Verifiable Health Link
0.0.2-current - ci-build
Verifiable Health Link, published by IHE IT Infrastructure Technical Committee. This guide is not an authorized publication; it is the continuous build for version 0.0.2-current built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/IHE/ITI.VHL/ and changes regularly. See the Directory of published versions
Active as of 2025-06-16 |
{
"resourceType" : "Requirements",
"id" : "RequestPKIMaterial",
"text" : {
"status" : "generated",
"div" : "<div xmlns=\"http://www.w3.org/1999/xhtml\"><p class=\"res-header-id\"><b>Generated Narrative: Requirements RequestPKIMaterial</b></p><a name=\"RequestPKIMaterial\"> </a><a name=\"hcRequestPKIMaterial\"> </a><p>These requirements apply to the following actors: </p><ul><li><a href=\"ActorDefinition-VHLSharer.html\">VHL Sharer</a></li><li><a href=\"ActorDefinition-VHLReceiver.html\">VHL Receiver</a></li></ul><p>These requirements derive from <a href=\"Requirements-EstablishTrust.html\">Establish Trust</a></p><table class=\"grid\"/></div>"
},
"url" : "https://profiles.ihe.net/ITI/VHL/Requirements/RequestPKIMaterial",
"version" : "0.0.2-current",
"name" : "RequestPKIMaterial",
"title" : "Request PKI material",
"status" : "active",
"date" : "2025-06-16T13:14:26+00:00",
"publisher" : "IHE IT Infrastructure Technical Committee",
"contact" : [
{
"telecom" : [
{
"system" : "url",
"value" : "https://www.ihe.net/ihe_domains/it_infrastructure/"
}
]
},
{
"telecom" : [
{
"system" : "email",
"value" : "iti@ihe.net"
}
]
},
{
"name" : "IHE IT Infrastructure Technical Committee",
"telecom" : [
{
"system" : "email",
"value" : "iti@ihe.net"
}
]
}
],
"description" : "A [VHL Sharer](ActorDefinition-VHLSharer.html) or [VHL Receiver](ActorDefinition-VHLReceiver.html), as a participant in the trust network, SHALL be capable of requesting public key infrastructure (PKI) material from a designated [Trust Anchor](ActorDefinition-TrustAnchor.html).\n\nThe retrieved material MAY include:\n* Public key certificates and associated trust lists\n* Certificate revocation data (e.g., CRLs, OCSP responses)\n* Metadata used to:\n - Validate digital signatures on VHLs and related resources\n - Establish mutually authenticated TLS (mTLS) connections\n - Decrypt content protected via asymmetric encryption\n\nParticipants SHOULD cache the received trust list to reduce network and server load.\n\n**Preconditions:**\n* The requesting participant knows in advance the endpoint from which to retrieve PKI material, as published or distributed by the Trust Anchor.",
"jurisdiction" : [
{
"coding" : [
{
"system" : "http://unstats.un.org/unsd/methods/m49/m49.htm",
"code" : "001"
}
]
}
],
"derivedFrom" : [
🔗 "https://profiles.ihe.net/ITI/VHL/Requirements/EstablishTrust"
],
"actor" : [
🔗 "https://profiles.ihe.net/ITI/VHL/ActorDefinition/VHLSharer"🔗 ,
"https://profiles.ihe.net/ITI/VHL/ActorDefinition/VHLReceiver"
]
}