WHO SMART Trust
1.1.6 - CI Build
WHO SMART Trust
1.1.6 - CI Build
WHO SMART Trust, published by WHO. This guide is not an authorized publication; it is the continuous build for version 1.1.6 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/WorldHealthOrganization/smart-trust/ and changes regularly. See the Directory of published versions
Contents:
This page provides a list of the FHIR artifacts defined as part of this implementation guide.
The following artifacts define the types of individuals and/or systems that will interact as part of the use cases covered by this implementation guide.
| Holder |
A Holder is an individual that has Verifiable Digtial Health Certificate in their possesion, received from an Issuer. The Holder may choose to share the Verifiable Digital Health Certificate with a Receiver. |
| Issuer |
An Issuer a system authorized by a Trust Network Participant to generate Verifiable Digital Health Certificates which are provided to a Holder. An Issuer is responsible for generating the content that is digitally signed within the Verifiable Digital Health Certificate. In order to sign this content, an Issuer should either itself be a Document Signer or utilize a Document Signer service, as authorized by the jurisdicitonal policy. |
| Receiver |
A Reciever is a system authorized by a Trust Network Participant to receive from a Holder a Veritifable, verify and utilize the content within. |
| Trust Network Anchor |
Trust Anchor which receives and distributes PKI-material within a Trust Network |
| Trust Network Participant |
Trust Network Participant which publishes and or receives PKI-material within a Trust Network |
The following artifacts describe the specific requirements to be met by systems compliant with the implementation guide.
| Distribute CertLogic business rules |
Make received CertLoigc business rules available through a distrubution point to a Receiver |
| Distribute FHIR business rules |
Make received business rules available through a distrubution point to a Receiver through HL7 FHIR standards |
| Distribute PKI material |
Make received trust material available through a distrubution point to a Trust Network Participant |
| Distribute PKI material as DID |
Make received trust material available through a distrubution point to a Trust Network Participant as DID |
| Distribute PKI material via API |
Make received trust material available through a distrubution point to a Trust Network Participant via API |
| Distribute business rules |
Make received business rules available through a distrubution point to a Receiver |
| Issue Verifiable Digital Health Certificate |
Issue a Verifiable Digital Health Certificate to a Holder |
| Provide Verifiable Digital Health Certificate |
Provide a Verifiable Digital Health Certificate to a Receiver |
| Publish Cert Logic business rules |
Publish Cert Logic business rules to a Trust Anchor |
| Publish HL7 FHIR business rules |
Publish business rules to a Trust Anchor using HL7 FHIR |
| Publish PKI material |
Publish trust material to a Trust Anchor |
| Publish PKI material as DID |
Publish trust material to a Trust Anchor as DID |
| Publish PKI material via API |
Publish trust material to a Trust Anchor via API |
| Publish business rules |
Publish business rules to a Trust Anchor |
| Receive CertLogic business rules |
Receive CertLogic business rules from a Trust Network Participant, for distribution within the Trust Network |
| Receive HL7 FHIR business rules |
Receive business rules from a Trust Network Participant, for distribution within the Trust Network using HL7 FHIR standard |
| Receive PKI material |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network |
| Receive PKI material as DID |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network as DID |
| Receive PKI material via API |
Receive trust material from a Trust Network Participant, for distribution within the Trust Network via API |
| Receive Verifiable Digital Health Certificate |
Receive a Verifiable Digital Health Certificate from an Issuer |
| Receive business rules |
Receive business rules from a Trust Network Participant, for distribution within the Trust Network |
| Request Verifiable Digital Health Certificate |
Request a Verifiable Digital Health Certificate from an Issuer |
| Retrieve Cert Logic compatible business rules |
Retrieve Cert Logic business rules from a distribution point |
| Retrieve HL7 FHIR compatible business rules |
Retrieve business rules from a distribution point using HL7 FHIR standards |
| Retrieve PKI material |
Retrieve PKI material from a distribution point |
| Retrieve PKI material as DID |
Retrieve PKI material from a distribution point as DID |
| Retrieve PKI material via API |
Retrieve PKI material from a distribution point via API |
| Retrieve business rules |
Retrieve business rules from a distribution point using |
| Utilize a Verifiable Digital Health Certificate |
Utilize a Verifiable Digital Health Certificate that was provided by a Holder |
These define data models that represent the domain covered by this implementation guide in more business-friendly terms than the underlying FHIR resources.
| CBOR Web Token (CWT) Claim |
Logical Model for Data elements in CBOR Web Token (CWT) https://www.iana.org/assignments/cwt/cwt.xhtml |
| CBOR Web Token (CWT) Payload (Common) |
Logical Model for CBOR Web Token (CWT) Payload Logical Modelin CWT Payload https://www.iana.org/assignments/cwt/cwt.xhtml |
| COSE Headers (DRAFT) |
Data elements for COSE Headers https://www.iana.org/assignments/cose/cose.xhtml#header-parameters |
| Health Certificate |
Logical Model for the HCERT |
| Scheme Information |
Logical Model for Information on the trusted list and its issuing scheme |
These define sets of codes used by systems conforming to this implementation guide.
| WHO GDHCN Key Usage ValueSet |
ValueSet of codes for key usage codes |
| WHO GDHCN Actor ValueSet of actor codes |
ValueSet of codes for actor codes |
| WHO GDHCN Connection Types |
ValueSet of GDHCN Trust Network Connection Types |
| WHO GDHCN Payload Types |
ValueSet of GDHCN Trust Network Payload Types |
| WHO GDHCN Transaction Codes |
ValueSet of WHO GDHCN Transaction Codes |
| WHO GDHCN Trust Domains |
ValueSet of WHO GDHCN Trust Domains |
| WHO GDHCN Trust Network Participant |
ValueSet of GDHCN Trust Network Participants |
These define new code systems used by systems conforming to this implementation guide.
| WHO GDHCN Connection Types |
CodeSystem for GDHCN connection types |
| WHO GDHCN Key Usage CodeSystem |
CodeSystem for GDHCN Key Usage that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Payload Types |
CodeSystem for GDHCN Payload types |
| WHO GDHCN Transactions CodeSystem |
CodeSystem for GDHCN transactions that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Trust Actors CodeSystem |
CodeSystem for SMART Trust actors that has usage codes for verification keys published to the Trust Network as defined by the certificate governance |
| WHO GDHCN Trust Domains |
CodeSystem for define WHO GDHCN Trust Domains. |
| WHO GDHCN Trust Network Participants CodeSystem |
CodeSystem for GDHCN Trust Network Participants which are not already included in the ISO-3166 three letter code system |
| WHO RefMart Jurisidiction List |
CodeSystem for WHO Refmart Country and Jurisidiction List available at https://xmart-api-public.who.int/REFMART/REF_COUNTRY |
These are resources that are used within this implementation guide that do not fit into one of the other categories.
| GDHCNParticipant-ALB | |
| GDHCNParticipant-AND | |
| GDHCNParticipant-ARM | |
| GDHCNParticipant-BEL | |
| GDHCNParticipant-BEN | |
| GDHCNParticipant-BRA | |
| GDHCNParticipant-CYP | |
| GDHCNParticipant-CZE | |
| GDHCNParticipant-ESP | |
| GDHCNParticipant-EST | |
| GDHCNParticipant-FIN | |
| GDHCNParticipant-FRA | |
| GDHCNParticipant-FRO | |
| GDHCNParticipant-IDN | |
| GDHCNParticipant-IRL | |
| GDHCNParticipant-ISL | |
| GDHCNParticipant-LTU | |
| GDHCNParticipant-LVA | |
| GDHCNParticipant-MCO | |
| GDHCNParticipant-MLT | |
| GDHCNParticipant-MYS | |
| GDHCNParticipant-NLD | |
| GDHCNParticipant-NZL | |
| GDHCNParticipant-OMN | |
| GDHCNParticipant-POL | |
| GDHCNParticipant-PRT | |
| GDHCNParticipant-SGP | |
| GDHCNParticipant-SMR | |
| GDHCNParticipant-SVK | |
| GDHCNParticipant-SVN | |
| GDHCNParticipant-SWE | |
| GDHCNParticipant-TGO | |
| GDHCNParticipant-THA | |
| GDHCNParticipant-TUR | |
| GDHCNParticipant-UKR | |
| GDHCNParticipant-WHO | |
| GDHCNParticipantDID-ALB-All |
Albania Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:ALB resolvable at http://tng-cdn.who.int/v2/trustlist/-/ALB/did.json |
| GDHCNParticipantDID-ALB-DSC | |
| GDHCNParticipantDID-ALB-SCA | |
| GDHCNParticipantDID-AND-All |
Andorra Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:AND resolvable at http://tng-cdn.who.int/v2/trustlist/-/AND/did.json |
| GDHCNParticipantDID-AND-DSC | |
| GDHCNParticipantDID-AND-SCA | |
| GDHCNParticipantDID-ARM-All |
Armenia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:ARM resolvable at http://tng-cdn.who.int/v2/trustlist/-/ARM/did.json |
| GDHCNParticipantDID-ARM-DSC | |
| GDHCNParticipantDID-ARM-SCA | |
| GDHCNParticipantDID-BEL-All |
Belgium Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:BEL resolvable at http://tng-cdn.who.int/v2/trustlist/-/BEL/did.json |
| GDHCNParticipantDID-BEL-DSC | |
| GDHCNParticipantDID-BEL-SCA | |
| GDHCNParticipantDID-BEN-All |
Benin Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:BEN resolvable at http://tng-cdn.who.int/v2/trustlist/-/BEN/did.json |
| GDHCNParticipantDID-BEN-DSC | |
| GDHCNParticipantDID-BEN-SCA | |
| GDHCNParticipantDID-BRA-All |
Brazil Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:BRA resolvable at http://tng-cdn.who.int/v2/trustlist/-/BRA/did.json |
| GDHCNParticipantDID-BRA-DSC | |
| GDHCNParticipantDID-BRA-SCA | |
| GDHCNParticipantDID-CYP-All |
Cyprus Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:CYP resolvable at http://tng-cdn.who.int/v2/trustlist/-/CYP/did.json |
| GDHCNParticipantDID-CYP-DSC | |
| GDHCNParticipantDID-CYP-SCA | |
| GDHCNParticipantDID-CZE-All |
Czechia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:CZE resolvable at http://tng-cdn.who.int/v2/trustlist/-/CZE/did.json |
| GDHCNParticipantDID-CZE-DSC | |
| GDHCNParticipantDID-CZE-SCA | |
| GDHCNParticipantDID-ESP-All |
Spain Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:ESP resolvable at http://tng-cdn.who.int/v2/trustlist/-/ESP/did.json |
| GDHCNParticipantDID-ESP-DSC | |
| GDHCNParticipantDID-ESP-SCA | |
| GDHCNParticipantDID-EST-All |
Estonia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:EST resolvable at http://tng-cdn.who.int/v2/trustlist/-/EST/did.json |
| GDHCNParticipantDID-EST-DSC | |
| GDHCNParticipantDID-EST-SCA | |
| GDHCNParticipantDID-FIN-All |
Finland Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:FIN resolvable at http://tng-cdn.who.int/v2/trustlist/-/FIN/did.json |
| GDHCNParticipantDID-FIN-DSC | |
| GDHCNParticipantDID-FIN-SCA | |
| GDHCNParticipantDID-FRA-All |
France Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:FRA resolvable at http://tng-cdn.who.int/v2/trustlist/-/FRA/did.json |
| GDHCNParticipantDID-FRA-DSC | |
| GDHCNParticipantDID-FRA-SCA | |
| GDHCNParticipantDID-FRO-All |
Faroe Islands Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:FRO resolvable at http://tng-cdn.who.int/v2/trustlist/-/FRO/did.json |
| GDHCNParticipantDID-FRO-DSC | |
| GDHCNParticipantDID-FRO-SCA | |
| GDHCNParticipantDID-IDN-All |
Indonesia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:IDN resolvable at http://tng-cdn.who.int/v2/trustlist/-/IDN/did.json |
| GDHCNParticipantDID-IDN-DSC | |
| GDHCNParticipantDID-IDN-SCA | |
| GDHCNParticipantDID-IRL-All |
Ireland Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:IRL resolvable at http://tng-cdn.who.int/v2/trustlist/-/IRL/did.json |
| GDHCNParticipantDID-IRL-DSC | |
| GDHCNParticipantDID-IRL-SCA | |
| GDHCNParticipantDID-ISL-All |
Iceland Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:ISL resolvable at http://tng-cdn.who.int/v2/trustlist/-/ISL/did.json |
| GDHCNParticipantDID-ISL-DSC | |
| GDHCNParticipantDID-ISL-SCA | |
| GDHCNParticipantDID-LTU-All |
Lithuania Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:LTU resolvable at http://tng-cdn.who.int/v2/trustlist/-/LTU/did.json |
| GDHCNParticipantDID-LTU-DSC | |
| GDHCNParticipantDID-LTU-SCA | |
| GDHCNParticipantDID-LVA-All |
Latvia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:LVA resolvable at http://tng-cdn.who.int/v2/trustlist/-/LVA/did.json |
| GDHCNParticipantDID-LVA-DSC | |
| GDHCNParticipantDID-LVA-SCA | |
| GDHCNParticipantDID-MCO-All |
Monaco Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:MCO resolvable at http://tng-cdn.who.int/v2/trustlist/-/MCO/did.json |
| GDHCNParticipantDID-MCO-DSC | |
| GDHCNParticipantDID-MCO-SCA | |
| GDHCNParticipantDID-MLT-All |
Malta Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:MLT resolvable at http://tng-cdn.who.int/v2/trustlist/-/MLT/did.json |
| GDHCNParticipantDID-MLT-DSC | |
| GDHCNParticipantDID-MLT-SCA | |
| GDHCNParticipantDID-MYS-All |
Malaysia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:MYS resolvable at http://tng-cdn.who.int/v2/trustlist/-/MYS/did.json |
| GDHCNParticipantDID-MYS-DSC | |
| GDHCNParticipantDID-MYS-SCA | |
| GDHCNParticipantDID-NLD-All |
Netherlands (Kingdom of the) Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:NLD resolvable at http://tng-cdn.who.int/v2/trustlist/-/NLD/did.json |
| GDHCNParticipantDID-NLD-DSC | |
| GDHCNParticipantDID-NLD-SCA | |
| GDHCNParticipantDID-NZL-All |
New Zealand Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:NZL resolvable at http://tng-cdn.who.int/v2/trustlist/-/NZL/did.json |
| GDHCNParticipantDID-NZL-DSC | |
| GDHCNParticipantDID-NZL-SCA | |
| GDHCNParticipantDID-OMN-All |
Oman Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:OMN resolvable at http://tng-cdn.who.int/v2/trustlist/-/OMN/did.json |
| GDHCNParticipantDID-OMN-DSC | |
| GDHCNParticipantDID-OMN-SCA | |
| GDHCNParticipantDID-POL-All |
Poland Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:POL resolvable at http://tng-cdn.who.int/v2/trustlist/-/POL/did.json |
| GDHCNParticipantDID-POL-DSC | |
| GDHCNParticipantDID-POL-SCA | |
| GDHCNParticipantDID-PRT-All |
Portugal Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:PRT resolvable at http://tng-cdn.who.int/v2/trustlist/-/PRT/did.json |
| GDHCNParticipantDID-PRT-DSC | |
| GDHCNParticipantDID-PRT-SCA | |
| GDHCNParticipantDID-SGP-All |
Singapore Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:SGP resolvable at http://tng-cdn.who.int/v2/trustlist/-/SGP/did.json |
| GDHCNParticipantDID-SGP-DSC | |
| GDHCNParticipantDID-SGP-SCA | |
| GDHCNParticipantDID-SMR-All |
San Marino Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:SMR resolvable at http://tng-cdn.who.int/v2/trustlist/-/SMR/did.json |
| GDHCNParticipantDID-SMR-DSC | |
| GDHCNParticipantDID-SMR-SCA | |
| GDHCNParticipantDID-SVK-All |
Slovakia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:SVK resolvable at http://tng-cdn.who.int/v2/trustlist/-/SVK/did.json |
| GDHCNParticipantDID-SVK-DSC | |
| GDHCNParticipantDID-SVK-SCA | |
| GDHCNParticipantDID-SVN-All |
Slovenia Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:SVN resolvable at http://tng-cdn.who.int/v2/trustlist/-/SVN/did.json |
| GDHCNParticipantDID-SVN-DSC | |
| GDHCNParticipantDID-SVN-SCA | |
| GDHCNParticipantDID-SWE-All |
Sweden Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:SWE resolvable at http://tng-cdn.who.int/v2/trustlist/-/SWE/did.json |
| GDHCNParticipantDID-SWE-DSC | |
| GDHCNParticipantDID-SWE-SCA | |
| GDHCNParticipantDID-TGO-All |
Togo Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:TGO resolvable at http://tng-cdn.who.int/v2/trustlist/-/TGO/did.json |
| GDHCNParticipantDID-TGO-DSC | |
| GDHCNParticipantDID-TGO-SCA | |
| GDHCNParticipantDID-THA-All |
Thailand Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:THA resolvable at http://tng-cdn.who.int/v2/trustlist/-/THA/did.json |
| GDHCNParticipantDID-THA-DSC | |
| GDHCNParticipantDID-THA-SCA | |
| GDHCNParticipantDID-TUR-All |
T�rkiye Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:TUR resolvable at http://tng-cdn.who.int/v2/trustlist/-/TUR/did.json |
| GDHCNParticipantDID-TUR-DSC | |
| GDHCNParticipantDID-TUR-SCA | |
| GDHCNParticipantDID-UKR-All |
Ukraine Trustlist (DID v2) - All keys did:web:tng-cdn.who.int:v2:trustlist:-:UKR resolvable at http://tng-cdn.who.int/v2/trustlist/-/UKR/did.json |
| GDHCNParticipantDID-UKR-DSC | |
| GDHCNParticipantDID-UKR-SCA | |
| GDHCNParticipantDID-WHO | |
| GDHCNParticipantDID-WHO-DEV | |
| GDHCNParticipantDID-WHO-UAT |