This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "March 13, 2018 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
(Created page with "Back to Security Main Page ==Attendees== {| class="wikitable" |- !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Membe...")
 
 
(16 intermediate revisions by 3 users not shown)
Line 7: Line 7:
 
!x||'''Member Name'''|| !!  x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name'''  
 
!x||'''Member Name'''|| !!  x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name'''  
 
|-
 
|-
||  x|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
+
||  .|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
 
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair  
 
||||.|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
 
||||.|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair
Line 18: Line 18:
 
|-
 
|-
 
||  .|| [mailto:mjafari@edmondsci.com Mohammed Jafari]
 
||  .|| [mailto:mjafari@edmondsci.com Mohammed Jafari]
||||.|| [mailto:Beth.Pumo@kp.org Beth Pumo]
+
||||x|| [mailto:Beth.Pumo@kp.org Beth Pumo]
 
||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu]
 
||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu]
 
||||.|| [mailto:robert.horn@agfa.com Rob Horn]  
 
||||.|| [mailto:robert.horn@agfa.com Rob Horn]  
Line 24: Line 24:
 
||  x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
 
||  x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga]
 
||||.|| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ]
 
||||.|| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ]
||||x|| [mailto:joe.lamy@aegis.net Joe Lamy]
+
||||.|| [mailto:joe.lamy@aegis.net Joe Lamy]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden]
 
|-
 
|-
 
||  .|| [mailto:pknapp@pknapp.com Paul Knapp]
 
||  .|| [mailto:pknapp@pknapp.com Paul Knapp]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
 
||||.|| [mailto:grahameg@gmail.com Grahame Grieve]
||||.|| [mailto:jc@securityrs.com Johnathan Coleman]
+
||||x|| [mailto:jc@securityrs.com Johnathan Coleman]
 
||||.|| [mailto:aaron.seib@2311.net Aaron Seib]
 
||||.|| [mailto:aaron.seib@2311.net Aaron Seib]
 
|-
 
|-
Line 38: Line 38:
 
|-
 
|-
 
||  .|| [mailto:oliver@lawless.co Oliver Lawless]
 
||  .|| [mailto:oliver@lawless.co Oliver Lawless]
||||.|| [mailto:joyce.dunlop@dxc.com Joyce]]
+
||||.|| [mailto:joyce.dunlop@dxc.com Joyce Dunlop]
 
||||.|| [mailto:dtao12@gmail.com David Tao]
 
||||.|| [mailto:dtao12@gmail.com David Tao]
 
||||.|| [mailto:nathanbotts@westat.com Nathan Botts]
 
||||.|| [mailto:nathanbotts@westat.com Nathan Botts]
Line 44: Line 44:
 
||  x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
 
||  x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui]
 
||||.|| [mailto:Bo.Dagnall@dxc.com Bo Dagnall]
 
||||.|| [mailto:Bo.Dagnall@dxc.com Bo Dagnall]
||||.|| [mailto:rikimerrick@gmail.com]
+
||||.|| [mailto:rikimerrick@gmail.com Riki Merrick]
 
||||.|| [mailto:acg.internajonal@gmail.com Theresa Connor]
 
||||.|| [mailto:acg.internajonal@gmail.com Theresa Connor]
 
|-
 
|-
Line 52: Line 52:
 
=='''Agenda'''==
 
=='''Agenda'''==
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
 
#''(2 min)'' '''Roll Call, Agenda Approval'''  
#''(5 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=March_6,_2018_Security_Conference_Call March 6, 2018 minutes]
+
#''(3 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=March_6,_2018_Security_Conference_Call March 6, 2018 minutes]
 +
#''(15 min)'' review [http://build.fhir.org/verificationresult FHIR Verification Result resource] relative to Provenance Brian Postlethwaite (PA)
 +
#''(15 min)'' '''TF4FA Report Out from PSAF call''' - Mike Davis and Chris Shawn
 +
#''(20 min)'' '''March Harmonization Proposals for final submission''' Review for approval - Kathleen - see Meeting Materials for links to proposals.
 +
==Minutes==
 +
Roll Call, Meeting Minutes approval
 +
Meeting minutes for March 6, Suzanne/Mike)
 +
* VOTE Approve: 7,
 +
 
 +
FHIR Verification Result Resource
 +
 
 +
TF4FA - report from PSAF
 +
* Mike presented the models developed, updated.
 +
* New model added for the ''trust proposal message.''
 +
* Edits done to clarify authorities, working in to fill the content
 +
* Changed the business view to be consistent to RM-ODP methodology.
 +
*Mike does not think there is a conflict between Volume 1, Volume 2 behavioral model because they address orthogonal requirements.
 +
* Timelines discussed to put items together, we'd like to get it out for review, but it needs to be out by the end of the month
 +
* Mike to post a slide deck with the models for consideration as the text will be primarily aimed at articulating the models.  [https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202018/TF4P%20Model%20Overview%20DRAFTpptx.pptx TF4FA Model Overview deck]
 +
 
 +
Harmonization - Kathleen
 +
* [https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Final%20Harmonization%20Proposals/HL7%20Harmonization%20March%202018%20Security%20and%20CBCP%20Proposals.pptx March 2018 Harmonization presentation] by Kathleen
 +
 
 +
* Purpose - Overview of Vocabulary and V2 Proposals
 +
** bringing security labels into v2 is the key
 +
** Proposal status updates
 +
** refinements of BH, and PSY - rationale for change discussed in detail:
 +
**for specializing BH information sensitive - recognition of the distinct specialization - were not so fine grained to be diagnosis; intellectual disabilities
 +
** TBI, dyslexia, hearing, blindness - these are cognitive but the physical capabilities remain intact where they have an inability to be self-sufficient (difference between developmental disabilities vs motor function/self-sustaining) - involves different programs/different stigma
 +
**emotional disturbances - protects people with interim diagnosis (i.e. non-confirmed diagnosis) i.e. teenager with substance abuse disorder where they can come out of it) also not-easily diagnosed MH issues that do not fall in the earlier categories
 +
*** physician requested, bringing in V3 codes
 +
** Alcohol use disorder (already approved
 +
** Patient default information sensitivity - description incorrect, corrected
 +
** physician requested information sensitivity - use case different from current TBOO sensitivity
 +
'''Final Proposals due March 16'''
 +
 
 +
MOTION Made to approve these as final
 +
Opposed: none; Abstentions: none: approved: 7
 +
 
 +
Meeting adjourned at 1255 PM Arizona Time
 +
 
 +
==Meeting Materials==
 +
Final Proposals and Presentation
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc]
 +
*[2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx]
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.]
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Final%20Harmonization%20Proposals/HL7%20Harmonization%20March%202018%20Security%20and%20CBCP%20Proposals.pptx March 2018 Harmonization Proposal Presentation]
 +
 
 +
 
 +
Initial Proposals
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_INITIALPROPOSAL_VOCAB_SECURE_kathleen_connor_Authorization%20and%20Delegation%20Policy%20codes_201802282.doc Authorization and Delegation Policy codes]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec2_POU_HL70953_V1.docx POU updates]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FINALPROPOSAL_VOCAB_SECURE_kathleen_connor_SEC%20Sensitivity%20HL7%200719_V2%20kc%20with%20adds.docx Sensitivity Code updates]

Latest revision as of 16:31, 20 March 2018

Back to Security Main Page

Attendees

x Member Name x Member Name x Member Name x Member Name
. John Moehrke Security Co-chair x Kathleen Connor Security Co-chair . Alexander Mense Security Co-chair . Trish Williams Security Co-chair
x Christopher Shawn Security Co-chair x Suzanne Gonzales-Webb x Mike Davis x David Staggs
. Mohammed Jafari x Beth Pumo . Ioana Singureanu . Rob Horn
x Diana Proud-Madruga . Serafina Versaggi . Joe Lamy . Greg Linden
. Paul Knapp . Grahame Grieve x Johnathan Coleman . Aaron Seib
. Ken Salyards x Jim Kretz . Gary Dickinson x Dave Silver
. Oliver Lawless . Joyce Dunlop . David Tao . Nathan Botts
x Francisco Jauregui . Bo Dagnall . Riki Merrick . Theresa Connor

Back to Security Main Page

Agenda

  1. (2 min) Roll Call, Agenda Approval
  2. (3 min) Review and Approval of March 6, 2018 minutes
  3. (15 min) review FHIR Verification Result resource relative to Provenance Brian Postlethwaite (PA)
  4. (15 min) TF4FA Report Out from PSAF call - Mike Davis and Chris Shawn
  5. (20 min) March Harmonization Proposals for final submission Review for approval - Kathleen - see Meeting Materials for links to proposals.

Minutes

Roll Call, Meeting Minutes approval Meeting minutes for March 6, Suzanne/Mike)

  • VOTE Approve: 7,

FHIR Verification Result Resource

TF4FA - report from PSAF

  • Mike presented the models developed, updated.
  • New model added for the trust proposal message.
  • Edits done to clarify authorities, working in to fill the content
  • Changed the business view to be consistent to RM-ODP methodology.
  • Mike does not think there is a conflict between Volume 1, Volume 2 behavioral model because they address orthogonal requirements.
  • Timelines discussed to put items together, we'd like to get it out for review, but it needs to be out by the end of the month
  • Mike to post a slide deck with the models for consideration as the text will be primarily aimed at articulating the models. TF4FA Model Overview deck

Harmonization - Kathleen

  • Purpose - Overview of Vocabulary and V2 Proposals
    • bringing security labels into v2 is the key
    • Proposal status updates
    • refinements of BH, and PSY - rationale for change discussed in detail:
    • for specializing BH information sensitive - recognition of the distinct specialization - were not so fine grained to be diagnosis; intellectual disabilities
    • TBI, dyslexia, hearing, blindness - these are cognitive but the physical capabilities remain intact where they have an inability to be self-sufficient (difference between developmental disabilities vs motor function/self-sustaining) - involves different programs/different stigma
    • emotional disturbances - protects people with interim diagnosis (i.e. non-confirmed diagnosis) i.e. teenager with substance abuse disorder where they can come out of it) also not-easily diagnosed MH issues that do not fall in the earlier categories
      • physician requested, bringing in V3 codes
    • Alcohol use disorder (already approved
    • Patient default information sensitivity - description incorrect, corrected
    • physician requested information sensitivity - use case different from current TBOO sensitivity

Final Proposals due March 16

MOTION Made to approve these as final Opposed: none; Abstentions: none: approved: 7

Meeting adjourned at 1255 PM Arizona Time

Meeting Materials

Final Proposals and Presentation

  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc]
  • [2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx]
  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.]
  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.]
  • March 2018 Harmonization Proposal Presentation


Initial Proposals

Retrieved from "https://wiki.hl7.org/w/index.php?title=March_13,_2018_Security_Conference_Call&oldid=154759"