This wiki has undergone a migration to Confluence found Here
Difference between revisions of "March 13, 2018 Security Conference Call"
Jump to navigation
Jump to search
(Created page with "Back to Security Main Page ==Attendees== {| class="wikitable" |- !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Membe...") |
|||
(16 intermediate revisions by 3 users not shown) | |||
Line 7: | Line 7: | ||
!x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name''' | !x||'''Member Name'''|| !! x ||'''Member Name''' !!|| x ||'''Member Name''' !!|| x ||'''Member Name''' | ||
|- | |- | ||
− | || | + | || .|| [mailto:JohnMoerke@gmail.com John Moehrke] Security Co-chair |
||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair | ||||x|| [mailto:Kathleen_Connor@comcast.net Kathleen Connor] Security Co-chair | ||
||||.|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair | ||||.|| [mailto:mense@fhtw.onmicrosoft.com Alexander Mense] Security Co-chair | ||
Line 18: | Line 18: | ||
|- | |- | ||
|| .|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | || .|| [mailto:mjafari@edmondsci.com Mohammed Jafari] | ||
− | |||| | + | ||||x|| [mailto:Beth.Pumo@kp.org Beth Pumo] |
||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu] | ||||.|| [mailto:ioana.singureanu@gmail.com Ioana Singureanu] | ||
||||.|| [mailto:robert.horn@agfa.com Rob Horn] | ||||.|| [mailto:robert.horn@agfa.com Rob Horn] | ||
Line 24: | Line 24: | ||
|| x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga] | || x|| [mailto:Diana.Proud-Madruga@engilitycorp.com Diana Proud-Madruga] | ||
||||.|| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ] | ||||.|| [mailto:serafina.versaggi@gmail.com Serafina Versaggi ] | ||
− | |||| | + | ||||.|| [mailto:joe.lamy@aegis.net Joe Lamy] |
||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden] | ||||.|| [mailto:glinden@lindentechadvisiors.com Greg Linden] | ||
|- | |- | ||
|| .|| [mailto:pknapp@pknapp.com Paul Knapp] | || .|| [mailto:pknapp@pknapp.com Paul Knapp] | ||
||||.|| [mailto:grahameg@gmail.com Grahame Grieve] | ||||.|| [mailto:grahameg@gmail.com Grahame Grieve] | ||
− | |||| | + | ||||x|| [mailto:jc@securityrs.com Johnathan Coleman] |
||||.|| [mailto:aaron.seib@2311.net Aaron Seib] | ||||.|| [mailto:aaron.seib@2311.net Aaron Seib] | ||
|- | |- | ||
Line 38: | Line 38: | ||
|- | |- | ||
|| .|| [mailto:oliver@lawless.co Oliver Lawless] | || .|| [mailto:oliver@lawless.co Oliver Lawless] | ||
− | ||||.|| [mailto:joyce.dunlop@dxc.com Joyce | + | ||||.|| [mailto:joyce.dunlop@dxc.com Joyce Dunlop] |
||||.|| [mailto:dtao12@gmail.com David Tao] | ||||.|| [mailto:dtao12@gmail.com David Tao] | ||
||||.|| [mailto:nathanbotts@westat.com Nathan Botts] | ||||.|| [mailto:nathanbotts@westat.com Nathan Botts] | ||
Line 44: | Line 44: | ||
|| x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui] | || x|| [mailto:fjaureui@electrosoft-inc.com Francisco Jauregui] | ||
||||.|| [mailto:Bo.Dagnall@dxc.com Bo Dagnall] | ||||.|| [mailto:Bo.Dagnall@dxc.com Bo Dagnall] | ||
− | ||||.|| [mailto:rikimerrick@gmail.com] | + | ||||.|| [mailto:rikimerrick@gmail.com Riki Merrick] |
||||.|| [mailto:acg.internajonal@gmail.com Theresa Connor] | ||||.|| [mailto:acg.internajonal@gmail.com Theresa Connor] | ||
|- | |- | ||
Line 52: | Line 52: | ||
=='''Agenda'''== | =='''Agenda'''== | ||
#''(2 min)'' '''Roll Call, Agenda Approval''' | #''(2 min)'' '''Roll Call, Agenda Approval''' | ||
− | #''( | + | #''(3 min)'' '''Review and Approval of [http://wiki.hl7.org/index.php?title=March_6,_2018_Security_Conference_Call March 6, 2018 minutes] |
+ | #''(15 min)'' review [http://build.fhir.org/verificationresult FHIR Verification Result resource] relative to Provenance Brian Postlethwaite (PA) | ||
+ | #''(15 min)'' '''TF4FA Report Out from PSAF call''' - Mike Davis and Chris Shawn | ||
+ | #''(20 min)'' '''March Harmonization Proposals for final submission''' Review for approval - Kathleen - see Meeting Materials for links to proposals. | ||
+ | ==Minutes== | ||
+ | Roll Call, Meeting Minutes approval | ||
+ | Meeting minutes for March 6, Suzanne/Mike) | ||
+ | * VOTE Approve: 7, | ||
+ | |||
+ | FHIR Verification Result Resource | ||
+ | |||
+ | TF4FA - report from PSAF | ||
+ | * Mike presented the models developed, updated. | ||
+ | * New model added for the ''trust proposal message.'' | ||
+ | * Edits done to clarify authorities, working in to fill the content | ||
+ | * Changed the business view to be consistent to RM-ODP methodology. | ||
+ | *Mike does not think there is a conflict between Volume 1, Volume 2 behavioral model because they address orthogonal requirements. | ||
+ | * Timelines discussed to put items together, we'd like to get it out for review, but it needs to be out by the end of the month | ||
+ | * Mike to post a slide deck with the models for consideration as the text will be primarily aimed at articulating the models. [https://gforge.hl7.org/gf/project/security/docman/HL7%20Security%20SOA/PSAF/PSAF%20TF4FA%20May%202018/TF4P%20Model%20Overview%20DRAFTpptx.pptx TF4FA Model Overview deck] | ||
+ | |||
+ | Harmonization - Kathleen | ||
+ | * [https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Final%20Harmonization%20Proposals/HL7%20Harmonization%20March%202018%20Security%20and%20CBCP%20Proposals.pptx March 2018 Harmonization presentation] by Kathleen | ||
+ | |||
+ | * Purpose - Overview of Vocabulary and V2 Proposals | ||
+ | ** bringing security labels into v2 is the key | ||
+ | ** Proposal status updates | ||
+ | ** refinements of BH, and PSY - rationale for change discussed in detail: | ||
+ | **for specializing BH information sensitive - recognition of the distinct specialization - were not so fine grained to be diagnosis; intellectual disabilities | ||
+ | ** TBI, dyslexia, hearing, blindness - these are cognitive but the physical capabilities remain intact where they have an inability to be self-sufficient (difference between developmental disabilities vs motor function/self-sustaining) - involves different programs/different stigma | ||
+ | **emotional disturbances - protects people with interim diagnosis (i.e. non-confirmed diagnosis) i.e. teenager with substance abuse disorder where they can come out of it) also not-easily diagnosed MH issues that do not fall in the earlier categories | ||
+ | *** physician requested, bringing in V3 codes | ||
+ | ** Alcohol use disorder (already approved | ||
+ | ** Patient default information sensitivity - description incorrect, corrected | ||
+ | ** physician requested information sensitivity - use case different from current TBOO sensitivity | ||
+ | '''Final Proposals due March 16''' | ||
+ | |||
+ | MOTION Made to approve these as final | ||
+ | Opposed: none; Abstentions: none: approved: 7 | ||
+ | |||
+ | Meeting adjourned at 1255 PM Arizona Time | ||
+ | |||
+ | ==Meeting Materials== | ||
+ | Final Proposals and Presentation | ||
+ | *[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc] | ||
+ | *[2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx] | ||
+ | *[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.] | ||
+ | *[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.] | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Final%20Harmonization%20Proposals/HL7%20Harmonization%20March%202018%20Security%20and%20CBCP%20Proposals.pptx March 2018 Harmonization Proposal Presentation] | ||
+ | |||
+ | |||
+ | Initial Proposals | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_INITIALPROPOSAL_VOCAB_SECURE_kathleen_connor_Authorization%20and%20Delegation%20Policy%20codes_201802282.doc Authorization and Delegation Policy codes] | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec2_POU_HL70953_V1.docx POU updates] | ||
+ | *[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FINALPROPOSAL_VOCAB_SECURE_kathleen_connor_SEC%20Sensitivity%20HL7%200719_V2%20kc%20with%20adds.docx Sensitivity Code updates] |
Latest revision as of 16:31, 20 March 2018
Contents
Attendees
x | Member Name | x | Member Name | x | Member Name | x | Member Name | |||
---|---|---|---|---|---|---|---|---|---|---|
. | John Moehrke Security Co-chair | x | Kathleen Connor Security Co-chair | . | Alexander Mense Security Co-chair | . | Trish Williams Security Co-chair | |||
x | Christopher Shawn Security Co-chair | x | Suzanne Gonzales-Webb | x | Mike Davis | x | David Staggs | |||
. | Mohammed Jafari | x | Beth Pumo | . | Ioana Singureanu | . | Rob Horn | |||
x | Diana Proud-Madruga | . | Serafina Versaggi | . | Joe Lamy | . | Greg Linden | |||
. | Paul Knapp | . | Grahame Grieve | x | Johnathan Coleman | . | Aaron Seib | |||
. | Ken Salyards | x | Jim Kretz | . | Gary Dickinson | x | Dave Silver | |||
. | Oliver Lawless | . | Joyce Dunlop | . | David Tao | . | Nathan Botts | |||
x | Francisco Jauregui | . | Bo Dagnall | . | Riki Merrick | . | Theresa Connor |
Agenda
- (2 min) Roll Call, Agenda Approval
- (3 min) Review and Approval of March 6, 2018 minutes
- (15 min) review FHIR Verification Result resource relative to Provenance Brian Postlethwaite (PA)
- (15 min) TF4FA Report Out from PSAF call - Mike Davis and Chris Shawn
- (20 min) March Harmonization Proposals for final submission Review for approval - Kathleen - see Meeting Materials for links to proposals.
Minutes
Roll Call, Meeting Minutes approval Meeting minutes for March 6, Suzanne/Mike)
- VOTE Approve: 7,
FHIR Verification Result Resource
TF4FA - report from PSAF
- Mike presented the models developed, updated.
- New model added for the trust proposal message.
- Edits done to clarify authorities, working in to fill the content
- Changed the business view to be consistent to RM-ODP methodology.
- Mike does not think there is a conflict between Volume 1, Volume 2 behavioral model because they address orthogonal requirements.
- Timelines discussed to put items together, we'd like to get it out for review, but it needs to be out by the end of the month
- Mike to post a slide deck with the models for consideration as the text will be primarily aimed at articulating the models. TF4FA Model Overview deck
Harmonization - Kathleen
- March 2018 Harmonization presentation by Kathleen
- Purpose - Overview of Vocabulary and V2 Proposals
- bringing security labels into v2 is the key
- Proposal status updates
- refinements of BH, and PSY - rationale for change discussed in detail:
- for specializing BH information sensitive - recognition of the distinct specialization - were not so fine grained to be diagnosis; intellectual disabilities
- TBI, dyslexia, hearing, blindness - these are cognitive but the physical capabilities remain intact where they have an inability to be self-sufficient (difference between developmental disabilities vs motor function/self-sustaining) - involves different programs/different stigma
- emotional disturbances - protects people with interim diagnosis (i.e. non-confirmed diagnosis) i.e. teenager with substance abuse disorder where they can come out of it) also not-easily diagnosed MH issues that do not fall in the earlier categories
- physician requested, bringing in V3 codes
- Alcohol use disorder (already approved
- Patient default information sensitivity - description incorrect, corrected
- physician requested information sensitivity - use case different from current TBOO sensitivity
Final Proposals due March 16
MOTION Made to approve these as final Opposed: none; Abstentions: none: approved: 7
Meeting adjourned at 1255 PM Arizona Time
Meeting Materials
Final Proposals and Presentation
- [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc]
- [2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx]
- [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.]
- [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.]
- March 2018 Harmonization Proposal Presentation
Initial Proposals