TI.2.1.2.7 User Attempts to Access Data (Unsuccessful – Access Denied) Security Audit Trigger (Function) - ISO/HL7 10781 - Electronic Health Record System Functional Model, Release 2.1 v0.16.0

EHRS-FM IG

ISO/HL7 10781 - Electronic Health Record System Functional Model, Release 2.1
0.16.0 - CI Build

Publish Box goes here

Requirements: TI.2.1.2.7 User Attempts to Access Data (Unsuccessful – Access Denied) Security Audit Trigger (Function)

Active as of 2024-08-12

Statement N:

Manage Audit Trigger initiated to track user attempts to access data (unsuccessful – access denied).

Description I:

Capture user attempts to access data (unsuccessful – access denied), both routine and exceptional, including key metadata (who, what, when, where, why).

Criteria N:

TI.2.1.2.7#01

SHALL

The system SHALL audit each occurrence when user access is unsuccessful (denied).

TI.2.1.2.7#02

SHALL

The system SHALL capture identity of the organization.

TI.2.1.2.7#03

conditional SHALL

IF known, THEN the system SHALL capture identity of the user.

TI.2.1.2.7#04

SHALL

The system SHALL capture identity of the system.

TI.2.1.2.7#05

SHALL

The system SHALL capture the event initiating audit trigger.

TI.2.1.2.7#06

SHALL

The system SHALL capture the date and time of the event initiating audit trigger.

TI.2.1.2.7#07

SHALL

The system SHALL capture identity of the location (i.e., network address).

IG © 2023 EHR WG. Package hl7.ehrsfmr21.base#0.16.0 based on FHIR 5.0.0. Generated 2024-08-12
Links: Table of Contents | QA Report