This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "November 13, 2018 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
 
(9 intermediate revisions by 3 users not shown)
Line 8: Line 8:
 
!x||'''Member Name'''|| !!  x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name'''  
 
!x||'''Member Name'''|| !!  x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name'''  
 
|-
 
|-
||  x|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
+
||  .|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
 
||||x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 
||||x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
Line 19: Line 19:
 
   
 
   
 
|-
 
|-
||   x|| [mailto:Diana.Proud-Madruga@electro-soft.com Diana Proud-Madruga]
+
|| x|| [mailto:Diana.Proud-Madruga@electro-soft.com Diana Proud-Madruga]
 
||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
 
||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
||||.|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
+
||||x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
||||.|| [mailto:joe.lamy@aegis.net Joe Lamy]
+
||||x|| [mailto:joe.lamy@aegis.net Joe Lamy]
 
|-
 
|-
 
||  .|| [mailto:acg.internasjonal@protonmail.com Theresa Ardal Connor]
 
||  .|| [mailto:acg.internasjonal@protonmail.com Theresa Ardal Connor]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
||||.|| [mailto:dsilver@electrosoft-inc.com Dave Silver]
+
||||x|| [mailto:dsilver@electrosoft-inc.com Dave Silver]
 
|-
 
|-
||. || [mailto:Beth.Pumo@kp.org Beth Pumo]
+
||. x|| [mailto:Beth.Pumo@kp.org Beth Pumo]
||||x|| [mailto:jim.kretz@samhsa.gov Jim Kretz]
+
||||.|| [mailto:jim.kretz@samhsa.gov Jim Kretz]
 
||||.|| [mailto:pbspamfilteracct@gmail.com Peter Bachman]
 
||||.|| [mailto:pbspamfilteracct@gmail.com Peter Bachman]
||||.|| [mailto:Bo.Dagnall@dxc.com Bo Dagnall]
+
||||x|| [mailto:peter.van.liesdonk@phillips.com Peter VanLiesdonk]]
 
|-
 
|-
  
Line 43: Line 43:
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
 
#''(5 min)'' '''[http://wiki.hl7.org/index.php?title=November_6,_2018_Security_Conference_Call Review and Approval of Minutes November 6, 2018]
 
#''(5 min)'' '''[http://wiki.hl7.org/index.php?title=November_6,_2018_Security_Conference_Call Review and Approval of Minutes November 6, 2018]
#''(5 min)'' '''[http://wiki.hl7.org/index.php?title=PASS_Healthcare_Audit_Services Update on revision of PASS Audit - Is reconcilation ready for upload?]''' - Mike/Chris
+
#''(5 min)'' '''[http://wiki.hl7.org/index.php?title=PASS_Healthcare_Audit_Services Update on revision of PASS Audit - Is reconciliation spreadsheet ready for upload?]''' - Mike
 
#''(5 min)'' '''Security Harmonization proposal codes approved''' Some value sets will be proposed in March - Kathleen  
 
#''(5 min)'' '''Security Harmonization proposal codes approved''' Some value sets will be proposed in March - Kathleen  
 +
#''(5 min)'' '''[https://gforge.hl7.org/gf/project/security/docman/V2%20Security/Chapter4Changes%20OM1-30%20ORC-28.doc v2.9 Change Request related to Confidentiality codes]''' - Kathleen
 +
#''(5 min)'' '''[https://confluence.hl7.org/display/OO/2-To-FHIR HL7 v2 to FHIR PSS], [https://gforge.hl7.org/gf/project/security/docman/V2%20Security/2-To-FHIR%20KC.xlsx v2 to FHIR Spreadsheet for Security]''' - Kathleen
 
#''(5 min)'' '''GDPR whitepaper on FHIR''' Update, reminder of new call schedule - Alex
 
#''(5 min)'' '''GDPR whitepaper on FHIR''' Update, reminder of new call schedule - Alex
 
#''(5 min)'' '''FHIR Security call update''' - John
 
#''(5 min)'' '''FHIR Security call update''' - John
 +
 +
[[Security|Back to Security Main Page]]
  
 
==Meeting Minutes==
 
==Meeting Minutes==
Meeting Chair - TBD
+
Meeting Chair - Chris Shawn
 +
 
 +
'''Meeting Minute Approval''' - November 6, 2018
 +
* (Motion to approve (Suzanne/Kathleen): Vote: objections/abstentions: none;
 +
((Suzanne to add harmonization proposal link))
 +
 
 +
 
 +
'''Update on PASS Audit reconciliation
 +
* last understood was that reconciliation comments were completed, and we could ask for withdrawal
 +
* Kathleen brought up that Bernd B wants to see corrections in the document before he withdrawals
 +
** as far as Mike is concerned we should push forward and request withdrawal of negative
 +
* e-mail from Lynn Laakso; there was material due in order to ballot TF4FA; she has listed that one and two have not been published?  was this a new requirement...Kathleen asked if this was a new rule? which could be a show stopper...
 +
** we will wait and see what her answer is before proceeding. Current answer is we don't know.
 +
 
 +
'''Harmonization codes
 +
* all three proposals were approved; Kathleen is deferring the codes that were not completed to next harmonization
 +
* policy codes have been brought into v2
 +
* next harmonization
 +
* there were changes in the xx ballot to update confidentiality
 +
 
 +
V2.9 HL7 access proposal
 +
* in chapter 4; want clarification.  security labels content is different than found in orders
 +
* two sections which are talking about kind of labs--they were using vocabulary that was close to vocab in v3; which we changed years ago because of a mix of sensitivity and confidentiality--Kathleen proposes that the codes be retired
 +
* recommendation is that they use the ARV segment be used which can point to any part of the lab order for results--removing table from both segments where they currently occur; avoiding conflict, note this is not a controversial issue...strictly clean-up.  Rikki Merrick is trying to get into OO agenda to get in publishing of v2.9 clean-up
 +
 
 +
* question on harmonization – (Mike) this is a vocabulary--where does Hl7 specify where these marking are optional or mandatory?... <Kathleen response> no, there is a specific policy; it says what is in the law; so, it’s still an interpretation of the law.
 +
**mike - part of the law 7332; has to do with what we've determined are the handling instructions... HII of the law; he has it from the legal folks, that their interpretations that its a requirement on the recipient not of the VA--or to tell them that such a restriction exists
 +
**if 7332 hadn't been specified for just health; there is something in the law (if specified)… then
 +
(listen to recording)
 +
** in other words, it’s up to the implementer to decide on the language
 +
 
 +
 
 +
HL7 2 to FHIR PSS'''
 +
* standards approach mapping from v2 to FHIR
 +
* each of the datatypes;
 +
* effort is underway (meetings every other week); the mapping between chapter 9 con segment and the FHIR consent and contract
 +
** important in regard to the transform; having capability from going from one set to another. i.e. get transform set into FHIR (confirm)
 +
 
 +
 
 +
GDPR whitepaper
 +
* no meeting this week
 +
* next meeting is 11/19 - noon (Monday)
 +
 
 +
 
 +
FHIR Security call update
 +
* Short call today; went over v2 FHIR
 +
* current build is frozen
 +
* because of HIMSS several subjects are up in the air
 +
* September care planning are not going to be at HIMSS--and not be at the January WGM--this will lower about ability to move with security and consent--we will still be able to do work with break glass
 +
 
 +
 
 +
 
 +
additional agenda items?
 +
 
 +
None
 +
 
 +
Motion t adjourn (Kathleen)
 +
Meeting adjourned at 1320 Arizona Time  --[[User:Suzannegw|Suzannegw]] ([[User talk:Suzannegw|talk]]) 15:20, 13 November 2018 (EST)
 +
Temporary Recording: https:fccdl.in/yN1FTQeUV
 +
 
 +
 
 
[[Security|Back to Security Main Page]]
 
[[Security|Back to Security Main Page]]

Latest revision as of 20:53, 13 November 2018

Back to Security Main Page

Attendees

Back to Security Main Page

x Member Name x Member Name x Member Name x Member Name
. John Moehrke Security Co-chair x Kathleen Connor Security Co-chair x Alexander Mense Security Co-chair . Trish Williams Security Co-chair
x Christopher Shawn Security Co-chair x Suzanne Gonzales-Webb x Mike Davis . David Staggs
x Diana Proud-Madruga . Johnathan Coleman x Francisco Jauregui x Joe Lamy
. Theresa Ardal Connor . Greg Linden . Grahame Grieve x Dave Silver
. x Beth Pumo . Jim Kretz . Peter Bachman x Peter VanLiesdonk]

Back to Security Main Page

Agenda

  1. (2 min) Roll Call, Agenda Approval
  2. (5 min) Review and Approval of Minutes November 6, 2018
  3. (5 min) Update on revision of PASS Audit - Is reconciliation spreadsheet ready for upload? - Mike
  4. (5 min) Security Harmonization proposal codes approved Some value sets will be proposed in March - Kathleen
  5. (5 min) v2.9 Change Request related to Confidentiality codes - Kathleen
  6. (5 min) HL7 v2 to FHIR PSS, v2 to FHIR Spreadsheet for Security - Kathleen
  7. (5 min) GDPR whitepaper on FHIR Update, reminder of new call schedule - Alex
  8. (5 min) FHIR Security call update - John

Back to Security Main Page

Meeting Minutes

Meeting Chair - Chris Shawn

Meeting Minute Approval - November 6, 2018

  • (Motion to approve (Suzanne/Kathleen): Vote: objections/abstentions: none;

((Suzanne to add harmonization proposal link))


Update on PASS Audit reconciliation

  • last understood was that reconciliation comments were completed, and we could ask for withdrawal
  • Kathleen brought up that Bernd B wants to see corrections in the document before he withdrawals
    • as far as Mike is concerned we should push forward and request withdrawal of negative
  • e-mail from Lynn Laakso; there was material due in order to ballot TF4FA; she has listed that one and two have not been published? was this a new requirement...Kathleen asked if this was a new rule? which could be a show stopper...
    • we will wait and see what her answer is before proceeding. Current answer is we don't know.

Harmonization codes

  • all three proposals were approved; Kathleen is deferring the codes that were not completed to next harmonization
  • policy codes have been brought into v2
  • next harmonization
  • there were changes in the xx ballot to update confidentiality

V2.9 HL7 access proposal

  • in chapter 4; want clarification. security labels content is different than found in orders
  • two sections which are talking about kind of labs--they were using vocabulary that was close to vocab in v3; which we changed years ago because of a mix of sensitivity and confidentiality--Kathleen proposes that the codes be retired
  • recommendation is that they use the ARV segment be used which can point to any part of the lab order for results--removing table from both segments where they currently occur; avoiding conflict, note this is not a controversial issue...strictly clean-up. Rikki Merrick is trying to get into OO agenda to get in publishing of v2.9 clean-up
  • question on harmonization – (Mike) this is a vocabulary--where does Hl7 specify where these marking are optional or mandatory?... <Kathleen response> no, there is a specific policy; it says what is in the law; so, it’s still an interpretation of the law.
    • mike - part of the law 7332; has to do with what we've determined are the handling instructions... HII of the law; he has it from the legal folks, that their interpretations that its a requirement on the recipient not of the VA--or to tell them that such a restriction exists
    • if 7332 hadn't been specified for just health; there is something in the law (if specified)… then

(listen to recording)

    • in other words, it’s up to the implementer to decide on the language


HL7 2 to FHIR PSS

  • standards approach mapping from v2 to FHIR
  • each of the datatypes;
  • effort is underway (meetings every other week); the mapping between chapter 9 con segment and the FHIR consent and contract
    • important in regard to the transform; having capability from going from one set to another. i.e. get transform set into FHIR (confirm)


GDPR whitepaper

  • no meeting this week
  • next meeting is 11/19 - noon (Monday)


FHIR Security call update

  • Short call today; went over v2 FHIR
  • current build is frozen
  • because of HIMSS several subjects are up in the air
  • September care planning are not going to be at HIMSS--and not be at the January WGM--this will lower about ability to move with security and consent--we will still be able to do work with break glass


additional agenda items?

None

Motion t adjourn (Kathleen) Meeting adjourned at 1320 Arizona Time --Suzannegw (talk) 15:20, 13 November 2018 (EST) Temporary Recording: https:fccdl.in/yN1FTQeUV


Back to Security Main Page

Retrieved from "https://wiki.hl7.org/w/index.php?title=November_13,_2018_Security_Conference_Call&oldid=163386"