This wiki has undergone a migration to Confluence found Here
April 1, 2014 Security WG Conference Call
Jump to navigation
Jump to search
Meeting Information Back to Security Main Page
Attendees
Member Name | Present | Member Name | Present | Member Name | Present | ||
---|---|---|---|---|---|---|---|
Mike Davis Security Co-chair | John Moehrke Security Co-chair | Trish Williams Security Co-chair | |||||
Bernd Blobel, Security Co-chair | . | Johnathan Coleman | x | Kathleen Connor | x | ||
Duane DeCouteau | Reed Gelzer | . | Suzanne Gonzales-Webb CBCC Co-chair | x | |||
Rick Grow | x | David Henkel | x | Mohammed Jafari | |||
Don Jorgenson | . | Diana Proud-Madruga | x | Harry Rhodes | . | ||
Ioana Singureanu | . | Richard Thoreson CBCC Co-chair | . | Ross Freeman | . | ||
Amanda Nash | Walter Suarez | . | Tony Weida | x | |||
Chris Clark | . | [Paul Petronelli | x | . | |||
. | . | . |
Agenda
- (05 min) Roll Call, Approve 25, 2014 Security WG Conference Call Minutes & Accept Agenda
- (50 min) HL7 Meaningful Use 2015 NPRM Comments Deadline for comments is April 2nd (tomorrow). Significant questions and issues to be addressed sent in list email. Relevant links are:
- NPRM in Federal Register: Voluntary 2015 Edition Electronic Health Record (EHR) Certification Criteria; Interoperability Updates and Regulatory Improvements
- Certification Policy for EHR Modules and Privacy and Security Certification Criteria
- HITSC MU EHR P&S Certification Criteria Recommendations
- HL7 PAC 2015 Edition NPRM Response Notes
- ONC Implementation Guide for Direct Edge Protocols
PossibleHL7 Privacy and Security Comment Areas:
- Options for EHR Module Privacy and Security certification criteria See Certification Policy for EHR Modules and Privacy and Security Certification Criteria and HITSC MU EHR P&S Certification Criteria Recommendations
- Authentication of Patients and Authorized Representatives for View, Download, Transmit
- Patients’ ability to control authorized representatives’ access to portions of their records
- Selection of two edge protocols that HISPS and Edge Systems should support and two they may support along with their applicable Transport Security and Authentication requirements – do the conformance statements make sense? Are there interoperability issues that could result with optionality? Are some protocols more secure than others?
- Secure Messaging and Integrity Criteria – any comments?
- Mandatory notification standards – do they add value?
- (05 min) Agenda: May 2014 Working Group Meeting Agenda Items
Meeting Minutes DRAFT
Meeting Adjourned at 1458 PST --Suzannegw (talk) 22:04, 1 April 2014 (UTC)