NIH | National Cancer Institute | NCI Wiki  

WIKI MAINTENANCE NOTICE

Please be advised that NCI Wiki will be undergoing maintenance on Thursday, May 23rd between 1200 ET and 1300 ET.
Wiki will remain available, but users may experience screen refreshes or HTTP 502 errors during the maintenance period. If you encounter these errors, wait 1-2 minutes, then refresh your page.

If you have any questions or concerns, please contact the CBIIT Atlassian Management Team.

Versions Compared

Old Version 1

changes.mady.by.user Unknown User (stanclcr2)

Saved on

compared with

New Version Current

changes.mady.by.user Unknown User (wileyal)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 5.3
Wiki Markup
{scrollbar:icons=false}

Page info
title
title

Panel
titleContents of this Page
Table of Contents
minLevel2

...

The purpose of this document is to collect, analyze, and define high-level needs for and designed features of document the security plan for the National Cancer Institute Center for Biomedical Informatics and Information Technology (NCI CBIIT) caCORE LexEVS Release 6.1. The focus is on the functionalities proposed by the stakeholders and target users to make a better product.

Design Scope

Please view the LexEVS 6.1 Scope document (LexEVS 6.1 Scope Document)

JIRA items

Please view the LexEVS 6.1 JIRA items (LexEVS 6.1 JIRA Items)

Detailed Design

The following sections specify how the design will satisfy the requirements.

Detailed Design - CTS 2 REST Services

Please view the detailed design: LexEVS 6.1 Design Document - Detailed Design - CTS2 REST Services

Detailed Design - Loader - OWL2

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Loader - OWL2

Detailed Design - Loader - HL7 MIF

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Loader - HL7 MIF

Detailed Design - Loader - MedDRA

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Loader - MedDRA

Detailed Design - Performance - Hierarchy Traversal

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Performance - Hierarchy Traversal

Detailed Design - Performance - Text Search (Contains)

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Performance - Text Search (Contains)

Detailed Design - Performance - Value Set Resolution (Persistence)

Please view the detailed design:LexEVS 6.1 Design Document - Detailed Design - Performance - Value Set Resolution (Persistance)

 

...

Information Systems Security Plan

A list of the industry standard security controls expected in this product

  • HTTPS
    Multiexcerpt include
    nopaneltrue
    MultiExcerptNameExitDisclaimer
    PageWithExcerptwikicontent:Exit Disclaimer to Include
    REST security (if needed)
    • Possible uses:
      • URI Resolver administration
      • CTS2 Development Framework administration
      • LexEVS REST secure ontology access/token transfer
  • RFC 2196
    Multiexcerpt include
    nopaneltrue
    MultiExcerptNameExitDisclaimer
    PageWithExcerptwikicontent:Exit Disclaimer to Include
    • Specifiically, section 3.1.2 Separation of Services
      Multiexcerpt include
      nopaneltrue
      MultiExcerptNameExitDisclaimer
      PageWithExcerptwikicontent:Exit Disclaimer to Include
      • This architecture will allow services to be separated to those needing to be exposed externally and those that do not.
      • Services NOT to expose externally:
        • URI Resolver administration
        • CTS2 Development Framework administration

The components of the CBIIT technologies used for security controls

None

Any expected deviation from the standards

None