Approval of Cologne WGM Security Minutes
  4. (15 min) Cologne GDPR Connectathon Report Out & Interim Work Plans on FHIR GDPR IG - Alex, John, Kathleen
  5. (15 min) TF4FA Normative Ballot Reconciliation Spreadsheet]Vote Summary Report and disposition work session - Kathleen

Meeting Material

Meeting Minutes (DRAFT)

Roll Call take, Chris Shawn, chair

'Approval of meeting minutes from 5/1/2018 - confirm date) No Discussion Motion: Suzanne/Kathleen Vote: Objections: none, Abstentions: none; Approved: 6

Approval of Cologne Minutes

Motion to approve (Kathleen/Suzanne) Objections: none; Abstentions: none; approved: 8

Cologne GDPR Connectathon

  • suggestion made to move this agenda item to next week when involved persons are abailvel
  • meeting held 25 May;
  • lots of interested at WGM, connectathon track and continued at several WG session
  • how will HL7 (with FHIR focus) can support the implementation of GDPR
    • includes beset practices
    • which HL7 artifacts, concepts, FHIR resources, can be used to fulfill support GDPR
    • spreadsheet started with knowledge
      • mapping, FHIR resources, content being completed
      • initial meeting FHIR support of GDPR
  • currently operational -
  • implications of FHIR
    • many organizations are already prepared, but not completed with their measurements/set-up
  • PPT by lawyer in Brussels <<link ?>>
  • HL7 would like to come up with guidance (audit resources? Security? best practices, etc.)
  • Question: are healthcare organizations capable able to support labeling of healthcare data?
    • (per Alex 'no' )
    • labeling is probably not required if no exchange is occurring between enterprises/cross border
    • beyond that, most organizations will not know how to label data in regard to GDPR
  • lots of room for interpretation
  • There is need for useful work - mapping has been initiated; possible use cases, FHIR support --

<<link to PPT by Alex on GDPR>> Call: Monday 10AM Eastern <<add link to meeting information>>

  • <<add Google Doc link >> - editing rights can be obtained by John Moehrke

Ballot spreadsheet for V3_PSAF_R1_N1_2018 MAY <<add link>>

  • Bernd
  • Bulk of comments were questions on editing,
    • moving illustrations (do not appear to align), editing text, introduction (i.e. normative vs. informative clarification within the document)
  • Chris Hills group (IPO) had issues primary on editorial information which may warrant discussion
  • Patty Craig (joint commission) typically looking at quality measures; code systems
    • initial discussion on code SNOMED/code sets to HCS; mapping of codes on the data to sensitivity based on policy
  • Ballot Reconciliation: Separate call to be created/information to be sent to Security list serve

Separate meeting to do ballot reconciliation on Trust Framework

  • meeting invite to be sent to Security listserve
  • 11 ET on Tuesday starting two weeks from today (Kathleen to send)

Meeting adjourned at 1158 Arizona Time --Suzannegw (talk) 15:59, 29 May 2018 (EDT)