This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

HL7 FHIR Security 2018-12-18

From HL7Wiki
Revision as of 22:30, 18 December 2018 by JohnMoehrke (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Call Logistics

Weekly: Tuesday at 02:00 pm EST

Web conference desktop and VOIP 
Online Meeting ID: security36
Phone: +1 515-604-9567, Participant Code: 880898
 Please be aware that teleconference meetings are recorded to assist with creating the meeting minutes 

Back to HL7 FHIR security topics


Member Name Member Name Member Name
x John Moehrke Security Co-Chair x Kathleen Connor Security Co-Chair . Alexander Mense Security Co-chair
x Suzanne Gonzales-Webb CBCP Co-Chair . Johnathan Coleman CBCP co-chair . Chris Shawn Security co-chair
. Jim Kretz x Kenneth Salyards x Shamil Nizamov
. Diana Proud-Madruga x Joe Lamy AEGIS . Beth Pumo
. Irina Connelly . Matt Blackman Sequoia . Mark Underwood NIST
. Peter Bachman . Grahame Greve FHIR Program Director . Kevin Shekleton (Cerner, CDS Hooks)
. Luis Maas . Julie Maas . Francisco Jauregui
. Gary Dickinson . Dave Silver . Mike Davis
. Peter van Liesdonk . Isaac Vetter . Theresa Ardal Connor





  • John chaired
  • approval of agenda without additions
  • approval of HL7 FHIR Security 2018-12-11 Minutes
    • Motion Suzanne/Joe: 4-0-0
  • Announcements
    • none
  • security tagging in FHIR Documents, and how that relates to CDA security tagging (minimal, and DS4P)
    • Likely needs text on the security-labels page to explain high-water-mark
    • That text could be referenced on Bundle page
    • Pointer to that text would be on the security/privacy module page
    • Work on this in January
  • Review CarePlan FHIR Connectathon and HIMSS demo for impact on FHIR Security/privacy opportunity improvements -- Kathleen
    • Main new advancement over previous FHIR connectathon is the experimentation with OAuth scopes to include security codes
  • Plan for maturing security (and privacy) parts of FHIR -- FMM
    • Need tests for significant portions of Provenance and AuditEvent
    • Need evidence of implementations
    • should leverage existing CarePlan connectathon efforts
  • All security open
  • New business
  • closed 55 minutes