This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

April 10, 2018 Security Conference Call

From HL7Wiki
Revision as of 05:13, 15 April 2018 by Kathleenconnor (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Back to Security Main Page

Attendees

x Member Name x Member Name x Member Name x Member Name
x John Moehrke Security Co-chair x Kathleen Connor Security Co-chair x Alexander Mense Security Co-chair . Trish Williams Security Co-chair
x Christopher Shawn Security Co-chair x Suzanne Gonzales-Webb x Mike Davis x David Staggs
x Diana Proud-Madruga x Francisco Jauregui x Joe Lamy . Greg Linden
x Rhonna Clark . Grahame Grieve . Johnathan Coleman x [mailto: Matt Blackman, Sequoia]
. Mohammed Jafari x Jim Kretz . Peter Bachman x Dave Silver
. Beth Pumo . Bo Dagnall . Riki Merrick . Theresa Connor

Back to Security Main Page

Agenda

  1. (2 min) Roll Call, Agenda Approval
  2. (5 min) Review and Approval of April 3rd minutes
  3. (5 min) TF4FA Normative Ballot - time to vote - Mike
  4. (15 min) FHIR Security Updates - John
  5. (15 min) Security Cologne May WGM Agenda - Kathleen

Meeting Minutes

Chris Shawn, chair Roll Call, Agenda Review, Meeting Minutes approval

http://wiki.hl7.org/index.php?title=April_10,_2018_Security_Conference_Call

  • Motion: Meeting Minutes Approval (Kathleen/Johnathan)
  • Opposed: none; Abstentions: none; Approved: 12

TF4FA Ballot - Mike

  • Time to vote, we are hoping things go well
  • Ballot is Normative
  • Intend to continue with the PSAF charter (also mentioned on CBCP); have started work on Audit volume 3
    • Volume 3 will have elements of life cycle events and Audit and Provenance
    • A&P are related, the work with did with EHR - Provenance of things and lifecycle events and audit
    • First thought is to look into block chain technology--signed ledger idea behind that---trust history; we’ve already brought up a little of this...we will not get too detailed in it
    • We have idea of by September by then to ballot in January - depending on how the current two volumes go with Normative

FHIR Security update -John M

  • We are working through the ONC API and security
    • Next item is input validation, agreed to add as an item as a high-level punch list on security spec
    • Discussion on litmus test to help determine something that rises to the level that we should say something otherwise we will duplicate the existing security works--which is not desired
    • We didn’t come up with a good litmus test--but we will add... one for now... when is it something specific to securing FHIR vs we should have some recommendation to use a security framework and have a list of some security frameworks--we haven't yet touched upon (it will have to be a topic) ...
    • Continuing to work through the ONC paper
  • New time is better meeting time 2PM ET (right before this meeting)

Cologne Agenda - Kathleen (DRAFT)

Meeting adjourned at 1235 Arizona Time --Suzannegw (talk) 15:35, 10 April 2018 (EDT)