This wiki has undergone a migration to Confluence found Here
February 17, 2015 Security WG Conference Call
Revision as of 08:09, 17 February 2015 by JohnMoehrke (talk | contribs) (Created page with " Meeting Information Back to Security Main Page ==Attendees== {| class="wikitable" |- !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||...")
Attendees
x | Member Name | x | Member Name | x | Member Name | |||
---|---|---|---|---|---|---|---|---|
x | Mike DavisSecurity Co-chair | . | Duane DeCouteau | . | Chris Clark | |||
x | John MoehrkeSecurity Co-chair | x | Johnathan Coleman | . | Aaron Seib | |||
. | Alexander Mense Security Co-chair | . | Ken Salyards | . | Don Jorgenson | |||
. | Trish WilliamsSecurity Co-chair | . | Gary Dickinson | . | Tim McKay | |||
x | Kathleen Connor | . | Ioana Singureanu | . | Mohammed Jafari | |||
x | Suzanne Gonzales-Webb | . | Paul Knapp | . | Galen Mulrooney | |||
x | Diana Proud-Madruga | . | Reed Gelzer | . | William Kinsley | |||
x | Rick Grow | . | Steve Hufnagel | . | [ |
Agenda DRAFT
//Need to update//
- (05 min) Roll Call, February 3 Meeting Minutes
- HL7 Security January 2015 WGM Minutes Review and approve
- (10 min) FHIM S&P Modeling Project Wiki and Call Logistics - Kathleen
- FHIR Data Provenance Ownership
- (10 min) Vocabulary Alignment Project - Diana/Reed
- (as time allows) FHIR disposition - review/discussion, ongoing agenda item
- Prepared to be ready to Vote
- 5393 -- Jan 2015 Ballot Comment #282
- 5394 -- Jan 2015 Ballot Comment #283
- 3945 -- add a new value to the issue type valueset
- 5658 -- Update the ASTM signature purpose with definitions from the ASTM
- Prepared to be ready to Vote
specification
- Ready for Discussion
- 3411 --Source should be removed from Provenance Agent Role valueset
- I think we should evaluate all of the vocabulary in Provenance Agent Role
- 3411 --Source should be removed from Provenance Agent Role valueset
- Ready for Discussion
against W3C. It seems that when we looked at this last week the W3C had a very small value-set that was more clear that it was roles that could create/update content. Where as the vocabulary today in FHIR is larger and less clear. – Need someone to suggest the harmonized list. I think Kathleen said she would show us this trimmed version.
- 5398 Jan 2015 Ballot Comment #287
- Expand on Provenance.agent.reference to include the same capability to
- 5398 Jan 2015 Ballot Comment #287
reference specific FHIR objects as SecurityEvent has. I think this is ready for vote, but likely needs discussion first.
- 5541 -- Add best practice narrative on suppressing data for client access of a
resource
- I think this is a duplicate of 3945, in the to be voted on list above.
Presume when we add the item, we add narrative. Or we could change 5541 into narrative for the security page, or http page, or query page… need discussion.
- 3298 Binary resources can be subverted for cross-site scripting
- Need someone knowledgeable in the vulnerability and attack to write a paragraph
- 5525 -- Consent Directive does not appear to be aligned with the 80%
- Read all the comments in the CP and discuss.
- 3298 Binary resources can be subverted for cross-site scripting
- (05 min) Other business, action items, and adjournment