20160418 - Meeting minutes, Monday, April 18th, 2016 - OpenNCP Community meeting (BiWeekly)

OpenNCP Community meeting (BiWeekly)

 

Estimated - 13:00 to 14:00 CET.

Performed - 13.00 to 13:50 CET.

Agenda:

  1. Housekeeping
  2. Connectathon 
  3. Release Management
    1. Release Management:
    2. Release-2.4.0:
    3. JIRA Issues:
  4. Performance and security testing:
  5. Central Services:
    1. Confluence, JIRA and Bitbucket:
    2. Terminology backup:
  6. Status task forces
    1. SMP/SML
    2. Security
    3. Terminology server
    4. eID
  7. AOB
  8. Next meetings

Location 

AdobeConnect:

http://ec-wacs.adobeconnect.com/openncp/

Room Passcode:  markus.kalliola or Licinio Kustra Mano

----------------

If you have never attended an Adobe Connect meeting before:

Test your connection: http://ec-wacs.adobeconnect.com/common/help/en/support/meeting_test.htm

Get a quick overview: http://www.adobe.com/products/adobeconnect.html

Adobe, the Adobe logo, Acrobat and Adobe Connect are either registered trademarks or trademarks of Adobe Systems Incorporated in the United States and/or other countries.
--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Participants

Today's Meeting Participants:

markus.kalliola

Joao Cunha

Heiko Zimmermann

Massimiliano Masi

Marco Bernardini

Kostas Karkaletsis

YacoubouY

robert.spiteri-staines

S

Marcello Melgara

Stéphane Spahni

Meeting Notes:

  1. Housekeeping:

  2. Connectathon:
    • Portugal (Joao Cunha): Version tested 2.4.0 with several profiles (Patient Summary Workflow as NCP-A and B,  ePrescription Workflow as NCP-A, authorizations, eSens Building Blocks non-repudiation and SMP), more than 40 tests executed and succeeded, some issues found and added to Jira.
    • Austria (Massimiliano Masi): Version tested 2.4.0 with several profiles (Patient Summary Workflow as NCP-A and B,  ePrescription Workflow as NCP-A and B, authorizations, eSens Building Blocks non-repudiation), some issues found and added to Jira.
    • Cyprus (Kostas Karkaletsis): Version tested 2.4.0 with several profiles (Patient Summary Workflow as NCP-A and B,  authorizations, eSens Building Blocks non-repudiation and SMP).
    • European Commission (S): Version tested 2.4.0 with several profiles (Patient Summary Workflow as NCP-A and B,  authorizations, eSens Building Blocks non-repudiation and SMP not validated because not registered on the SMP server).
    • Denmark: starting configuration and synchronization but no test executed.
    • Monitor: YacoubouY explained that he validated a lot of tests covering all the epSOS profiles, but the really interesting fact is the learning curve related not only to the automatic validation but also to be able to validate the message content and getting a really good understanding of the back-end.
  3. Release Management:
    1. Release Management:
      Kostas Karkaletsis made a status about the reorganization of the OpenNCP components (usage of a master/parent pom.xml file which is responsible of the OpenNCP build, usage of a single number version for all components, testing POC 2 weeks before the Connectathon).
      S some pending questions related to this topic will be managed by emails (export of the full project required?, time to execute a build if all the components have to be cloned etc.).
    2. Release-2.4.0:
      This release is stable and validated during the Connectathon, some minor issues have been found and will be fixed into the future maintenance release 2.4.1, schedule will be decided into the next Technical Committee.
    3. JIRA Issues:
      Historical issues have been managed, treated, closed. Current pending issues are more or less all assigned and will be treated during the next spring.
      New issues found have to be assigned to michele.foucart or S (Future process will be to assign by default to the eHealth DSI functional support user).
  4. Security and Performance testing:
    1. Security tests: This test session will be split into different components and each OpenNCP components will be tested in details (standalone mode). EC security team will manage the tests (Natasha Carl).
    2. Performance tests: YacoubouY provide feedback related to the previous performance tests orchestrated by EC, general performance of the client (Portal) have been improved (configuration, database connection pool etc.). A new performance tests session will take place at the beginning of may, this sessions will manage load and stress tests component per component as for the security tests.
      Kostas Karkaletsis: has highlighted some performance issues into the XCA querying, (TM translate transcode, many queries although there are a lot of static data). A Java profiler has been added to the source code of the client-connector and the ws-server in order to trace the consumption of the requests (Xrebel).
    3. Massimiliano Masi kindly ask if it's possible to share with the community: the results; the procedure used and followed; the configuration and the tools used during the tests.
  5. Central Services:
    1. We can start using EC configuration services : URL: https://webgate.ec.europa.eu/ehealth/tsl
      S is currently updating the installation manual with the urls, the modifications of the configuration as the previous service provider has suspended the server.
    2. Confluence, JIRA and Bitbucket:
      Migration to DIGIT Cef Digital platform, Confluence has been migrated, still remaining issues with the user alias.
      Minor issue with JIRA due to the fact that Altassian on-demand and DIGIT Cef Digital are using a different version of Jira (ticket open to the official support DG DIGIT manages the situation).
      Bibucket: some tests will be performed with an user of the community to validate the access to the repository. Then migration of the repository origin.
      Kostas Karkaletsis has noticed that there is still an issue with the logout function of the CEF platfom (Issue identified by DIGIT).
    3. Terminology backup:
      No solution provided to synchronize the ltrdb. markus.kalliola explained that this topic will be discuss next week with the MS expert group in order to know if we already have backup or how to manage to obtain these backup datasets.
  6. Status task forces
    1. SMP/SML: no update, analysis of the caching mechanism solution.
    2. Security: this task force will re-start during the Security test session (organization of ad-hoc meeting).
    3. Terminology server: Marco Bernardini Terminology testing with the MVC of FH Dortmund (producing errors), starting work related to the CTS2 compliance on the Tsam sync module.
    4. eID: no update before the next eId meeting.
  7. AOB:
    1. Certificates issue (CZ authority) Marcello Melgara reported an issue related to the CZ authority:
      Stéphane Spahni Checking certificates: url no more valid (Distribution Point, Certificate Revocation List, IssuerAltNames and SubjectAltNames).
      "The problem is the URL element within the certificate – it is not a public one and the new legislation requires the verification process of such unpublic items."
      Ask more details to Marcello Melgara to manage this topic and then contact Milan Ruzicka.

  8. Next meetings:
    13:00 CET to 14:00 CET.