April 1, 2014 Security WG Conference Call

Attendees

Member Name	Present	Member Name	Present	Member Name	Present
Mike Davis Security Co-chair		John Moehrke Security Co-chair		Trish Williams Security Co-chair
Bernd Blobel, Security Co-chair	.	Johnathan Coleman	x	Kathleen Connor	x
Duane DeCouteau		Reed Gelzer	.	Suzanne Gonzales-Webb CBCC Co-chair	x
Rick Grow	x	David Henkel	x	Mohammed Jafari
Don Jorgenson	.	Diana Proud-Madruga	x	Harry Rhodes	.
Ioana Singureanu	.	Richard Thoreson CBCC Co-chair	.	Ross Freeman	.
Amanda Nash		Walter Suarez	.	Tony Weida	x
Chris Clark	.	[Paul Petronelli	x		.
	.		.		.

(05 min) Roll Call, Approve 25, 2014 Security WG Conference Call Minutes & Accept Agenda
(50 min) HL7 Meaningful Use 2015 NPRM Comments Deadline for comments is April 2nd (tomorrow). Significant questions and issues to be addressed sent in list email. Relevant links are:

PossibleHL7 Privacy and Security Comment Areas:

Options for EHR Module Privacy and Security certification criteria See Certification Policy for EHR Modules and Privacy and Security Certification Criteria and HITSC MU EHR P&S Certification Criteria Recommendations
Authentication of Patients and Authorized Representatives for View, Download, Transmit
Patients’ ability to control authorized representatives’ access to portions of their records
Selection of two edge protocols that HISPS and Edge Systems should support and two they may support along with their applicable Transport Security and Authentication requirements – do the conformance statements make sense? Are there interoperability issues that could result with optionality? Are some protocols more secure than others?
Secure Messaging and Integrity Criteria – any comments?
Mandatory notification standards – do they add value?
(05 min) Agenda: May 2014 Working Group Meeting Agenda Items

Meeting Adjourned at 1458 PST --Suzannegw (talk) 22:04, 1 April 2014 (UTC)