This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "March 29, 2011 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
Line 51: Line 51:
 
Gerald and his group have been working on the hData REST spec.  They have added Security implications to the document and would like Security WG to take a look and complete a Security Risk Assessment on the spec (as it stands) and make recommendation on how to improve certain aspects of it and other guidance to improve the overall stand.  If possible, Gerald would like to complete the Risk Assessment and have feedback provided back to hData/Gerald prior to the May WG Meeting in Orlando with the goal to provide quality product to HL7
 
Gerald and his group have been working on the hData REST spec.  They have added Security implications to the document and would like Security WG to take a look and complete a Security Risk Assessment on the spec (as it stands) and make recommendation on how to improve certain aspects of it and other guidance to improve the overall stand.  If possible, Gerald would like to complete the Risk Assessment and have feedback provided back to hData/Gerald prior to the May WG Meeting in Orlando with the goal to provide quality product to HL7
  
'''DECISION:''' Security WG will go forward with the Risk Assessment.  John Moehrke/Suzanne/Diana Proud-Madruga to take lead.  Two weeks time has been set aside to review the spec.  Tentative start date for the Assessment will be April 12th meeting.
+
'''DECISION:''' Security WG will go forward with the Risk Assessment.  John Moehrke/Suzanne/Diana Proud-Madruga to take lead.  In two weeks time, the Security WG will set aside to review the spec and begin the Risk Assessment.  Tentative start date for the Assessment will be April 12th meeting.
  
3. ''(15min)'' '''[http://gforge.hl7.org/gf/download/docmanfileversion/6202/8173/HL7SecurityandPrivacyOntologyMay2011InformationalBallot.docx Security and Privacy Ontology]''' - Latest posting
 
  
4. ''(15 min)'' '''Report Out - Meeting with Patient Safety - Security Cookbook''' New Project Possibility? - John Moehrke
+
'''[http://gforge.hl7.org/gf/download/docmanfileversion/6202/8173/HL7SecurityandPrivacyOntologyMay2011InformationalBallot.docx Security and Privacy Ontology]''' - Latest posting
  
5. ''(15 min)'' '''Upcoming Security Cookbook Process Overview''' with Project Services/TSC
+
'''Report Out - Meeting with Patient Safety - Security Cookbook''' New Project Possibility? - John Moehrke
* Thursday March 31 @ 0900EDT
+
Add topic of discussion - Security Risk Assessment Cookbook.  Patient Safety feels that our process is a major focus of their group as well.  They would like to meet in Orlando at the Working Group meeting.  They currently have Wednesday Q1-Q4 available.  One to two quarters with Patient Safety to meet jointly they feel would be plenty of time to meet and discuss.
 +
NOTE:  Wednesday is currently full for the Security WG, this may be a meeting where John Moehrke goes off on his own to discuss with Patient Safety.
 +
 
 +
'''Upcoming Security Cookbook Process Overview''' with Project Services/TSC
 +
Suzanne was contacted by Freida Hall to go over the Security Risk Assessment process with Project Services. Project Services TSC 'owns' the project scope statement, project life cycle, etc., They are hoping we can assist in incorporating the Security Cookbook Process into project "work flow".  John M and Diana have been added to the meeting invite.
 +
Meeting Information:
 +
* Thursday March 31 @ 0900 EDT
 
* Call information: HL7 Project Services Work Group: '''1 770-657-9270 PC 281101'''
 
* Call information: HL7 Project Services Work Group: '''1 770-657-9270 PC 281101'''
* [http://gforge.hl7.org/gf/project/tsc/tracker/?action=TrackerItemEdit&tracker_item_id=1681&start=0 Project Tracker]; Project Services TSC 'owns' the project scope statement, project life cycle, etc., They are hoping we can assist in incorporating the Security Cookbook Process into project "work flow".
+
* [http://gforge.hl7.org/gf/project/tsc/tracker/?action=TrackerItemEdit&tracker_item_id=1681&start=0 Project Tracker];  
  
 
6. ''(5 min)'' '''[[May 2011 Working Group Meeting - Orlando, Florida USA, Security WG Agenda]]'''
 
6. ''(5 min)'' '''[[May 2011 Working Group Meeting - Orlando, Florida USA, Security WG Agenda]]'''
*Add Meeting w/Patient Safety (Wednesday Q1-Q4 are currently available); topic of discussion - Security Risk Assessment Cookbook
+
 
  
 
[[Security|Back to Security Main Page]]
 
[[Security|Back to Security Main Page]]

Revision as of 06:13, 12 April 2011

Security Working Group Meeting

Back to Security Main Page

Attendees


Back to Security Main Page


Agenda

1. (05 min) Roll Call, Approve Minutes & Accept Agenda

2. (15min) **New*** Risk Assessment request: hData REST spec / Gerald Beuchelt

  • Note: would like to complete by May WG Meeting in Orlando)

3. (15min) Security and Privacy Ontology - Latest posting

4. (15 min) Report Out - Meeting with Patient Safety - Security Cookbook New Project Possibility? - John Moehrke

5. (15 min) Upcoming Security Cookbook Process Overview with Project Services/TSC

  • Thursday March 31 @ 0900EDT
  • Call information: HL7 Project Services Work Group: 1 770-657-9270 PC 281101
  • Project Tracker; Project Services TSC 'owns' the project scope statement, project life cycle, etc., They are hoping we can assist in incorporating the Security Cookbook Process into project "work flow".

6. (5 min) May 2011 Working Group Meeting - Orlando, Florida USA, Security WG Agenda

  • Add Meeting w/Patient Safety (Wednesday Q1-Q4 are currently available); topic of discussion - Security Risk Assessment Cookbook

Back to Security Main Page

Meeting Minutes

Roll Call, Approve Minutes & Accept Agenda **New*** Risk Assessment request: hData REST spec / Gerald Beuchelt Gerald and his group have been working on the hData REST spec. They have added Security implications to the document and would like Security WG to take a look and complete a Security Risk Assessment on the spec (as it stands) and make recommendation on how to improve certain aspects of it and other guidance to improve the overall stand. If possible, Gerald would like to complete the Risk Assessment and have feedback provided back to hData/Gerald prior to the May WG Meeting in Orlando with the goal to provide quality product to HL7

DECISION: Security WG will go forward with the Risk Assessment. John Moehrke/Suzanne/Diana Proud-Madruga to take lead. In two weeks time, the Security WG will set aside to review the spec and begin the Risk Assessment. Tentative start date for the Assessment will be April 12th meeting.


Security and Privacy Ontology - Latest posting

Report Out - Meeting with Patient Safety - Security Cookbook New Project Possibility? - John Moehrke Add topic of discussion - Security Risk Assessment Cookbook. Patient Safety feels that our process is a major focus of their group as well. They would like to meet in Orlando at the Working Group meeting. They currently have Wednesday Q1-Q4 available. One to two quarters with Patient Safety to meet jointly they feel would be plenty of time to meet and discuss. NOTE: Wednesday is currently full for the Security WG, this may be a meeting where John Moehrke goes off on his own to discuss with Patient Safety.

Upcoming Security Cookbook Process Overview with Project Services/TSC Suzanne was contacted by Freida Hall to go over the Security Risk Assessment process with Project Services. Project Services TSC 'owns' the project scope statement, project life cycle, etc., They are hoping we can assist in incorporating the Security Cookbook Process into project "work flow". John M and Diana have been added to the meeting invite. Meeting Information:

  • Thursday March 31 @ 0900 EDT
  • Call information: HL7 Project Services Work Group: 1 770-657-9270 PC 281101
  • Project Tracker;

6. (5 min) May 2011 Working Group Meeting - Orlando, Florida USA, Security WG Agenda


Back to Security Main Page

Meeting Minutes

Roll Call, Approve Minutes & Accept Agenda

**New*** Risk Assessment request: hData REST spec / Gerald Beuchelt

  • Note: would like to complete by May WG Meeting in Orlando)


Security and Privacy Ontology - Latest posting Report:



Report Out - Meeting with Patient Safety - Security Cookbook New Project Possibility? - (John Moehrke, Suzanne Gonzales-Webb, Diana Proud-Madruga)


Upcoming Security Cookbook Process Overview with Project Services/TSC, Freida Hall

  • Thursday March 31, 2011 @ 0900EDT
  • Call information: HL7 Project Services Work Group: 1 770-657-9270 PC 281101
  • Project Tracker; Project Services TSC 'owns' the project scope statement, project life cycle, etc., They are hoping we can assist in incorporating the Security Cookbook Process into project "work flow".


May 2011 Working Group Meeting - Orlando, Florida USA, Security WG Agenda

  • Add Meeting w/Patient Safety (Wednesday Q1-Q4 are currently available); topic of discussion - Security Risk Assessment Cookbook. NOTE: This may be something John M has to do on his own, as the Security Agenda will be very full on Wednesday.


Action Items

Back to Security Main Page