National Directory of Healthcare Providers & Services (NDH) Implementation Guide
2.0.0-current - ci-build United States of America flag

National Directory of Healthcare Providers & Services (NDH) Implementation Guide, published by HL7 International / Patient Administration. This guide is not an authorized publication; it is the continuous build for version 2.0.0-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/HL7/fhir-us-ndh/ and changes regularly. See the Directory of published versions

CodeSystem: Endpoint Access Control Mechanism Code System

Official URL: http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS Version: 2.0.0-current
Standards status: Trial-use Maturity Level: 4 Computable Name: NdhEndpointAccessControlMechanismCS
Other Identifiers: OID:2.999.1.2.3.4.16.8

This code system defines endpoint access-control mechanism concepts for NDH exchange, enabling consistent declaration of authentication and authorization approaches used to protect endpoint access.

This Code system is referenced in the definition of the following value sets:

This case-sensitive code system http://hl7.org/fhir/us/ndh/CodeSystem/NdhEndpointAccessControlMechanismCS defines the following codes:

CodeDisplayDefinition
public Public Public access without any specific access control.
OAuth OAuth OAuth (unspecified version see oauth.net).
SMART-on-FHIR SMART-on-FHIR OAuth2 using SMART-on-FHIR profile (see http://docs.smarthealthit.org/).
NTLM NTLM Microsoft NTLM Authentication.
basic Basic Basic authentication defined in HTTP specification.
Kerberos Kerberos see http://www.ietf.org/rfc/rfc4120.txt.
Certificates Certificates SSL where client must have a certificate registered with the server.
opaque-access-token Opaque Access Token Uses an opaque token for access control, which is a token whose structure is not visible or meaningful to the client.
jwt-access-token JWT Access Token Uses a JSON Web Token (JWT) for access control, which is a compact, URL-safe means of representing claims to be transferred between two parties.
mutual-tls Mutual TLS Uses mutual Transport Layer Security (TLS) where both client and server authenticate each other using certificates.
wss-saml-token WSS SAML Token Uses a Security Assertion Markup Language (SAML) token within the Web Services Security (WSS) framework for access control.
wss-username-token WSS User Name Token Uses a username token within the WSS framework for access control.
wss-kerberos-token WSS Kerberos Token Uses a Kerberos token within the WSS framework for access control.
wss-x509-token WSS X509 Token Uses an X.509 certificate token within the WSS framework for access control.
wss-custom-token WSS Custom Token Uses a custom token within the WSS framework for access control.

Description of the above table(s).