1 / 6

Kathleen Connor VA (ESC) HL7 Security WG Call July 10, 2012

HL7 Healthcare Privacy and Security Classification System and HSSP Data Sensitivity and Tagging Project. Kathleen Connor VA (ESC) HL7 Security WG Call July 10, 2012. Purpose. Coordination between: HL7 Healthcare Privacy and Security Classification System

galena
Download Presentation

Kathleen Connor VA (ESC) HL7 Security WG Call July 10, 2012

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. HL7 Healthcare Privacy and Security Classification System and HSSP Data Sensitivity and Tagging Project Kathleen Connor VA (ESC) HL7 Security WG Call July 10, 2012

  2. Purpose • Coordination between: • HL7 Healthcare Privacy and Security Classification System • Deliverable for Security WG Confidentiality Code Refactoring Project • NIB submitted for HL7 Sept Ballot • Project call 7/29 to review draft – little feedback • Security WG approval needed for final submission • HSSP Data Sensitivity and Tagging Project

  3. HL7 HCS Project Status • HL7 Healthcare Privacy and Security Classification System • Deliverable for Security WG Confidentiality Code Refactoring Project • NIB submitted for HL7 Sept Ballot • Project call 7/29 to review draft – little feedback • Security WG approval needed for final submission

  4. HSSP Data Sensitivity and Tagging Project Status • Upcoming Calls: • 2012-JUL-23 Topic 2: Data Sensitivity and Tagging Project Update & Discussion • 2012-AUG-27 Topic 1: Data Sensitivity and Tagging Project Update and Discussion

  5. HL7 HSSP Joint with Security HL7 San Diego WGM Sept 2011 Minutes • S & I Framework Initiative (from ONC) - information sharing limited by privacy concerns • Data Segmentation for Privacy work group - (42 title 38) • Tagging data as sensitive (HIV, others) • Discussed various use cases.... • Discussed some ways this could be integrated with SOA • Talked about re-disclosure • Transactional constraints (e.g. view only) - requested can view but not re-disclose • Auditing security - certified to implement minimal set of security components) • Accreditation - implements sufficient policy (using security components) • Access control service - PASS - does it work with S&I • Does S&I required new meta-data on services? Will probably need to have some why to describe confidentiality/privacy requirements. • Actions: • Expiring DSTU for access service - refresh SFM with tagging/labeling requirements (e.g.S&I framework) - close loop with Mike Davis, VA.(Gerald) • Proposed Security owns ballot - defer to Mike (Gerald). • Target January 2013 for ballot • Achieve final disposition of final Security related ballot package (Don)

  6. HL7 HSSP Joint with Security • HL7 Vancouver WGM Jan 2012 Minutes • Security WG - PASS w/ Tags & Labels • Passed vote to create a Domain Analysis Model for PASS, crossing all of SOA • Data labeling to ensure privacy, secrecy of data • Classification/Information Compartmentalization/Dissemination controls • Should be coordinated with OMG MARS RFP • Security will lead, SOA members may follow

More Related