This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "July 19, 2016 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
Line 73: Line 73:
 
# ''(10 min)'' '''HEART Update on FHIR nexus''' - John for July 11th and Kathleen for July 18th HEART call update on discussions about using FHIR Consent.data to create HEART Registration Sets with Confidentiality code Security Label, and possible use of Security Labels, specifically Confidentiality codes, as part of the HEART Authorization scopes.  Use case under consideration is "no more clipboard".  Eve Maler is developing. Question is how to incorporate Confidentiality code into that use case. Also interest in including Confidentiality codes and perhaps other security labels in the [http://openid.bitbucket.org/HEART/openid-heart-fhir-oauth2.html HEART FHIR OAuth 2.0 Scopes]
 
# ''(10 min)'' '''HEART Update on FHIR nexus''' - John for July 11th and Kathleen for July 18th HEART call update on discussions about using FHIR Consent.data to create HEART Registration Sets with Confidentiality code Security Label, and possible use of Security Labels, specifically Confidentiality codes, as part of the HEART Authorization scopes.  Use case under consideration is "no more clipboard".  Eve Maler is developing. Question is how to incorporate Confidentiality code into that use case. Also interest in including Confidentiality codes and perhaps other security labels in the [http://openid.bitbucket.org/HEART/openid-heart-fhir-oauth2.html HEART FHIR OAuth 2.0 Scopes]
 
# ''(10 min)'' '''Review for FTSD vote on [http://gforge.hl7.org/gf/download/docmanfileversion/9310/14510/HL7%20Project%20Scope%20Statement_DAF_2016_PSS_v3.docx DAF PSS]''' - Kathleen
 
# ''(10 min)'' '''Review for FTSD vote on [http://gforge.hl7.org/gf/download/docmanfileversion/9310/14510/HL7%20Project%20Scope%20Statement_DAF_2016_PSS_v3.docx DAF PSS]''' - Kathleen
# ''(2 min)'' '''Recommended reading: [https://www.healthit.gov/sites/default/files/non-covered_entities_report_june_17_2016.pdf Examining Oversight of the Privacy & Security of Health Data Collected by Entities Not Regulated by HIPAA '''
+
# ''(2 min)'' '''Recommended reading: [https://www.healthit.gov/sites/default/files/non-covered_entities_report_june_17_2016.pdf Examining Oversight of the Privacy & Security of Health Data Collected by Entities Not Regulated by HIPAA] '''
 
Note that there will be a FHIR Security call at 5pm ET
 
Note that there will be a FHIR Security call at 5pm ET
 
See agenda at [http://wiki.hl7.org/index.php?title=HL7_FHIR_security_topics#Agenda_and_Minutes FHIR Security Agenda]
 
See agenda at [http://wiki.hl7.org/index.php?title=HL7_FHIR_security_topics#Agenda_and_Minutes FHIR Security Agenda]
  
 
==Minutes==
 
==Minutes==

Revision as of 18:08, 19 July 2016

Back to Security Work Group Main Page

Attendees

x Member Name x Member Name x Member Name
Kathleen ConnorSecurity Co-chair . Duane DeCouteau . Chris Clark
X John MoehrkeSecurity Co-chair . Johnathan Coleman . Aaron Seib
. Alexander Mense Security Co-chair . Ken Salyards . Christopher D Brown TX
. Trish WilliamsSecurity Co-chair . Gary Dickinson . Dave Silver
x Mike Davis . Ioana Singureanu X Mohammed Jafari
x Suzanne Gonzales-Webb x Rob Horn . Galen Mulrooney
x Diana Proud-Madruga . Ken Rubin . William Kinsley
. Rick Grow . Paul Knapp . Mayada Abdulmannan
x Glen Marshall, SRS . Bill Kleinebecker . Christopher Shawn
. Oliver Lawless x Grahame Grieve . Serafina Versaggi
. Beth Pumo . Russell McDonell . Paul Petronelli , Mobile Health
. Christopher Doss . Kamalini Vaidya . [mailto: TBD ]

Back to Security Main Page

Agenda DRAFT

  1. (2 min) Roll Call, Agenda Approval
  2. (3 min) Approve Security WG July 12, 2016 Minutes
  3. (15 min) Update on the PSAF Security Policy model - Mike & Dave to update on VA Architectural Model, which is based on S&P DAM and earlier PSAF model that Kathleen and Galen started. Mike and Kathleen plan to include this work in the Sept "For Comment" Ballot material.
  4. (5 min) Standards Privacy Impact Assessment Cookbook - Rick
  5. (5 min) PASS Access Control Services Conceptual Model - Diana
  6. (5 min) PASS Audit Conceptual Model – Diana
  7. (10 min) HEART Update on FHIR nexus - John for July 11th and Kathleen for July 18th HEART call update on discussions about using FHIR Consent.data to create HEART Registration Sets with Confidentiality code Security Label, and possible use of Security Labels, specifically Confidentiality codes, as part of the HEART Authorization scopes. Use case under consideration is "no more clipboard". Eve Maler is developing. Question is how to incorporate Confidentiality code into that use case. Also interest in including Confidentiality codes and perhaps other security labels in the HEART FHIR OAuth 2.0 Scopes
  8. (10 min) Review for FTSD vote on DAF PSS - Kathleen
  9. (2 min) Recommended reading: Examining Oversight of the Privacy & Security of Health Data Collected by Entities Not Regulated by HIPAA

Note that there will be a FHIR Security call at 5pm ET See agenda at FHIR Security Agenda

Minutes