ISO/HL7 10781 - Electronic Health Record System Functional Model, Release 2.1
2.1.0 - CI Build

Publish Box goes here

Requirements: TI.2.1.2.4 User Request to Change Password Security Audit Trigger (Function)

Active as of 2024-11-23
Statement N:

Manage Audit Trigger initiated to track user request to change password.

Description I:

Capture user request to change password, both routine and exceptional, including key metadata (who, what, when, where, why).

Criteria N:
TI.2.1.2.4#01 SHALL

The system SHALL audit each occurrence of user authentication when user requests password change.

TI.2.1.2.4#02 SHALL

The system SHALL capture identity of the organization.

TI.2.1.2.4#03 conditional SHALL

IF known, THEN the system SHALL capture identity of the user.

TI.2.1.2.4#04 SHALL

The system SHALL capture identity of the system.

TI.2.1.2.4#05 SHALL

The system SHALL capture the event initiating audit trigger.

TI.2.1.2.4#06 SHALL

The system SHALL capture the date and time of the event initiating audit trigger.

TI.2.1.2.4#07 SHALL

The system SHALL capture identity of the location (i.e., network address).

TI.2.1.2.4#08 MAY

The system MAY capture the rationale for the event initiating audit trigger.

TI.2.1.2.4#09 conditional SHALL

IF password change successful, THEN the system SHALL capture the new password.