FHIR Security & Privacy activities

This is an update of what is going on in Security and Privacy in, and around, the FHIR specification. ---------------tl;dr-----------------------FHIR R4 includes Security Considerations classificationSMART-on-FHIR first flavor is NormativeAddition of X-Provenance and X-Consent http headersGDPR assessment against FHIR indicates good coverage of needs in FHIR alreadyMaturing AuditEvent and Provenance to Normative by FHIR R5HL7 Implementation Guide on Basic Provenance (CDA and FHIR)IHE updated ATNA to include FHIR AuditEvent feed and querySignature datatype not likely to be R5 normative candidate-----------------Details -----------------------Overall Security...