This wiki has undergone a migration to Confluence found Here
<meta name="googlebot" content="noindex">

Difference between revisions of "September 2018 Security Working Group Meeting Agenda- Baltimore (DRAFT)"

From HL7Wiki
Jump to navigation Jump to search
Line 118: Line 118:
 
||'''Security WG - FHIR topics'''
 
||'''Security WG - FHIR topics'''
 
#S&P Considerations for FHIR
 
#S&P Considerations for FHIR
#Simplified view of the HCS
+
 
#http://wiki.hl7.org/index.php?title=HL7_FHIR_Security_2018-08-28#Current_Open_Issues_in_gForge
+
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=9167 9167] AuditEvent needs to make more obvious how to record a break-glass event (John Moehrke) Considered for Future Use
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=10343 10343] Three additional Signature.type codes (Kathleen Connor) Considered for Future Use
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=11071 11071] Improve security label guidance+-+2016-09 core+%2390 (Kathleen Connor) None
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=12660 12660] HCS use clarification (John Moehrke) None
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=17192 17192] Verification of given resource without changing the content (Thomas Johansen) None
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=17299 17299] enhance current disclosure AuditEvent so that it explains what is being recorded and why (John Moehrke) None
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=17300 17300] Break-Glass description needs clarifications (John Moehrke) None
 +
*[http://gforge.hl7.org/gf/project/fhir/tracker/?action=TrackerItemEdit&tracker_item_id=14678 14678] Implementation guide for signatures+-+2018-Jan Core+%231 (Brian Pech) Not Persuasive
 
||Security hosting FHIR-I, CBCP
 
||Security hosting FHIR-I, CBCP
 
||Room
 
||Room

Revision as of 15:08, 18 September 2018

READY for Security AGENDA Items

Back to Security Meetings

HL7 September 2018 Baltimore WGM Event BROCHURE Link

[<<link TBD)>> HL7 Sept 2018 WGM Minutes]

[wiki.hl7.org/index.php?title=FHIR_Connectathon_19 FHIR Connectathon]

Back to Security Meetings

AGENDA

valign="top"
Day Date Qtr Time Event Session Leader Room
SAT SEP 29 Q1 - Q4 9:00-5:00 . .
SUN SEP 30 Q1 9:00-10:30 . . Room TBD
Q2 11:00-12:30 Room TBD
Q3 1:45-3:00 FHIR MG Room TBD
Q4 3:30-5:00 Room TBD
MON OCT 01 Q1 9:00-10:30 . No Meeting .
Q2 11:00-12:30 . No Meeting .
Q3 - Q4 1:45-5:00 Joint CBCP - Security CBCP hosting Security Room TBD
TUE OCT 02 Q1 9:00-10:30 Opening Security WG Meeting
  • Introductions
  • Approval of agenda
  • International Report outs
  • Liaison Reports: ISO, IHE, ONC, OASIS
    • OASIS XSPA-SAML Update
  • FHIR Security Report out/S&P Considerations - John Moehrke
  • HL7 Project status and updates:
    • Is Privacy Obsolete Study Group (report out here and at joint EHR meeting and possibly FHIR group?) - Mike Davis
    • PSAF Project Refresh, Trust Framework and S&P DAM - Next Steps overview - Mike Davis
Security Room
Q2 11:00-12:30 Security Ballot Reconciliation
  • TF4FA Volumes 1 & 2 Ballot Reconciliation
  • PASS Audit Ballot Reconciliation
Security Room
Q3 1:45-3:00 Joint CBCP, Hosting Security

Proposed Topics: HL7 Project status and updates:

  1. Trust (Luis Maas-if able to attend)
  2. FHIR-Security and Privacy Topic Overview/cont.(JohnM)
    • Future FHIR-Security and Privacy topics
    • Drill down of FHIR Security-Privacy activities
Room
Q4 3:30-5:00 Security PSAF/TF4FA – Volume 3 Work Session
  • Update of Volume 3 Draft - Mike Davis
Room
WED OCT 03 Q1 9:00-10:30 Joint w/ EHR, CBCP, FHIR, SOA, Security

In-depth discussion :

  1. TF4FA Vol. 3 Update - Mike Davis
  2. PSAF Project Update - Mike Davis
  3. S&P Considerations for FHIR - John Moehrke
  • Security rep to OO for FHIR2V2 PSS for security labels W Q1/Q4
EHR hosting Security, CBCP, FHIR-I Room
Q2 11:00-12:30 GDPR Session Security Room TBD
Q3 1:45-3:00 Security WG - FHIR topics
  1. S&P Considerations for FHIR
  • 9167 AuditEvent needs to make more obvious how to record a break-glass event (John Moehrke) Considered for Future Use
  • 10343 Three additional Signature.type codes (Kathleen Connor) Considered for Future Use
  • 11071 Improve security label guidance+-+2016-09 core+%2390 (Kathleen Connor) None
  • 12660 HCS use clarification (John Moehrke) None
  • 17192 Verification of given resource without changing the content (Thomas Johansen) None
  • 17299 enhance current disclosure AuditEvent so that it explains what is being recorded and why (John Moehrke) None
  • 17300 Break-Glass description needs clarifications (John Moehrke) None
  • 14678 Implementation guide for signatures+-+2018-Jan Core+%231 (Brian Pech) Not Persuasive
Security hosting FHIR-I, CBCP Room
Q4 3:30-5:00 Security

Security hosting CBCP

  • PSAF Project Refresh, Trust Framework and S&P DAM - (Information Model) Next Steps - Mike Davis
Room TBD
THU OCT 04 Q1 9:00-10:30 Security hosting CBCP, FHIR-I Joint
  • FHIR Consent Resource - Discussion (CBCP-Security) see Wiki: HL7 FHIR Consent Directive Project
    • Contract vs Consent Issue Grahame, Lloyd
  • FHIR categorization by security/privacy considerations
    • can the FHIR tooling help build UI around categorization into various groups (public, business, personal, patient, other)
    • thus each page would have something at the top similar to 'compartment' with possibly multiple classifications
    • and each page 'might' have additional S&P considerations only where it is different than that classification
  • FHIR FMM advancement for Security and Privacy resources
Security hosting CBCP, FHIR-I Room
Q2 11:00-12:30 Security WG Project Meeting



Security Room
Q3 1:45-3:00 . .
Q4 3:30-5:00 . .
FRI OCT 05 Q1 9:00-10:30 . .
Q2 11:00-12:30 . .
Q3 1:45-3:00 . .
Q4 3:30-5:00 . .

Back to Security Wiki Meetings


Session Type:

Business Meeting
Technical Meeting
Ballot Reconciliation