This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "March 13, 2018 Security Conference Call"

From HL7Wiki
Jump to navigation Jump to search
Line 56: Line 56:
 
#''(15 min)'' '''TF4FA Report Out from PSAF call''' - Mike Davis and Chris Shawn
 
#''(15 min)'' '''TF4FA Report Out from PSAF call''' - Mike Davis and Chris Shawn
 
#''(20 min)'' '''March Harmonization Proposals for final submission''' Review for approval - Kathleen - see Meeting Materials for links to proposals.
 
#''(20 min)'' '''March Harmonization Proposals for final submission''' Review for approval - Kathleen - see Meeting Materials for links to proposals.
==Meeting Materials==
+
==Minutes==
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_INITIALPROPOSAL_VOCAB_SECURE_kathleen_connor_Authorization%20and%20Delegation%20Policy%20codes_201802282.doc Authorization and Delegation Policy codes]
 
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec2_POU_HL70953_V1.docx POU updates]
 
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FINALPROPOSAL_VOCAB_SECURE_kathleen_connor_SEC%20Sensitivity%20HL7%200719_V2%20kc%20with%20adds.docx Sensitivity Code updates]
 
 
 
 
Roll Call, Meeting Minutes approval
 
Roll Call, Meeting Minutes approval
 
Meeting minutes for March 6, Suzanne/Mike)
 
Meeting minutes for March 6, Suzanne/Mike)
Line 128: Line 124:
  
 
Meeting adjourned at 1255 PM Arizona Time
 
Meeting adjourned at 1255 PM Arizona Time
 +
 +
==Meeting Materials==
 +
Final Proposals and Presentation
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc
 +
*[2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.]
 +
*[2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.]]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Final%20Harmonization%20Proposals/HL7%20Harmonization%20March%202018%20Security%20and%20CBCP%20Proposals.pptx March 2018 Harmonization Proposal Presentation]
 +
 +
 +
Initial Proposals
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_INITIALPROPOSAL_VOCAB_SECURE_kathleen_connor_Authorization%20and%20Delegation%20Policy%20codes_201802282.doc Authorization and Delegation Policy codes]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec2_POU_HL70953_V1.docx POU updates]
 +
*[https://gforge.hl7.org/gf/project/security/docman/Harmonization/July%202017%20Harmonization/March%202018%20Harmonization/March%202018%20Initial%20Submission/2018Mar_HARM_FINALPROPOSAL_VOCAB_SECURE_kathleen_connor_SEC%20Sensitivity%20HL7%200719_V2%20kc%20with%20adds.docx Sensitivity Code updates]

Revision as of 21:01, 16 March 2018

Back to Security Main Page

Attendees

x Member Name x Member Name x Member Name x Member Name
. John Moehrke Security Co-chair x Kathleen Connor Security Co-chair . Alexander Mense Security Co-chair . Trish Williams Security Co-chair
x Christopher Shawn Security Co-chair x Suzanne Gonzales-Webb x Mike Davis x David Staggs
. Mohammed Jafari x Beth Pumo . Ioana Singureanu . Rob Horn
x Diana Proud-Madruga . Serafina Versaggi . Joe Lamy . Greg Linden
. Paul Knapp . Grahame Grieve x Johnathan Coleman . Aaron Seib
. Ken Salyards x Jim Kretz . Gary Dickinson x Dave Silver
. Oliver Lawless . Joyce Dunlop . David Tao . Nathan Botts
x Francisco Jauregui . Bo Dagnall . Riki Merrick . Theresa Connor

Back to Security Main Page

Agenda

  1. (2 min) Roll Call, Agenda Approval
  2. (3 min) Review and Approval of March 6, 2018 minutes
  3. (15 min) review FHIR Verification Result resource relative to Provenance Brian Postlethwaite (PA)
  4. (15 min) TF4FA Report Out from PSAF call - Mike Davis and Chris Shawn
  5. (20 min) March Harmonization Proposals for final submission Review for approval - Kathleen - see Meeting Materials for links to proposals.

Minutes

Roll Call, Meeting Minutes approval Meeting minutes for March 6, Suzanne/Mike)

  • VOTE Approve: 7,

FHIR Verification Result Resource

TF4FA - report from PSAF

  • presented the models developed, updated
  • new models added, trust proposal message model
  • edits done to clarify authorities, working in to fill the content
  • we changed the business view to be consistent to OMODP notation
    • we believe there to be a conflict between Volume 1, Volume 2 behavioral model
  • discussed... [add]
  • timelines discussed to put items together, we'd like to get it out for review, but it needs to be out by the end of the month
  • Kathleen is uncomfortable with the clarity achieved--unsure of the BH model, there may be at some point need to better align
  • are items posted somewhere
  • suggestion to place all diagrams into a ppt so that people can look at it. nothing else in the document will vary from the models (Mike/Kathleen to do and send to Security list serve)


Harmonization - Kathleen

  • PPT presentation by Kathleen <<add link>>
  • Purpose - Overview of Vocabulary and V2 Proposals
    • bringing security labels into v2 is the key
    • Proposal status updates
      • initial questions vetted in latest
      • need to approach CBCP to concur with the final submission (they are interested party only)
    • Detailed information on implementation issues with ETH | SUD - Kathleen suggests dropping the issue
    • refinements of BH, and PSY

((additional detail on history provided)) RATIONALE for change discussed in detail:

    • for specializing BH information sensitive - recognition of the distinct specialization - were not so fine grained to be diagnosis; intellectual disabilities
    • TBI, dyslexia, hearing, blindness - these are cognitive but the physical capabilities remain intact where they have an inability to be self-sufficient (difference between developmental disabilities vs motor function/self-sustaining) - involves different programs/different stigma
    • emotional disturbances - protects people with interim diagnosis (i.e. non-confirmed diagnosis) i.e. teenager with substance abuse disorder where they can come out of it) also not-easily diagnosed MH issues that do not fall in the earlier categories
      • physician requested, bringing in V3 codes
    • Alcohol use disorder (already approved
    • Patient default information sensitivity - description incorrect, corrected
    • physician requested information sensitivity - use case different from current TBOO sensitivity

Due March 16

Initial effort started to clean up PSY - psychiatry. (now psychiatric disorder information sensitivity)

  • this was not in the patter of the psychiatry disorder which is not what we're talking it
    • COGN - cognitive disability information sensitivity - policy for handling information related to cognitive disability disorders and conditions caused by these disorders which are afforded heightened confidentiality.
    • ETREAT Hierarchy Options
    • Added/Revised HOPERAT and TREAT children
    • add an authorization policy and delegation policy codes under ActCode_ActDelegation
      • AUTHPOL - authorization policy (based on PONDERS paper)
      • ACCESSCONSCHEME (access control scheme) - child of above

MOTION Made to approve these as final Opposed: none; Abstentions: none: approved: 7


PPT - Diagrams overview

  • Policy Diagrams
  • Trust Context
  • Trust Services
  • Federated Trust Reference Model

PPT will be posted to gForge for review prior to the May 2018 ballot No Additional questions or comments

Meeting adjourned at 1255 PM Arizona Time

Meeting Materials

Final Proposals and Presentation

  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Security Authorization and Delegation ActCodes_ 20180316163407.doc
  • [2018Mar_HARM_FinalPROPOSAL_VOCAB_Security_ulrike_merrick_Sec1_Confid_HL70952v1.docx
  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActReason_ PurposeOfUse codes_ 20180316131445.docx Updates to V3 Purpose of Use Codes, and inclusion of all Security Control Policy Codes into V2 for security labeling.]
  • [2018Mar_ HARM_ FINALPROPOSAL_ VOCAB_ SECURE_ kathleen_ connor_ Updates to ActCode_ _ InformationSensitivityPolicy_ 20180316125109.docx Updates to V3 Information Sensitivity Policy Codesand inclusion of all Information Sensitivity Policy Codes into V2 for security labeling.]]
  • March 2018 Harmonization Proposal Presentation


Initial Proposals

Retrieved from "https://wiki.hl7.org/w/index.php?title=March_13,_2018_Security_Conference_Call&oldid=154687"