Publish Box goes here
Active as of 2024-11-26 |
@prefix fhir: <http://hl7.org/fhir/> .
@prefix owl: <http://www.w3.org/2002/07/owl#> .
@prefix rdfs: <http://www.w3.org/2000/01/rdf-schema#> .
@prefix xsd: <http://www.w3.org/2001/XMLSchema#> .
# - resource -------------------------------------------------------------------
a fhir:Requirements ;
fhir:nodeRole fhir:treeRoot ;
fhir:id [ fhir:v "EHRSFMR2.1-TI.2.1.2"] ; #
fhir:meta [
( fhir:profile [
fhir:v "http://hl7.org/ehrs/StructureDefinition/FMFunction"^^xsd:anyURI ;
fhir:link <http://hl7.org/ehrs/StructureDefinition/FMFunction> ] )
] ; #
fhir:text [
fhir:status [ fhir:v "extensions" ] ;
fhir:div "<div xmlns=\"http://www.w3.org/1999/xhtml\">\n <span id=\"description\"><b>Statement <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Normative Content\" class=\"normative-flag\">N</a>:</b> <div><p>Manage Security Audit Triggers</p>\n</div></span>\n\n \n <span id=\"purpose\"><b>Description <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Informative Content\" class=\"informative-flag\">I</a>:</b> <div><p>Security Audit Triggers are designed to capture security related events, both routine and exceptional, including key metadata (who, what, when, where, why).</p>\n</div></span>\n \n\n \n\n \n <span id=\"requirements\"><b>Criteria <a href=\"https://hl7.org/fhir/versions.html#std-process\" title=\"Normative Content\" class=\"normative-flag\">N</a>:</b></span>\n \n <table id=\"statements\" class=\"grid dict\">\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#01</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n \n \n <span>SHALL</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system SHALL provide the ability to enter the reason that access control functions are being overridden.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#02</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n <i>dependent</i>\n \n \n \n <span>SHALL</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system SHALL audit key events according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#03</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n <i>dependent</i>\n \n \n \n <span>SHALL</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system SHALL capture key Audit Metadata at each Audit Trigger according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#04</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n <i>dependent</i>\n \n \n \n <span>SHALL</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system SHALL capture an Audit Log Entry at each Audit Trigger according to scope of practice, organizational policy, and/or jurisdictional law.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#05</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n \n \n <span>SHALL</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system SHALL provide the ability to log system maintenance events for entry to, and exit from, the EHR system.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n <tr>\n <td style=\"padding-left: 4px;\">\n \n <span>TI.2.1.2#06</span>\n \n </td>\n <td style=\"padding-left: 4px;\">\n \n \n \n <span>MAY</span>\n \n </td>\n <td style=\"padding-left: 4px;\" class=\"requirement\">\n \n <span><div><p>The system MAY capture an Audit Log Entry at each Audit Trigger using a common audit engine, e.g., standards-based software.</p>\n</div></span>\n \n \n </td>\n </tr>\n \n </table>\n</div>"
] ; #
fhir:url [ fhir:v "http://hl7.org/ehrs/Requirements/EHRSFMR2.1-TI.2.1.2"^^xsd:anyURI] ; #
fhir:version [ fhir:v "2.1.0"] ; #
fhir:name [ fhir:v "TI_2_1_2_Security_Audit_Triggers"] ; #
fhir:title [ fhir:v "TI.2.1.2 Security Audit Triggers (Function)"] ; #
fhir:status [ fhir:v "active"] ; #
fhir:date [ fhir:v "2024-11-26T16:30:50+00:00"^^xsd:dateTime] ; #
fhir:publisher [ fhir:v "EHR WG"] ; #
fhir:contact ( [
( fhir:telecom [
fhir:system [ fhir:v "url" ] ;
fhir:value [ fhir:v "http://www.hl7.org/Special/committees/ehr" ] ] )
] ) ; #
fhir:description [ fhir:v "Manage Security Audit Triggers"] ; #
fhir:jurisdiction ( [
( fhir:coding [
fhir:system [ fhir:v "http://unstats.un.org/unsd/methods/m49/m49.htm"^^xsd:anyURI ] ;
fhir:code [ fhir:v "001" ] ;
fhir:display [ fhir:v "World" ] ] )
] ) ; #
fhir:purpose [ fhir:v "Security Audit Triggers are designed to capture security related events, both routine and exceptional, including key metadata (who, what, when, where, why)."] ; #
fhir:statement ( [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "false"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-01" ] ;
fhir:label [ fhir:v "TI.2.1.2#01" ] ;
( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system SHALL provide the ability to enter the reason that access control functions are being overridden." ]
] [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "true"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-02" ] ;
fhir:label [ fhir:v "TI.2.1.2#02" ] ;
( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system SHALL audit key events according to scope of practice, organizational policy, and/or jurisdictional law." ]
] [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "true"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-03" ] ;
fhir:label [ fhir:v "TI.2.1.2#03" ] ;
( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system SHALL capture key Audit Metadata at each Audit Trigger according to scope of practice, organizational policy, and/or jurisdictional law." ] ;
fhir:derivedFrom [ fhir:v "EHR-S_FM_R1.1 IN.2.2#1" ]
] [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "true"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-04" ] ;
fhir:label [ fhir:v "TI.2.1.2#04" ] ;
( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system SHALL capture an Audit Log Entry at each Audit Trigger according to scope of practice, organizational policy, and/or jurisdictional law." ] ;
fhir:derivedFrom [ fhir:v "EHR-S_FM_R1.1 IN.2.2#12" ]
] [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "false"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-05" ] ;
fhir:label [ fhir:v "TI.2.1.2#05" ] ;
( fhir:conformance [ fhir:v "SHALL" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system SHALL provide the ability to log system maintenance events for entry to, and exit from, the EHR system." ] ;
fhir:derivedFrom [ fhir:v "EHR-S_FM_R1.1 IN.2.2#22" ]
] [
( fhir:extension [
fhir:url [ fhir:v "http://hl7.org/ehrs/StructureDefinition/requirements-dependent"^^xsd:anyURI ] ;
fhir:value [ fhir:v "false"^^xsd:boolean ] ] ) ;
fhir:key [ fhir:v "EHRSFMR2.1-TI.2.1.2-06" ] ;
fhir:label [ fhir:v "TI.2.1.2#06" ] ;
( fhir:conformance [ fhir:v "MAY" ] ) ;
fhir:conditionality [ fhir:v "false"^^xsd:boolean ] ;
fhir:requirement [ fhir:v "The system MAY capture an Audit Log Entry at each Audit Trigger using a common audit engine, e.g., standards-based software." ] ;
fhir:derivedFrom [ fhir:v "EHR-S_FM_R1.1 IN.2.2#23" ]
] ) . #
IG © 2024 EHR WG. Package hl7.ehrs.ehrsfmr21#2.1.0 based on FHIR 5.0.0. Generated 2024-11-26
Links: Table of Contents |
QA Report