Validated Healthcare Directory
1.0.0 - STU1 International flag

Validated Healthcare Directory, published by HL7 International / Patient Administration. This guide is not an authorized publication; it is the continuous build for version 1.0.0 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/VhDir/ and changes regularly. See the Directory of published versions

CodeSystem: VhDir Digital Certificate Code System

Official URL: http://hl7.org/fhir/uv/vhdir/CodeSystem/digitalcertificate Version: 1.0.0
Active as of 2018-02-21 Computable Name: VhDirDigitalCertificate

Copyright/Legal: Used by permission of HL7 International all rights reserved Creative Commons License

Public key infrastructure (PKI) refers to the architecture, organizations, techniques, practices, and procedures that collectively support the implementation and operation of a certificate-based public key cryptographic system. A certificate is a set of data that uniquely identifies a key pair and an owner that is authorized to use the key pair. The certificate contains the owner’s public key and other information, and is digitally signed by a Certification Authority (i.e., a trusted party), thereby binding the public key to the owner. This code system includes terms describing various aspects of a certificate-based public key cryptographic system, such as applicable standards, types of certificates, uses of certificates, and associated trust frameworks.

This Code system is referenced in the content logical definition of the following value sets:

Generated Narrative: CodeSystem digitalcertificate

This case-sensitive code system http://hl7.org/fhir/uv/vhdir/CodeSystem/digitalcertificate defines the following codes:

CodeDisplayDefinition
TLS/SSL TLS/SSL A certificate for a device such as a server or router, used to authenticate the device and establish secure communications between the device and a client.
device Device A certificate used to verify the identity of a device.
grp Group A certificate for a collection of individual subscribers acting in a shared capacity, such as an organization.
ind Individual A certificate for a single person.
role Role based A certificate for a specific role on behalf of which a subscriber is authorized to act, such as a Chief Information Officer.
signing Signing A certificate issued for the purpose of digitally signing information to confirm the author and guarantee that the content has not been altered or corrupted since it was signed by use of a cryptographic hash.
encrypt Encryption A certificate containing a public key that can encrypt or decrypt electronic messages, files, documents, or data transmissions, or establish or exchange a session key for these same purposes.
auth Authentication A certificate which can be used to obtain assurance of the accuracy of the claimed identity of an entity.
x.509v3 x.509v3 A standard published by the International Telecommunication Union’s Telecommunication Standardization Sector (ITU-T) that defines a framework for public-key certificates, including specification of data objects used to represent the certificates themselves.
direct DirectTrust DirectTrust is a non-profit health care industry alliance that has established and maintains rules, standards, and policies associated with the operation of the security and trust-in-identity layer for Direct exchange.
FPKI Federal Public Key Infrastructure (FPKI)/Federal Trust Framework The Federal Public Key Infrastructure (FPKI) Program provides the government with a trust framework and infrastructure to administer digital certificates and public-private key pairs. FPKI consists of a network of Certification Authorities (CAs) that issue Personal Identity Verification (PIV) credentials and person identity certificates, PIV-interoperable credentials and person identity certificates, other person identity certificates, and enterprise device identity certificates.
SAFEBioP SAFE-BioPharma The SAFE-BioPharma Association develops and maintains policies and practices used by identity credential issuers. SAFE-BioPharma examines and certifies that the identity proofing, credential issuance, and credential management policies and practices of electronic identity credential issuers are comparable to Federal Identity, Credential, and Access Management (FICAM) requirements.
ONCTEF ONC Trusted Exchange Framework (TEF) The TEF outlines a common set of principles for trusted exchange and minimum terms and conditions for trusted exchange to bridge the gap between providers’ and patients’ information systems and enable interoperability across disparate health information networks (HINs).
NATE National Association for Trusted Exchange (NATE) NATE Blue Button for Consumers (NBB4C) Trust Bundle contains trust anchors of consumer-facing applications (CFAs) that utilize Direct to securely move data from one application to another. Participation in the NBB4C Trust Bundle facilitates secure exchange of health information from provider-controlled applications to consumer-controlled applications such as personal health records (PHRs) using Direct secure messaging protocols.
other other A trust framework other than DirectTrust, FPKI/Federal Trust Framework, SAFE-BioPharma, NATE Blue Button for Consumers Trust Bundle, or ONC Trusted Exchange Framework.