This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "September 2016 Baltimore WGM - Security WG Agenda"

From HL7Wiki
Jump to navigation Jump to search
Line 73: Line 73:
 
||'''Trust Framework Work Session'''
 
||'''Trust Framework Work Session'''
 
* Review Current Trust Framework Efforts tracked in [http://wiki.hl7.org/index.php?title=Trust_Label Security Trust Library]
 
* Review Current Trust Framework Efforts tracked in [http://wiki.hl7.org/index.php?title=Trust_Label Security Trust Library]
** Trust Framework Governance initiatives
+
*[http://gforge.hl7.org/gf/download/docmanfileversion/9383/14677/MIT%20MedRec%20ONC%20Blockchain%20Challenge.pdfBold text A Case Study for Blockchain in Healthcare: “MedRec” prototype for electronic health records and medical research data]
** Trust Framework established and emerging standards including blockchain and smart contracts for dynamic trust frameworks
+
*Trust Framework Governance initiatives
 +
*Trust Framework established and emerging standards including blockchain and smart contracts for dynamic trust frameworks
 
**Trust and POU: [http://gforge.hl7.org/gf/download/docmanfileversion/9377/14662/Purpose%20of%20Use-20160918%20JMD.docx Refocus on POU functions in Trust, Privacy, and Security Policies, and how to capture in PSAF]
 
**Trust and POU: [http://gforge.hl7.org/gf/download/docmanfileversion/9377/14662/Purpose%20of%20Use-20160918%20JMD.docx Refocus on POU functions in Trust, Privacy, and Security Policies, and how to capture in PSAF]
** Perspective on Trust Framework requirements from various jurisdictions
+
*Perspective on Trust Framework requirements from various jurisdictions
** Action Items - e.g., could Security develop requirements, functional model, vocabulary etc. as part of PSAF.  Potential FHIR Trust Policy?
+
*Action Items - e.g., could Security develop requirements, functional model, vocabulary etc. as part of PSAF.  Potential FHIR Trust Policy?
 
||Security
 
||Security
 
||Columbia
 
||Columbia
Line 122: Line 123:
 
*Review of all FHIR Security and Consent related guidance to ensure alignment with Security and CBCC WG positions [http://hl7-fhir.github.io/secpriv-module.html FHIR STU3 Security and Privacy Module] as this material was not previously reviewed or approved by the WGs.  
 
*Review of all FHIR Security and Consent related guidance to ensure alignment with Security and CBCC WG positions [http://hl7-fhir.github.io/secpriv-module.html FHIR STU3 Security and Privacy Module] as this material was not previously reviewed or approved by the WGs.  
 
*FHIR Security Label Guidance - Align with HCS, co-occurrence constraint on Confidentiality, include trust and integrity security label vocabulary
 
*FHIR Security Label Guidance - Align with HCS, co-occurrence constraint on Confidentiality, include trust and integrity security label vocabulary
* FHIR Privacy Impact and Security Risk Assessments
+
*FHIR Privacy Impact and Security Risk Assessments
 
** For Infrastructure - e.g., versioning, updates, history and impact on persistence of security labels if required by policy
 
** For Infrastructure - e.g., versioning, updates, history and impact on persistence of security labels if required by policy
 
** By Resources - optional Privacy and Security Notes
 
** By Resources - optional Privacy and Security Notes

Revision as of 02:04, 20 September 2016

September 2016 Security Working Group Meeting - Baltimore Maryland USA

HL7 WGM Event BROCHURE Link

[On-Site Meeting Schedule & Hotel Guide

Minutes: [September 2016 Baltimore WGM - Security (add link)]

Back to Security Meetings

Day Date Qtr Time Event Session Leader Room
SUN SEP 18 Q1 9:00-10:30 . No Meeting .
Q2 11:00-12:30 . No Meeting .
Q3 1:45 -3:00 . No Meeting .
Q4 3:30 -5:00 . No Meeting .
MON SEP 19 Q1 9:00-10:30 . No Meeting .
Q2 11:00-12:30 . No Meeting .
Q3 1:45 -3:00 Joint CBCC - Security
  • [1] for agenda items
 CBCC Constellation F
Q4 3:30 -5:00 Joint with CBCC – New discussion items and projects
  • [2] for agenda items
 CBCC Constellation F
TUE SEP 20 Q1 9:00-10:30 Opening Security WG Meeting
  • Introductions
  • Approval of agenda
  • International Report outs
  • ONC ISA Comments - Consider resending and requesting that ONC give rationale for what is or is not adopted. Forward to PAC for Board review.
  • Liaison Reports: ISO, IHE, ONC (HEART)
  • HL7 Project status and updates:
    • Standards Privacy Impact Assessment (formerly: Privacy Impact Assessment and P&SbD)
    • FHIR Security - AuditEvent, Provenance, Security Labels
    • FHIR Consent Directive work (with CBCC)
    • Trust Framework - plan for Q2 work session
    • SOA Audit
 Security Columbia
Q2 11:00-12:30 Trust Framework Work Session Security Columbia
Q3 1:45-3:00 CBCC FHIR-I Joint on FHIR ConsentDirective CBCC Room TBA
Q4 3:30 -5:00 Security WG Project Meeting
  • FHIR AuditEvent, Provenance Resource
    • Outstanding CP Review
    • Front Matter Documentation updates
    • Vocabulary binding to v.3 and FHIR value sets
 Security Columbia
WED SEP 21 Q1 9:00-10:30 Joint w/ EHR, CBCC, FHIR, SOA, Security Security Constellation C
Q2 11:00-12:30 Joint w/ SOA
  • Tentative Agenda Items:
    • PASS Audit topics (joint w Security, CBCC, SOA)
    • Privacy and Security Architecture Framework [PSAF]and SOA PASS Conceptual Models
 SOA Frederick
Q3 1:45 -3:00 Security WG Prep for THURs Q1 CBCC FHIR-I Joint
  • Review of all FHIR Security and Consent related guidance to ensure alignment with Security and CBCC WG positions FHIR STU3 Security and Privacy Module as this material was not previously reviewed or approved by the WGs.
  • FHIR Security Label Guidance - Align with HCS, co-occurrence constraint on Confidentiality, include trust and integrity security label vocabulary
  • FHIR Privacy Impact and Security Risk Assessments
    • For Infrastructure - e.g., versioning, updates, history and impact on persistence of security labels if required by policy
    • By Resources - optional Privacy and Security Notes
 Security Room TBA
Q4 3:30 -5:00 Security WG Project Meeting Security Room TBA
THU SEP 22 Q1 9:00-10:00 Security Joint with FHIR-I
  • Tentative Agenda Item
    • FHIR Connectathon Privacy and Security testing scenarios
 Security Room TBA
Q2 11:00-12:30 Security WG Project Meeting
  • Nov Harmonization Proposals
    • New Obligation to render human readable notices, such as Part 2 Redisclosure w/o Consent Prohibition
    • POU additions - HTEST, Research Consent POUs
    • Research Consent Refrains, Obligations
 Security Room TBA
Q3 1:45 -3:00 .
Q4 3:30 -5:00 . No Meeting .
FRI SEP 23 Q1 9:00-10:30 . No Meeting .
Q2 11:00-12:30 . No Meeting .
Q3 1:45 -3:00 . No Meeting .
Q4 3:30 -5:00 . No Meeting

Back to Security Wiki Meetings


Session Type:

Business Meeting
Technical Meeting
Ballot Reconciliation
Retrieved from "https://wiki.hl7.org/w/index.php?title=September_2016_Baltimore_WGM_-_Security_WG_Agenda&oldid=125971"