Security and Accountability SIG Meeting Minutes
October 1, 2002
Attendees:
Name / E-mail Address / SIG / Joint with PMGlen Marshall / / Yes / Yes
Bernd Blobel / / Yes / Yes
Brenton Norman / / Yes / No
Ed Larsen / / Yes / No
Gary Dickinson / / Yes / No
John Moehrke / / Yes / Yes
Mary Hamilton / / Yes / No
Mike Davis / / Yes / Yes
Jean Spohn / / Yes / Yes
Susan Abernathy / / Yes / No
Frank Oemig / / No / Yes
Beat Heggli / / No / Yes
Dawn Bollmann / / No / Yes
Steve Wagner / / No / Yes
I. SIG Meeting
Slides for discussions:
· Multi-SDO Digital Signature Project (see discussion slides)
· Request for Digital Signature capability in HL7 v2
· HL7/DICOM/ASTM common audit message (see discussion slides)
· IHE infrastructure meeting on 11/4-5
· International Update:
II. Joint Meeting with Personnel Management TC
We discussed the Privilege Management Infrastructure draft.
a) Focus on automated harmonization of policies among communicating healthcare participants
· Through a common set of policies
· Through added-value domain – complex/dynamic chain of trust
· Must accommodate varying communication protocols & models
b) It would be good to define real-world uses cases to help explain the model to application developers, e.g.:
· Prescription from order-entry through delivery to patient; scheduled & non-scheduled drugs
· Access to patient record from user sign-on through records access
· Scheduling appointments
c) Work needs to be done to resolve differences between role granularity in national regulatory frameworks, e.g., a relatively static role allowing a physician to prescribe drugs (established by license), versus a dynamic role that is established when a doctor cares for a specific patient.
d) ASTM draft work on PMI has escaped into this environment; it is up to ASTM E31.20 to resolve this and re-synch with ISO.
HL7_Meeting_Minutes_Sample.doc