This wiki has undergone a migration to Confluence found Here
Difference between revisions of "HL7 WGM Sept 2017 - San Diego US AGENDA"
Jump to navigation
Jump to search
valign="top"
(25 intermediate revisions by 4 users not shown) | |||
Line 3: | Line 3: | ||
[http://www.hl7.org/documentcenter/public/brochures/wgm/HL7_WGM_20170824.pdf San Diego WGM SITE MAP] | [http://www.hl7.org/documentcenter/public/brochures/wgm/HL7_WGM_20170824.pdf San Diego WGM SITE MAP] | ||
− | + | *[http://wiki.hl7.org/index.php?title=HL7_WGM_Sept_2017_-_San_Diego_US_MINUTES HL7 Sept 2017 WGM San Diego Minutes] | |
[[Security|Back to Security Meetings]] | [[Security|Back to Security Meetings]] | ||
Line 20: | Line 20: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | |SUN||SEPT 10||Q1|| | + | |SUN||SEPT 10||Q1|| 9:00-10:30||.|International Affiliates/Connectathon Report Out||International Affiliates/Connectathon||TBD |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30||International Affiliates/Connectathon Report Out||International Affiliates/Connectathon||TBD |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00||Cochair FHIR Session||FHIR MG||TBD |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00||Cochair Vocabulary Session||Vocabulary WG||TBD |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | MON||SEPT 11||Q1|| | + | | MON||SEPT 11||Q1|| 9:00-10:30||.||No Meeting ||. |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30||.||No Meeting ||. |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00 |
||''' Joint CBCC - Security''' | ||''' Joint CBCC - Security''' | ||
* [http://wiki.hl7.org/index.php?title=September_2017_CBCC_Working_Group_Meeting_-_San_Diego,_California_USA September 2017 CBCC Working Group Meeting – San Diego] | * [http://wiki.hl7.org/index.php?title=September_2017_CBCC_Working_Group_Meeting_-_San_Diego,_California_USA September 2017 CBCC Working Group Meeting – San Diego] | ||
Line 46: | Line 46: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00 |
|| '''Joint with CBCC – New discussion items and projects''' | || '''Joint with CBCC – New discussion items and projects''' | ||
* [http://wiki.hl7.org/index.php?title=September_2017_CBCC_Working_Group_Meeting_-_San_Diego,_California_USA September 2017 CBCC Working Group Meeting – San Diego] | * [http://wiki.hl7.org/index.php?title=September_2017_CBCC_Working_Group_Meeting_-_San_Diego,_California_USA September 2017 CBCC Working Group Meeting – San Diego] | ||
− | ||CBCC hosting Security | + | ||CBCC hosting Security |
+ | John Moehrke has conflict | ||
|| Palatine A | || Palatine A | ||
|- | |- | ||
Line 55: | Line 56: | ||
|-valign="top" | |-valign="top" | ||
− | | TUE|| SEPT 12||Q1|| | + | | TUE|| SEPT 12||Q1|| 9:00-10:30 |
||'''Opening Security WG Meeting''' | ||'''Opening Security WG Meeting''' | ||
* Introductions | * Introductions | ||
Line 65: | Line 66: | ||
***[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | ***[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | ||
***[http://csrc.nist.gov/publications/nistbul/itlbul2017-08.pdf Understanding the Major Update to NIST SP 800-63: Digital Identity Guidelines] | ***[http://csrc.nist.gov/publications/nistbul/itlbul2017-08.pdf Understanding the Major Update to NIST SP 800-63: Digital Identity Guidelines] | ||
− | **Study Group | + | **[https://gforge.hl7.org/gf/project/security/docman/Security%20Work%20Group%20Presentations%20and%20Papers/San%20Diego%20WGM%20Sept%202017/NIST%20800-53-5%20CBCC.pptx Impact of NIST SP 800-53-5 on Privacy and Security Study Group Proposal] - Mike Davis |
+ | ** [https://gforge.hl7.org/gf/project/security/docman/Security%20Work%20Group%20Presentations%20and%20Papers/HL7%20Sept%202017%20WGM%20San%20Diego/NIST%20SP%20800%2063-3%20Chris%20Shawn.pptx NIST SP 800-63 rev 3] - Chris Shawn | ||
**Study Group for Minimum Necessary, Purpose of Use , and Healthcare Workflows | **Study Group for Minimum Necessary, Purpose of Use , and Healthcare Workflows | ||
+ | *[https://www.freeconferencecall.com/wall/recorded_audio?audioRecordingUrl=https%3A%2F%2Frs0000.freeconferencecall.com%2Fstorage%2FsgetFCC2%2FasJ8A%2FILf85&subscriptionId=8257383 Webmeeting recording of CBCC/Security JT on FHIR Consumer Centered Data Exchange Connectathon Track report out and demonstration] - Kathleen Connor, Debi Willis, Bo Dagnall DCX (Plus Demo) | ||
** Trust Framework - Ballot Reconciliation Plans | ** Trust Framework - Ballot Reconciliation Plans | ||
** SOA Audit – Ballot Reconciliation Plans | ** SOA Audit – Ballot Reconciliation Plans | ||
Line 75: | Line 78: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30 |
||'''PASS Audit Ballot Reconciliation''' | ||'''PASS Audit Ballot Reconciliation''' | ||
+ | NOTE - Moved to Wed Q4 due to continuation of Q1 agenda. | ||
*Focused on Bernd Blobel’s comment dispositions. | *Focused on Bernd Blobel’s comment dispositions. | ||
*[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_Consolidated%20Comments.xls PASS Audit Ballot Spreadsheet] | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_Consolidated%20Comments.xls PASS Audit Ballot Spreadsheet] | ||
Line 84: | Line 88: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00 |
||'''Joint CBCC, Hosting Security, Mobile Health''' | ||'''Joint CBCC, Hosting Security, Mobile Health''' | ||
Proposed Topics: HL7 Project status and updates: | Proposed Topics: HL7 Project status and updates: | ||
+ | * ''[http://bit.ly/mydata-archfwk-at-HL7WGM31 MyData Architecture Framework'' - Reacting to GDPR with Privacy as a Service Infrastructure’] Harry Honko, Finland | ||
*NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | *NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | ||
**NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | **NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | ||
**[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | **[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | ||
− | **[http://csrc.nist.gov/publications | + | **[http://csrc.nist.gov/publications/nistbul/itlbul2017-08.pdf Understanding the Major Update to NIST SP 800-63: Digital Identity Guidelines] |
*Study Group for Secondary use of HIoT data | *Study Group for Secondary use of HIoT data | ||
*Study Group for Minimum Necessary, Purpose of Use , and Healthcare Workflows | *Study Group for Minimum Necessary, Purpose of Use , and Healthcare Workflows | ||
||CBCC hosting Security, MH | ||CBCC hosting Security, MH | ||
+ | John Moehrke has conflict | ||
+ | Alex@Board Meeting | ||
||Palatine A | ||Palatine A | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00 |
|| | || | ||
'''Trust Framework Work Session''' | '''Trust Framework Work Session''' | ||
Line 103: | Line 110: | ||
*[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202017/ TF4FA Ballot Material] | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202017/ TF4FA Ballot Material] | ||
||Security | ||Security | ||
+ | Alex@Board Meeting | ||
+ | John Moehrke has conflict | ||
||Portofino B | ||Portofino B | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | |WED||SEPT 13||Q1|| | + | |WED||SEPT 13||Q1||9:00-10:30 |
||'''Joint w/ EHR, CBCC, FHIR, SOA, Security''' | ||'''Joint w/ EHR, CBCC, FHIR, SOA, Security''' | ||
Indepth discussion about: | Indepth discussion about: | ||
Line 112: | Line 121: | ||
**NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | **NIST SP 800-53/800-63 Impacts on current Security and CBCC WG standards | ||
**[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | **[http://csrc.nist.gov/publications/drafts/800-53/sp800-53r5-draft.pdf NIST 800-53 Rev 5 Review Security and Privacy Controls for Information Systems and Organizations Initial Public Draft] | ||
− | **[http://csrc.nist.gov/publications | + | **[http://csrc.nist.gov/publications/nistbul/itlbul2017-08.pdf Understanding the Major Update to NIST SP 800-63: Digital Identity Guidelines] |
*Study Group for Secondary use of HIoT data | *Study Group for Secondary use of HIoT data | ||
*Study Group for Minimum Necessary, Purpose of Use, and Healthcare Workflows | *Study Group for Minimum Necessary, Purpose of Use, and Healthcare Workflows | ||
Line 119: | Line 128: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30 |
||'''Joint w/ SOA''' | ||'''Joint w/ SOA''' | ||
Tentative Agenda Items - Report out on: | Tentative Agenda Items - Report out on: | ||
Line 128: | Line 137: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00 |
||'''Security WG deep FHIR topics''' | ||'''Security WG deep FHIR topics''' | ||
*Josh assigned FHIR Core team | *Josh assigned FHIR Core team | ||
* SMART on FHIR | * SMART on FHIR | ||
− | *Cascading OAuth | + | * CDS-hooks security model |
+ | *Cascading OAuth - Add overview to the FHIR Security page based on links @ [http://wiki.hl7.org/index.php?title=HIMSS_2017_Patient_Choice&action=edit§ion=6 HIMSS 2017 page] | ||
+ | * Security endorsement of CORS??? what conditions? What considerations? What alternatives (See Keith Boone) | ||
+ | ** https://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=13827 GF#13827 | ||
*Discuss John Moehrke’s Blog [https://healthcaresecprivacy.blogspot.com/2017/05/fhir-oauth-scope-proposal-using-fhir.html FHIR OAuth scope proposal using FHIR query parameters] | *Discuss John Moehrke’s Blog [https://healthcaresecprivacy.blogspot.com/2017/05/fhir-oauth-scope-proposal-using-fhir.html FHIR OAuth scope proposal using FHIR query parameters] | ||
||Security hosting FHIR-I | ||Security hosting FHIR-I | ||
||Portofino B | ||Portofino B | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00 |
||'''Security WG Project Meeting''' | ||'''Security WG Project Meeting''' | ||
+ | * 10 minute introduction to PSS on Context Synchronization (Isaac Vetter) here: https://drive.google.com/open?id=165BU5ZmUyuwxz4kg2dtjRWkNM7o4u2PrdcIKSxP94Ts | ||
+ | |||
+ | '''PASS Audit Ballot Reconciliation''' | ||
+ | *Focused on Bernd Blobel’s comment dispositions. | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_Consolidated%20Comments.xls PASS Audit Ballot Spreadsheet] | ||
+ | '''TF4FA Ballot Reconciliation''' | ||
+ | *Focused on Bernd Blobel’s comment dispositions. | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_Consolidated%20Comments.xls PASS Audit Ballot Spreadsheet] | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_comments.doc PASS Audit Ballot January 2017] | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PASS%20Audit/V3_PASS_AUDIT_CL_R1_N1_2017JAN_comments.doc PASS Audit Ballot January 2017] | ||
* [http://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202017/ballotcomments_V3_PSAF_R1_I2_2017MAY%20Amalgamated%20wo%20BB%20or%20depositions.xls Continue TF4FA Reconciliation] | * [http://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202017/ballotcomments_V3_PSAF_R1_I2_2017MAY%20Amalgamated%20wo%20BB%20or%20depositions.xls Continue TF4FA Reconciliation] | ||
* November Harmonization Proposals | * November Harmonization Proposals | ||
||Security | ||Security | ||
+ | John Moehrke & Kathleen have conflicts | ||
||Portofino B | ||Portofino B | ||
|-valign="top" | |-valign="top" | ||
− | | THU||SEPT 14||Q1|| | + | | THU||SEPT 14||Q1||9:00-10:30 |
− | ||'''Security hosting CBCC, FHIR-I Joint on FHIR Consent Resource''' | + | ||'''Security hosting CBCC, FHIR-I Joint on FHIR App Verification and FHIR Consent Resource''' |
+ | *vote on PSS on Context Synchronization (Isaac Vetter) here: https://drive.google.com/open?id=165BU5ZmUyuwxz4kg2dtjRWkNM7o4u2PrdcIKSxP94Ts | ||
+ | *[https://www.slideshare.net/secret/z9RzBvbPVIyXFj POET Presentation]of a FHIR App Verification - Mark Scrimshire [https://gforge.hl7.org/gf/project/security/docman/CCDE%20Consumer%20Centered%20Data%20Exchange%20Connectathon/Mark%20Scrimshire%20POET%20WGM%202017-09-14-_19.mp3 Audio] | ||
*TENTATIVE: FHIR Consent Profile - Discussion (CBCC-Security) see Wiki: | *TENTATIVE: FHIR Consent Profile - Discussion (CBCC-Security) see Wiki: | ||
[http://wiki.hl7.org/index.php?title=HL7_FHIR_Consent_Directive_Project HL7 FHIR Consent Directive Project] | [http://wiki.hl7.org/index.php?title=HL7_FHIR_Consent_Directive_Project HL7 FHIR Consent Directive Project] | ||
Line 153: | Line 178: | ||
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30 |
||'''Security WG Project Meeting''' | ||'''Security WG Project Meeting''' | ||
* Workgroup Health Update | * Workgroup Health Update | ||
Line 159: | Line 184: | ||
** [http://gforge.hl7.org/gf/download/docmanfileversion/9155/14164/Security%20CBCC%20Products%20and%20Projects%20May%202016.xlsx Current Project/Product status] | ** [http://gforge.hl7.org/gf/download/docmanfileversion/9155/14164/Security%20CBCC%20Products%20and%20Projects%20May%202016.xlsx Current Project/Product status] | ||
** [http://gforge.hl7.org/gf/download/docmanfileversion/9381/14666/HL7%20Baltimore%202016%20Security%20WGM%20Governance%20and%20Health.pptx Security Health Report] | ** [http://gforge.hl7.org/gf/download/docmanfileversion/9381/14666/HL7%20Baltimore%202016%20Security%20WGM%20Governance%20and%20Health.pptx Security Health Report] | ||
− | **http://gforge.hl7.org/gf/download/frsrelease/1242/15626/FTSD-WorkGroupHealth_2017SepInterim.pdf FTSD Security Health Matrix] | + | **[http://gforge.hl7.org/gf/download/frsrelease/1242/15626/FTSD-WorkGroupHealth_2017SepInterim.pdf FTSD Security Health Matrix] |
− | ** | + | **[http://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20WG%20Administrative%20Documents/May%202017%20Madrid%20Admin/Security%20HL7%20WG%20DMP%20V6.0%202017.docx Security WG DMP] |
||Security | ||Security | ||
||Guest Room 312 | ||Guest Room 312 | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00||.||||. |
|- | |- | ||
valign="top" | valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00||.||||. |
|-valign="top" | |-valign="top" | ||
− | | FRI||SEPT 15||Q1|| | + | | FRI||SEPT 15||Q1|| 9:00-10:30||.||||. |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q2|| | + | | ||||Q2||11:00-12:30||.||||. |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q3|| | + | | ||||Q3||1:45-3:00||.||||. |
|- | |- | ||
|-valign="top" | |-valign="top" | ||
− | | ||||Q4|| | + | | ||||Q4||3:30-5:00||.||||. |
|} | |} | ||
[[Security|Back to Security Wiki Meetings]] | [[Security|Back to Security Wiki Meetings]] |
Latest revision as of 00:49, 22 September 2017
HL7 SEPT WGM Event BROCHURE Link
AGENDA
Day | Date | Qtr | Time | Event | Session Leader | Room |
SUN | SEPT 10 | Q1 | 9:00-10:30 | International Affiliates/Connectathon Report Out | International Affiliates/Connectathon | TBD |
Q2 | 11:00-12:30 | International Affiliates/Connectathon Report Out | International Affiliates/Connectathon | TBD | ||
Q3 | 1:45-3:00 | Cochair FHIR Session | FHIR MG | TBD | ||
Q4 | 3:30-5:00 | Cochair Vocabulary Session | Vocabulary WG | TBD | ||
MON | SEPT 11 | Q1 | 9:00-10:30 | . | No Meeting | . |
Q2 | 11:00-12:30 | . | No Meeting | . | ||
Q3 | 1:45-3:00 | Joint CBCC - Security | CBCC hosting Security | Palatine A | ||
Q4 | 3:30-5:00 | Joint with CBCC – New discussion items and projects | CBCC hosting Security
John Moehrke has conflict |
Palatine A | ||
TUE | SEPT 12 | Q1 | 9:00-10:30 | Opening Security WG Meeting
|
Security | Portofino B |
Q2 | 11:00-12:30 | PASS Audit Ballot Reconciliation
NOTE - Moved to Wed Q4 due to continuation of Q1 agenda.
|
Security | Portofino B | ||
Q3 | 1:45-3:00 | Joint CBCC, Hosting Security, Mobile Health
Proposed Topics: HL7 Project status and updates:
|
CBCC hosting Security, MH
John Moehrke has conflict Alex@Board Meeting |
Palatine A | ||
Q4 | 3:30-5:00 |
Trust Framework Work Session |
Security
Alex@Board Meeting John Moehrke has conflict |
Portofino B | ||
WED | SEPT 13 | Q1 | 9:00-10:30 | Joint w/ EHR, CBCC, FHIR, SOA, Security
Indepth discussion about:
|
EHR hosting Security, CBCC, FHIR-I | Aventine D |
Q2 | 11:00-12:30 | Joint w/ SOA
Tentative Agenda Items - Report out on:
|
Portofino A | |||
Q3 | 1:45-3:00 | Security WG deep FHIR topics
|
Security hosting FHIR-I | Portofino B | ||
Q4 | 3:30-5:00 | Security WG Project Meeting
PASS Audit Ballot Reconciliation
TF4FA Ballot Reconciliation
|
Security
John Moehrke & Kathleen have conflicts |
Portofino B | ||
THU | SEPT 14 | Q1 | 9:00-10:30 | Security hosting CBCC, FHIR-I Joint on FHIR App Verification and FHIR Consent Resource
|
Security hosting CBCC, FHIR-I | Aventine D |
Q2 | 11:00-12:30 | Security WG Project Meeting
|
Security | Guest Room 312 | ||
Q3 | 1:45-3:00 | . | . | |||
Q4 | 3:30-5:00 | . | . | |||
FRI | SEPT 15 | Q1 | 9:00-10:30 | . | . | |
Q2 | 11:00-12:30 | . | . | |||
Q3 | 1:45-3:00 | . | . | |||
Q4 | 3:30-5:00 | . | . |
Back to Security Wiki Meetings
Session Type: