This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "November 17, 2015 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
(Created page with "==Attendees== {| class="wikitable" |- !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !! |- || x|| [mailto:mike.davis@va.gov Mike Davis]Securit...")
 
 
(4 intermediate revisions by 2 users not shown)
Line 15: Line 15:
 
||x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 
||x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 
||||.||  [mailto:ken.salyards@samhsa.hhs.gov Ken Salyards]
 
||||.||  [mailto:ken.salyards@samhsa.hhs.gov Ken Salyards]
||||||  [mailto:cbrown@socialcare.com Christopher D Brown] TX
+
||||x||  [mailto:cbrown@socialcare.com Christopher D Brown] TX
  
 
|-
 
|-
 
||.|| [mailto:trish.williams@ecu.edu.au Trish Williams]Security Co-chair
 
||.|| [mailto:trish.williams@ecu.edu.au Trish Williams]Security Co-chair
 
||||.||  [mailto:gary.dickinson@ehr-standards.com Gary Dickinson]
 
||||.||  [mailto:gary.dickinson@ehr-standards.com Gary Dickinson]
||||||  [mailto:dsilver@electrosoft-inc.com Dave Silver]
+
||||x||  [mailto:dsilver@electrosoft-inc.com Dave Silver]
 
      
 
      
 
|-
 
|-
Line 35: Line 35:
 
||  x||  [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
 
||  x||  [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
 
||||||  [mailto:Ken.Rubin@hp.com Ken Rubin]
 
||||||  [mailto:Ken.Rubin@hp.com Ken Rubin]
||||||  [mailto:bkinsley@nextgen.com William Kinsley]
+
||||x||  [mailto:bkinsley@nextgen.com William Kinsley]
  
 
|-
 
|-
Line 45: Line 45:
 
||  x||  [mailto:gfm@securityrs.com Glen Marshall], SRS
 
||  x||  [mailto:gfm@securityrs.com Glen Marshall], SRS
 
||||||  [mailto:akleinebe@gmail.com Bill Kleinebecker ]
 
||||||  [mailto:akleinebe@gmail.com Bill Kleinebecker ]
|||||| [mailto:Christoper.Shawn@va.gov Chris Shawn]
+
||||x|| [mailto:Christopher.Shawn2@va.gov Christopher Shawn]
 
|-
 
|-
 
||  ||  [mailto:oliver@lawless.co Oliver Lawless]
 
||  ||  [mailto:oliver@lawless.co Oliver Lawless]
Line 51: Line 51:
 
||||||  [mailto:serafina.versaggi@gmail.com Serafina Versaggi ]
 
||||||  [mailto:serafina.versaggi@gmail.com Serafina Versaggi ]
 
|-
 
|-
|| ||  [mailto:Beth.Pumo@kp.org Beth Pumo]
+
|| x ||  [mailto:Beth.Pumo@kp.org Beth Pumo]
 
||||||  [mailto:russell.mcdonell@c-cost.com Russell McDonell]
 
||||||  [mailto:russell.mcdonell@c-cost.com Russell McDonell]
 
||||||  [mailto:paul.petronelli@gmail.com Paul Petronelli ], Mobile Health
 
||||||  [mailto:paul.petronelli@gmail.com Paul Petronelli ], Mobile Health
 
|-
 
|-
 
||  ||  [mailto:cdoss@ncat.edu Christopher Doss]
 
||  ||  [mailto:cdoss@ncat.edu Christopher Doss]
|||||| [mailto:Christopher.Shawn2@va.gov Christopher Shawn]
+
||||x|| [mailto: ]
 
||||||  [mailto: ]
 
||||||  [mailto: ]
 
|-
 
|-
Line 68: Line 68:
 
# ''( 5 min)'' '''Roll Call, Agenda Approval'''
 
# ''( 5 min)'' '''Roll Call, Agenda Approval'''
 
# ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=November_10,_2015_Security_Conference_Call November 10 Meeting Minutes] '''  
 
# ''( 5 min)'' '''Approve [http://wiki.hl7.org/index.php?title=November_10,_2015_Security_Conference_Call November 10 Meeting Minutes] '''  
# ''( 5 min)'' '''Healthcare Security and Privacy Access Control Catalog''' Update
+
# ''( 5 min)'' '''Healthcare Security and Privacy Access Control Catalog''' Update - Rick, Suzanne
# '''( 5 min)'' SOA Cloud Planning Guide''' - Diana
 
# '''Status SP Privacy Engineering Framework participation as SMEs''' - Mike
 
 
# ''( 5 min)'' '''Joint Vocabulary Alignment Update''' - Diana
 
# ''( 5 min)'' '''Joint Vocabulary Alignment Update''' - Diana
 
# ''(  min)'' '''FHIR Security '''report out  - John
 
# ''(  min)'' '''FHIR Security '''report out  - John
 
# ''(35 min)'' '''PASS Access Control Conceptual Model (SOA) ballot reconciliation''' Update - Diana, Don Jorgenson, Mike, Dave
 
# ''(35 min)'' '''PASS Access Control Conceptual Model (SOA) ballot reconciliation''' Update - Diana, Don Jorgenson, Mike, Dave
 +
 +
 +
'''**New**
 +
FHIR Security Topics ''' in support of FHIM
 +
Meeting Information:  Tuesdays 2:00PM PT/5:00PM ET
 +
Phone: '''+1 770-657-9270''', Participant Code: '''994563''' hosted by Security
 +
Web meeting Info:  [https://global.gotomeeting.com/join/520841173  https://global.gotomeeting.com/join/520841173 ]
 +
Discussion includes: Security - Audit, Provenance, Labels, Signature
 +
 +
'''**New**
 +
''Wednesday Consent on FHIR Topics ''' 3:00PM PT/6:00 PM ET hosted by CBCC
 +
GoToMeeting information: [https://global.gotomeeting.com/join/520841173 https://global.gotomeeting.com/join/520841173 ]
 +
Phone: '''+1 770-657-9270''', Participant Code: '''994563 '''
  
 
==Meeting Minutes (DRAFT)==
 
==Meeting Minutes (DRAFT)==
  
Meeting Minutes approval
+
'''Meeting Minutes approval for November 10, 2015'''
 +
 
 +
* Unanimous approval
 +
* ''Objections: none; Abstentions: none; Approval: 9''
 +
 
 +
'''Healthcare Security and Privacy Access Control Catalog'''
 +
 
 +
* review FINAL Draft document on Tuesday, November 24; due on the 29th
 +
* Suzanne to send Alex current DRAFT, highlighting the items changed in the original RBAC document, and the spreadsheet
 +
** focus in on the spreadsheet
 +
** original updates to the spreadsheet were deemed to be part of the PEP (rather than the PIP); as well as more policy and are not AC decisions
 +
*** '''distinguishing between what is AC and what is policy, removing the policy-related items from the spreadsheet'''
 +
 
 +
'''Joint Vocabulary Alignment'''
 +
 
 +
Looking at finishing up the extended definitions, filling in the blanks for the terms/diagrams already completed
 +
 
 +
'''FHIR Security'''
 +
 
 +
Wednesday afternoon meetings
 +
* taking items in CP systems, working out the details in each of the subjects (FHIR Provenance, Labels, Signature...)
 +
* suggestion made for an alternate meeting to provide opportunity for additional member participation
 +
 
 +
'''PASS Access Control Conceptual Model (SOA) ballot reconciliation'''
 +
 
 +
Row 103 (comment 100) through 147
 +
 
 +
not discussed comments #101, 117, 125, 128, 133, 134, 135, 136, 137, 138, 142, 144, 148-152 (require further discussion)
 +
 
 +
Comment #131 - missing information in tables (Chapter 5)
 +
 
 +
'''MOTION:''' to accept the comment dispositions resolutions for comments #100-147
 +
 
 +
''Objections: none; Abstentions: none; Approved: 10''
 +
 
 +
No further discussion
 +
 
 +
* Comment #101 - should be ''Party Token'' - persuasive
 +
* Comment #117 - should be ''clearance'' - persuasive
 +
* Comment #125 - not persuasive, considered for future use
 +
* Comment #128 - not persuasive, considered for future use
 +
 
 +
'''Motion:''' accept dispositions for the above information as discussed (Diana/Beth)
 +
 
 +
''Objections: none; Abstentions: none; Approved: 9'' (Alex left meeting at start of discussion)
 +
 
 +
''Meeting Adjourned at 1300 PST''  --[[User:Suzannegw|Suzannegw]] ([[User talk:Suzannegw|talk]]) 16:01, 17 November 2015 (EST)

Latest revision as of 14:32, 24 November 2015

Attendees

x Member Name x Member Name x Member Name
x Mike DavisSecurity Co-chair Duane DeCouteau . Chris Clark
x John MoehrkeSecurity Co-chair Johnathan Coleman . Aaron Seib
x Alexander Mense Security Co-chair . Ken Salyards x Christopher D Brown TX
. Trish WilliamsSecurity Co-chair . Gary Dickinson x Dave Silver
Kathleen Connor . Ioana Singureanu Mohammed Jafari
x Suzanne Gonzales-Webb Rob Horn . Galen Mulrooney
x Diana Proud-Madruga Ken Rubin x William Kinsley
x Rick Grow Paul Knapp . Debbie Bucci
x Glen Marshall, SRS Bill Kleinebecker x Christopher Shawn
Oliver Lawless Rob Horn Serafina Versaggi
x Beth Pumo Russell McDonell Paul Petronelli , Mobile Health
Christopher Doss x [mailto: ] [mailto: ]

Back to Security Main Page

Agenda DRAFT

  1. ( 5 min) Roll Call, Agenda Approval
  2. ( 5 min) Approve November 10 Meeting Minutes
  3. ( 5 min) Healthcare Security and Privacy Access Control Catalog Update - Rick, Suzanne
  4. ( 5 min) Joint Vocabulary Alignment Update - Diana
  5. ( min) FHIR Security report out - John
  6. (35 min) PASS Access Control Conceptual Model (SOA) ballot reconciliation Update - Diana, Don Jorgenson, Mike, Dave


**New** 
FHIR Security Topics  in support of FHIM
Meeting Information:  Tuesdays 2:00PM PT/5:00PM ET
Phone: +1 770-657-9270, Participant Code: 994563 hosted by Security
Web meeting Info:   https://global.gotomeeting.com/join/520841173  
Discussion includes: Security - Audit, Provenance, Labels, Signature
**New** 
Wednesday Consent on FHIR Topics ' 3:00PM PT/6:00 PM ET hosted by CBCC
GoToMeeting information: https://global.gotomeeting.com/join/520841173 
Phone: +1 770-657-9270, Participant Code: 994563 

Meeting Minutes (DRAFT)

Meeting Minutes approval for November 10, 2015

  • Unanimous approval
  • Objections: none; Abstentions: none; Approval: 9

Healthcare Security and Privacy Access Control Catalog

  • review FINAL Draft document on Tuesday, November 24; due on the 29th
  • Suzanne to send Alex current DRAFT, highlighting the items changed in the original RBAC document, and the spreadsheet
    • focus in on the spreadsheet
    • original updates to the spreadsheet were deemed to be part of the PEP (rather than the PIP); as well as more policy and are not AC decisions
      • distinguishing between what is AC and what is policy, removing the policy-related items from the spreadsheet

Joint Vocabulary Alignment

Looking at finishing up the extended definitions, filling in the blanks for the terms/diagrams already completed

FHIR Security

Wednesday afternoon meetings

  • taking items in CP systems, working out the details in each of the subjects (FHIR Provenance, Labels, Signature...)
  • suggestion made for an alternate meeting to provide opportunity for additional member participation

PASS Access Control Conceptual Model (SOA) ballot reconciliation

Row 103 (comment 100) through 147

not discussed comments #101, 117, 125, 128, 133, 134, 135, 136, 137, 138, 142, 144, 148-152 (require further discussion)

Comment #131 - missing information in tables (Chapter 5)

MOTION: to accept the comment dispositions resolutions for comments #100-147

Objections: none; Abstentions: none; Approved: 10

No further discussion

  • Comment #101 - should be Party Token - persuasive
  • Comment #117 - should be clearance - persuasive
  • Comment #125 - not persuasive, considered for future use
  • Comment #128 - not persuasive, considered for future use

Motion: accept dispositions for the above information as discussed (Diana/Beth)

Objections: none; Abstentions: none; Approved: 9 (Alex left meeting at start of discussion)

Meeting Adjourned at 1300 PST --Suzannegw (talk) 16:01, 17 November 2015 (EST)