Difference between revisions of "July 19, 2016 Security Conference Call"

Revision as of 19:18, 19 July 2016

x	Member Name	x	Member Name	x	Member Name
x	Kathleen ConnorSecurity Co-chair	.	Duane DeCouteau	.	Chris Clark
	John MoehrkeSecurity Co-chair	.	Johnathan Coleman	.	Aaron Seib
x	Alexander Mense Security Co-chair	.	Ken Salyards	.	Christopher D Brown TX
.	Trish WilliamsSecurity Co-chair	.	Gary Dickinson	.	Dave Silver
x	Mike Davis	.	Ioana Singureanu	X	Mohammed Jafari
x	Suzanne Gonzales-Webb	x	Rob Horn	.	Galen Mulrooney
x	Diana Proud-Madruga	.	Ken Rubin	.	William Kinsley
x	Rick Grow	.	Paul Knapp	.	Mayada Abdulmannan
x	Glen Marshall, SRS	.	Bill Kleinebecker	.	Christopher Shawn
.	Oliver Lawless	x	Grahame Grieve	.	Serafina Versaggi
.	Beth Pumo	.	Russell McDonell	.	Paul Petronelli , Mobile Health
.	Christopher Doss	.	Kamalini Vaidya	x	[mailto: David Staggs]

(2 min) Roll Call, Agenda Approval
(3 min) Approve Security WG July 12, 2016 Minutes
(15 min) Update on the PSAF Security Policy model - Mike & Dave to update on VA Architectural Model, which is based on S&P DAM and earlier PSAF model that Kathleen and Galen started. Mike and Kathleen plan to include this work in the Sept "For Comment" Ballot material.
(5 min) Standards Privacy Impact Assessment Cookbook - Rick
(5 min) PASS Access Control Services Conceptual Model - Diana
(5 min) PASS Audit Conceptual Model – Diana
(10 min) HEART Update on FHIR nexus - John for July 11th and Kathleen for July 18th HEART call update on discussions about using FHIR Consent.data to create HEART Registration Sets with Confidentiality code Security Label, and possible use of Security Labels, specifically Confidentiality codes, as part of the HEART Authorization scopes. Use case under consideration is "no more clipboard". Eve Maler is developing. Question is how to incorporate Confidentiality code into that use case. Also interest in including Confidentiality codes and perhaps other security labels in the HEART FHIR OAuth 2.0 Scopes
(10 min) Review for FTSD vote on DAF PSS - Kathleen
(2 min) Recommended reading: Examining Oversight of the Privacy & Security of Health Data Collected by Entities Not Regulated by HIPAA

Note that there will be a FHIR Security call at 5pm ET See agenda at FHIR Security Agenda

@@ Line 7: / Line 7: @@
 !x||'''Member Name'''|| !!  x ||'''Member Name''' !!|| x ||'''Member Name''' !!
 |-
-||  || [mailto:Kathleen_Connor@comcast.net Kathleen Connor]Security Co-chair
+||  x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor]Security Co-chair
 ||||.|| [mailto:duane.decouteau@gmail.com Duane DeCouteau]
 ||||.|| [mailto:Chris.R.Clark@wv.gov Chris Clark]
 |-
-||  X|| [mailto:john.moehrke@med.ge.com John Moehrke]Security Co-chair
+|| || [mailto:john.moehrke@med.ge.com John Moehrke]Security Co-chair
 ||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
 ||||.|| [mailto:aaron.seib@2311.net Aaron Seib]
 |-
-||  .|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
+||  x|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 ||||.|| [mailto:ken.salyards@samhsa.hhs.gov Ken Salyards]
 ||||.|| [mailto:cbrown@socialcare.com Christopher D Brown] TX
@@ Line 40: / Line 40: @@
 |-
-||  .|| [mailto:rgrow@technatomy.com Rick Grow]
+||  x|| [mailto:rgrow@technatomy.com Rick Grow]
 ||||.|| [mailto:pknapp@pknapp.com Paul Knapp]
 ||||.|| [mailto:Mayada.Abdulmannan@va.gov Mayada Abdulmannan]
@@ Line 59: / Line 59: @@
 ||  .|| [mailto:cdoss@ncat.edu Christopher Doss]
 ||||.|| [mailto:kamalinivaidya@systemsmadesimple.com Kamalini Vaidya]
-||||.|| [mailto: TBD ]
+||||x|| [mailto: David Staggs]
 |-
 |}