This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

January 26, 2016 Security Conference Call

From HL7Wiki
Jump to navigation Jump to search

Back to Security Work Group Main Page

Attendees

x Member Name x Member Name x Member Name
x Mike DavisSecurity Co-chair Duane DeCouteau . Chris Clark
John MoehrkeSecurity Co-chair Johnathan Coleman . Aaron Seib
Alexander Mense Security Co-chair . Ken Salyards . Christopher D Brown TX
. Trish WilliamsSecurity Co-chair . Gary Dickinson . Dave Silver
x Kathleen Connor . Ioana Singureanu x Mohammed Jafari
x Suzanne Gonzales-Webb Rob Horn . Galen Mulrooney
x Diana Proud-Madruga Ken Rubin William Kinsley
x Rick Grow Paul Knapp . Debbie Bucci
. Glen Marshall, SRS Bill Kleinebecker x Christopher Shawn
Oliver Lawless Rob Horn Serafina Versaggi
Beth Pumo Russell McDonell Paul Petronelli , Mobile Health
Christopher Doss x Kamalini Vaidya [mailto: ]

Back to Security Main Page

Agenda DRAFT

  1. ( 5 min) Roll Call, Agenda Approval
  2. ( 5 min) Approve January 5, 2016 Security WG Conference Call Minutes
  3. ( 5 min) Approve January 2016 Orlando WGM Minutes
  4. ( 5 min) Joint Vocabulary Alignment Update - Diana
  5. (10 min) FHIR Security report out - John / not covered
  6. ( 5 min) Update Preview of Audit Conceptual Model - Dave
  7. ( 5 min) PASS Audit Conceptual Model – Diana

Note that there will be a FHIR Security call at 2pm PT/5pm ET See agenda at FHIR Security Agenda

Minutes

  • RE 1: Roll taken. Agenda approved with modification.
  • RE 2: The January 5, 2016 Security WG Conference Call Minutes were unanimously approved
  • RE 3: A vote to approve the January 2016 Orlando WGM Minutes was deferred after the group walked through them to give members another week to review.
  • RE 4: Diana and Mike discussed current work and status of the Joint Vocabulary Alignment project. In preparation for March Harmonization, Kathleen will pre-populate a Harmonization proposal for the initial submission, which is due 02-07-16. Mike and Diana can add the models and the Lifecycle term definitions.
  • RE 5: Since John is unable to attend, Kathleen gave an update. Per John, most of the FHIR AuditEvent and Provenance Resource CPs have been addressed, but not all have been implemented. Documenation, changes and additions to elements need to be added to the build, and vocabulary bindings need to be pulled in.

Kathleen also noted that she intends to submit:

  • A CP to add a Provenance.Lifecycle element so that records management perspective on changes to the Provenance target can be differentiated from a system or trigger/provenance event perspective on the activity that caused the current state of the target.
  • A CP to make Security Labels immutable based on the foundational standards for HL7 Healthcare Privacy and Security Classification and the HL7 Security Labeling Service, which describe the processes and procedures for classifying, reclassifiy, and declassifying security labels. The CP will propose that a new type of metadata be added for policy tags that would not be immutable, although profiles could change the versioning requirements.
  • RE 6: Dave had already presented the Audit Conceptual Model being developed for VA. Mike stated that this model may be brought to HL7.
  • RE 7: Diana reported on status of the PASS Audit Conceptual Model work. Mike reported on discussions with SOA WG at HL7 Orlando WGM about whether SOA or Security WG should be the sponsor and owner of this model. Mike stated that the TSC may be approached to see if it is possible for both SOA and Security WGS could be joint owners of this model.
  • RE FHIR Security Meeting scheduled for later in the day: Decision was to go ahead with the meeting so we can get a detailed walk through of the Lifecycle models, which are based on Provenance, and discussion about definitions under development. Another question to the FHIR Security group is any historical background on the source of the current list of Lifecycle codes.
  • The call was adjourned early.