You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I was not able to create a pull request, so here is my recommendation to be added to the best practice narrative
Security and Privacy Considerations
Section is focused on speaking to the Security and Privacy experts
The purpose of the section is to explain what attacks have been considered and what countermeasures can be applied to defend against them
Privacy Principles -- related to a subject of data; transparency, purpose limitation, data minimization, accuracy, storage limitations, and security -- There are regional specializations.
Security Principles -- security is risk management against risks to Confidentiality, Integrity, and Availability
Keep points succinct to the special considerations of your IG
Leverage the security and privacy categorization defined in FHIR core where appropriate
Leverage the security and privacy implementation guides such as SMART-on-FHIR
Include specific conformance requirements of your IG that are related to Security or Privacy in this section, and what attacks that requirement is addressing
Include residual risks that are not addressed as they would need to be addressed in system design, system deployment, or policy
The text was updated successfully, but these errors were encountered:
I was not able to create a pull request, so here is my recommendation to be added to the best practice narrative
Security and Privacy Considerations
The text was updated successfully, but these errors were encountered: