This wiki has undergone a migration to Confluence found Here
HL7 FHIR Security 2018-10-23
Jump to navigation
Jump to search
Contents
Call Logistics
Weekly: Tuesday at 02:00 pm EST
Web conference desktop and VOIP https://www.freeconferencecall.com/join/security36 Online Meeting ID: security36 Phone: +1 515-604-9567, Participant Code: 880898 Please be aware that teleconference meetings are recorded to assist with creating the meeting minutes
Back to HL7 FHIR security topics
Attendees
| Member Name | Member Name | Member Name | ||||||
|---|---|---|---|---|---|---|---|---|
| x | John Moehrke Security Co-Chair | . | Kathleen Connor Security Co-Chair | . | Alexander Mense Security Co-chair | |||
| x | Suzanne Gonzales-Webb CBCC Co-Chair | . | Johnathan Coleman CBCC co-chair | . | Chris Shawn Security co-chair | |||
| . | Jim Kretz | . | Kenneth Salyards | . | Nathan Botts Mobile co-chair | |||
| x | Diana Proud-Madruga | x | Joe Lamy AEGIS | . | Beth Pumo | |||
| . | Irina Connelly | . | Matt Blackman Sequoia | . | Mark Underwood NIST | |||
| . | Peter Bachman | . | Grahame Greve FHIR Program Director | . | Kevin Shekleton (Cerner, CDS Hooks) | |||
| . | Luis Maas | . | Julie Maas | . | Francisco Jauregui | |||
| . | Gary Dickinson | . | Dave Silver | x | Mike Davis |
Agenda
- Roll;
- approval of agenda
- approval of HL7 FHIR Security 2018-09-04 Minutes
- Announcements
- Every other FHIR Security call will focus on the Security/Privacy improvements to CarePlan FHIR connectathon scenario. Starting next week.
- Blockchain and FHIR use-cases as presented by Abigail Watson at the HL7 WGM. Link to the PDF version on their Google Drive. Link sharing is on, and that should be able to handle as much traffic as we can throw at it; and we can point at it from blog posts, the Symptomatic website, and elsewhere. link
- TBD?
- Process for "Security and Privacy Considerations" section
- Plan for maturing security (and privacy) parts of FHIR -- FMM
- All security open http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemBrowse&tracker_id=677&tracker_query_id=4967
- New business
ACTIONS
- John - forward safety checklist updates with explanation to FHIR-I
- John - propose next steps on "Security Considerations" on each FHIR page
- John - bring proposal to Grahame to see how the FHIR build tools can aid us
references
- stream for Security and Privacy discussions. Specification development, and Implementation.
- stream for Patient Empowerment. Discussions about empowering patients. Focus on deployment and advocacy.
- Proposed FHIR Connectathon track for Cologne -- GDPR
- Blockchain FHIR Connectathon
- Grahame is trying to find a community wanting to 'play' with blockchain. He is willing to standup the infrastructure.
- See blockchain zulip stream https://chat.fhir.org/#narrow/stream/blockchain
- Certificate Management
- Improvement beyond SMART scopes
- Patient Directed backend communication
- Oauth App Registration
Current Open issues in gForge
see gForge
Minutes
- John chaired
- Discussion of FHIR Connectathon track improvement for CarePlan
- ACTION: Kathleen to send out notice to those participants
- Care Plan description at http://wiki.hl7.org/index.php?title=September_2018_Baltimore_CCDE_Connectathon_Track_4
- Video report is https://www.youtube.com/watch?v=1Fk6sagQRXg
- Discussion of XSPA modification to add JSON encoding
- ACTION: Next week discuss our prioritized list for consideration on next SMART-on-FHIR
- Brain Storm on Controlled-Unclassified (Federal Agency) concern
- Concern that the system being put forward is not complete or sufficient in light of systems like FHIR
- Seems Security wg should weigh in before FHIR-Security sub-workgroup gets distracted
- ACTION: Kathleen to provide actions that the FHIR Security wg can act upon
- Motion to approve minutes from HL7 FHIR Security 2018-09-04 Suzanne/Joe: unanimous
- Discussed but did not approve any CR
- 19312- X-Consent http header
- Security tag for marking a copy/duplicate of an official record
- Presented portions of the CarePlan fhir connectathon video
