Verifiable Health Link
0.0.2-current - ci-build
Verifiable Health Link, published by IHE IT Infrastructure Technical Committee. This guide is not an authorized publication; it is the continuous build for version 0.0.2-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/IHE/ITI.VHL/ and changes regularly. See the Directory of published versions
Active as of 2025-06-16 |
<Requirements xmlns="http://hl7.org/fhir">
<id value="ReceivePKIMaterial"/>
<text>
<status value="generated"/>
<div xmlns="http://www.w3.org/1999/xhtml"><p class="res-header-id"><b>Generated Narrative: Requirements ReceivePKIMaterial</b></p><a name="ReceivePKIMaterial"> </a><a name="hcReceivePKIMaterial"> </a><p>These requirements apply to the following actors: </p><ul><li><a href="ActorDefinition-VHLSharer.html">VHL Sharer</a></li><li><a href="ActorDefinition-VHLReceiver.html">VHL Receiver</a></li></ul><p>These requirements derive from <a href="Requirements-EstablishTrust.html">Establish Trust</a></p><table class="grid"><tr><td><b><a name="cache-received-trust-list"> </a></b>Cache received Trust list</td><td/><td><div><p>Cache the received trust list or certificate material to reduce network and server load</p>
</div></td></tr><tr><td><b><a name="validate-digital-signatures"> </a></b>Validate digital signatures</td><td/><td><div><p>Validate digital signatures or trust paths</p>
</div></td></tr><tr><td><b><a name="monitor-certificate-expiration"> </a></b>Monitor certificate expiration</td><td/><td><div><p>Monitor certificate expiration or revocation status where applicable</p>
</div></td></tr></table></div>
</text>
<url
value="https://profiles.ihe.net/ITI/VHL/Requirements/ReceivePKIMaterial"/>
<version value="0.0.2-current"/>
<name value="ReceivePKIMaterial"/>
<title value="Receive PKI material"/>
<status value="active"/>
<date value="2025-06-16T13:14:26+00:00"/>
<publisher value="IHE IT Infrastructure Technical Committee"/>
<contact>
<telecom>
<system value="url"/>
<value value="https://www.ihe.net/ihe_domains/it_infrastructure/"/>
</telecom>
</contact>
<contact>
<telecom>
<system value="email"/>
<value value="iti@ihe.net"/>
</telecom>
</contact>
<contact>
<name value="IHE IT Infrastructure Technical Committee"/>
<telecom>
<system value="email"/>
<value value="iti@ihe.net"/>
</telecom>
</contact>
<description
value="A [VHL Sharer](ActorDefinition-VHLSharer.html) or [VHL Receiver](ActorDefinition-VHLReceiver.html), after receiving PKI material from a [Trust Anchor](ActorDefinition-TrustAnchor.html), SHALL validate and process the trust information for subsequent cryptographic operations.
Participants SHOULD:
* Cache the received trust list or certificate material to reduce network and server load
* Validate digital signatures or trust paths before use in VHL validation or mTLS sessions
* Monitor certificate expiration or revocation status where applicable"/>
<jurisdiction>
<coding>
<system value="http://unstats.un.org/unsd/methods/m49/m49.htm"/>
<code value="001"/>
</coding>
</jurisdiction>
<derivedFrom
value="https://profiles.ihe.net/ITI/VHL/Requirements/EstablishTrust"/>
<actor value="https://profiles.ihe.net/ITI/VHL/ActorDefinition/VHLSharer"/>
<actor
value="https://profiles.ihe.net/ITI/VHL/ActorDefinition/VHLReceiver"/>
<statement>
<key value="cache-received-trust-list"/>
<label value="Cache received Trust list"/>
<requirement
value="Cache the received trust list or certificate material to reduce network and server load"/>
</statement>
<statement>
<key value="validate-digital-signatures"/>
<label value="Validate digital signatures"/>
<requirement value="Validate digital signatures or trust paths"/>
</statement>
<statement>
<key value="monitor-certificate-expiration"/>
<label value="Monitor certificate expiration"/>
<requirement
value="Monitor certificate expiration or revocation status where applicable"/>
</statement>
</Requirements>