October 25, 2011 Security Working Group Conference Call
Security Working Group Meeting
==Attendees== (expected)
- Bernd Blobel Security Co-chair, absent
- Bill Braithwaite, MD
- Kathleen Connor
- Tom Davidson
- Mike Davis Security Co-chair
- Jon Farmer
- Suzanne Gonzales-Webb CBCC Co-chair
- Russ Hamm
- John Moehrke Security Co-chair
- Milan Petkovic
- Pat Pyette
- Scott Robertson
- Arnie Rosenet
- Ken Salyards
- Richard Thoreson CBCC Co-chair
- Ioana Singureanu
- David Staggs
- Serafina Versaggi
- Tony Weida
- Craig Winter
Agenda
- (05 min) Roll Call, Approve Minutes & Accept Agenda
- (15 min) Findings: What is vocabulary - Glen Marshall
- (15 min) Discussion carry over from September 2011 WGM Claims Aware SMIME, approach to moving policies with data without letting intermediaries have access to the payload - Trevor Freeman (MSFT Security expert)
- (15 min) Security and Privacy Ontology - Tony Weida
- (5 min) Includsion of International Security WG Members' ACTION ITEM: Doodle Poll
- (5 min) 'EHR Functional Model - John Moehrke, report out
Meeting Minutes (DRAFT)
Roll Call, Approve Minutes & Accept Agenda
- (15 min) Findings: What is vocabulary - Glen Marshall
from e-mail string: What is a vocabulary? For the purposes of health IT security, a vocabulary is a mutually-understood standard set of values that facilitate: Vocabulary value-sets are typically called-for in underlying standards, although those standards are not required to specify the values.
More than one vocabulary set is required. Each set covers only one concept, and there are multiple concepts in the health IT security domain.
What is a vocabulary standard? For a vocabulary to be standard selected for mutual use, it must: In addition, a vocabulary should: I'm sure there are more items and opinions that can be incorporated, but I want to see us define and constrain the basis for selecting standards up-front.
(from Tony Weida): HL7’s definitions are in the “Core Principles”. Specifically, see the HL7 Version 3 Standard > Foundation > Core Principles and Properties of HL7 Version 3 Models > Coded Model Elements and Their Vocabularies > HL7 Vocabulary:
http://www.hl7.org/v3ballot/html/welcome/environment/index.html Note that HL7 refers to Vocabularies as Code Systems. The phrase “code set” is sometimes used as a synonym for “vocabulary”. For example, ICD-9-CM and CPT are sometimes referred to as code sets. HL7 doesn’t use “code set”. In the context of HL7 it’s probably best to stick with their names.
Discussion carry over from September 2011 WGM approach to moving policies with data without letting intermediaries have access to the payload - Trevor Freeman (MSFT Security expert)
Security and Privacy Ontology - Tony Weida
Other Business
Action Items
#ACTION ITEM: Doodle Poll (Mike Davis)
Proposal 1: add an additional call per month (or bi-weekly) Proposal 2: or change one of the regularly call to a time that is more convenient for the international people 9-10AM EST (Mike is looking at his notes on this) Doodle poll as to what are acceptable times?