This page is part of the FHIR Specification (v0.0.82: DSTU 1). The current version which supercedes this version is 5.0.0. For a full list of available versions, see the Directory of published versions
The official URL for this profile is:
http://hl7.org/fhir/StructureDefinition/auditevent-ehrs-rle-ehrauditevent
Defines the elements to be supported within the AuditEvent resource in order to conform with the Electronic Health Record System Functional Model Record Lifecycle Event standard
This profile was published on Thu, Dec 4, 2014 00:00+1100 as a draft by Health Level Seven, Inc. - EHR WG.
Description of Profiles, Differentials, Snapshots, and how the XML and JSON presentations work.
This structure is derived from AuditEvent.
unable to summarise extension (wrong count)
This structure is derived from AuditEvent.
Name | Flags | Card. | Type | Description & Constraints |
---|---|---|---|---|
AuditEvent | 1..1 | AuditEvent | ||
event | S | 1..1 | ||
type | S | 1..1 | ||
subtype | S | 0..* | ||
action | S | 0..1 | ||
dateTime | S | 1..1 | ||
auditevent-ehrs-rle-location | S | 0..1 | Location | Where the activity occurred, if relevant |
auditevent-ehrs-rle-reason | S | 0..1 | CodeableConcept | Reason activity is occurring |
auditevent-ehrs-rle-policy | S | 0..1 | uri | Policy or plan th eactivity was defined by |
participant | S | 1..* | ||
role | S | 0..* | ||
reference | S | 0..1 | ||
userId | S | 0..1 | ||
requestor | S | 1..1 | ||
network | S | 0..1 | ||
identifier | S | 0..1 | ||
type | S | 0..1 | ||
source | S | 1..1 | ||
site | S | 0..1 | ||
identifier | S | 1..1 | ||
type | S | 1..1 | ||
object | S | 0..* | ||
identifier | S | 0..1 | ||
reference | S | 0..1 | ||
type | S | 0..1 | ||
role | S | 0..1 | ||
lifecycle | S | 0..1 | ||
sensitivity | S | 0..1 |
Name | Flags | Card. | Type | Description & Constraints |
---|---|---|---|---|
AuditEvent | 1..1 | AuditEvent | Event record kept for security purposes | |
meta | 0..1 | Meta | Metadata about the resource | |
implicitRules | ?! | 0..1 | uri | A set of rules under which this content was created |
language | 0..1 | code | Language of the resource content Binding: Language (required) | |
text | I | 0..1 | Narrative | Text summary of the resource, for human interpretation |
contained | 0..* | Resource | Contained, inline Resources | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
event | S | 1..1 | What was done | |
auditevent-ehrs-rle-location | S | 0..1 | Location | Extension |
auditevent-ehrs-rle-reason | S | 0..1 | CodeableConcept | Extension |
auditevent-ehrs-rle-policy | S | 0..1 | uri | Extension |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
type | S | 1..1 | CodeableConcept | Type/identifier of event Binding: AuditEventType (required) |
subtype | S | 0..* | CodeableConcept | More specific type/id for the event Binding: AuditEventSubType (required) |
action | S | 0..1 | code | Type of action performed during the event Binding: AuditEventAction (required) |
dateTime | S | 1..1 | instant | Time when the event occurred on source |
outcome | 0..1 | code | Whether the event succeeded or failed Binding: AuditEventOutcome (required) | |
outcomeDesc | 0..1 | string | Description of the event outcome | |
participant | S I | 1..* | A person, a hardware device or software process sev-3: Either a userId or a reference, but not both | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
role | S | 0..* | CodeableConcept | User roles (e.g. local RBAC codes) Binding: DICOMRoleId (required) |
reference | S I | 0..1 | Practitioner, Organization, Device, Patient, RelatedPerson | Direct reference to resource |
userId | S I | 0..1 | string | Unique identifier for the user |
altId | 0..1 | string | Alternative User id e.g. authentication | |
name | 0..1 | string | Human-meaningful name for the user | |
requestor | S | 1..1 | boolean | Whether user is initiator |
location | 0..1 | Location | Where | |
policy | 0..* | uri | Policy that authorized event | |
media | 0..1 | Coding | Type of media | |
network | S | 0..1 | Logical network location for application activity | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
identifier | S | 0..1 | string | Identifier for the network access point of the user device |
type | S | 0..1 | code | The type of network access point Binding: AuditEventParticipantNetworkType (required) |
source | S | 1..1 | Application systems and processes | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
site | S | 0..1 | string | Logical source location within the enterprise |
identifier | S | 1..1 | string | The id of source where event originated |
type | S | 1..1 | Coding | The type of source where event originated Binding: AuditEventSourceType (required) |
object | S I | 0..* | Specific instances of data or objects that have been accessed sev-2: Either an identifier or a reference, but not both sev-1: Either a name or a query (or both) | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
identifier | S I | 0..1 | Identifier | Specific instance of object (e.g. versioned) |
reference | S I | 0..1 | Resource | Specific instance of resource (e.g. versioned) |
type | S | 0..1 | code | Object type being audited Binding: AuditEventObjectType (required) |
role | S | 0..1 | code | Functional application role of Object Binding: AuditEventObjectRole (required) |
lifecycle | S | 0..1 | code | Life-cycle stage for the object Binding: AuditEventObjectLifecycle (required) |
sensitivity | S | 0..1 | CodeableConcept | Policy-defined sensitivity for the object Binding: AuditEventObjectSensitivity (example) |
name | I | 0..1 | string | Instance-specific descriptor for Object |
description | 0..1 | string | Descriptive text | |
query | I | 0..1 | base64Binary | Actual query for object |
detail | 0..* | Additional Information about the Object | ||
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
type | 1..1 | string | Name of the property | |
value | 1..1 | base64Binary | Property value |
todo
This structure is derived from AuditEvent.
unable to summarise extension (wrong count)
Differential View
This structure is derived from AuditEvent.
Name | Flags | Card. | Type | Description & Constraints |
---|---|---|---|---|
AuditEvent | 1..1 | AuditEvent | ||
event | S | 1..1 | ||
type | S | 1..1 | ||
subtype | S | 0..* | ||
action | S | 0..1 | ||
dateTime | S | 1..1 | ||
auditevent-ehrs-rle-location | S | 0..1 | Location | Where the activity occurred, if relevant |
auditevent-ehrs-rle-reason | S | 0..1 | CodeableConcept | Reason activity is occurring |
auditevent-ehrs-rle-policy | S | 0..1 | uri | Policy or plan th eactivity was defined by |
participant | S | 1..* | ||
role | S | 0..* | ||
reference | S | 0..1 | ||
userId | S | 0..1 | ||
requestor | S | 1..1 | ||
network | S | 0..1 | ||
identifier | S | 0..1 | ||
type | S | 0..1 | ||
source | S | 1..1 | ||
site | S | 0..1 | ||
identifier | S | 1..1 | ||
type | S | 1..1 | ||
object | S | 0..* | ||
identifier | S | 0..1 | ||
reference | S | 0..1 | ||
type | S | 0..1 | ||
role | S | 0..1 | ||
lifecycle | S | 0..1 | ||
sensitivity | S | 0..1 |
Snapshot View
Name | Flags | Card. | Type | Description & Constraints |
---|---|---|---|---|
AuditEvent | 1..1 | AuditEvent | Event record kept for security purposes | |
meta | 0..1 | Meta | Metadata about the resource | |
implicitRules | ?! | 0..1 | uri | A set of rules under which this content was created |
language | 0..1 | code | Language of the resource content Binding: Language (required) | |
text | I | 0..1 | Narrative | Text summary of the resource, for human interpretation |
contained | 0..* | Resource | Contained, inline Resources | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
event | S | 1..1 | What was done | |
auditevent-ehrs-rle-location | S | 0..1 | Location | Extension |
auditevent-ehrs-rle-reason | S | 0..1 | CodeableConcept | Extension |
auditevent-ehrs-rle-policy | S | 0..1 | uri | Extension |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
type | S | 1..1 | CodeableConcept | Type/identifier of event Binding: AuditEventType (required) |
subtype | S | 0..* | CodeableConcept | More specific type/id for the event Binding: AuditEventSubType (required) |
action | S | 0..1 | code | Type of action performed during the event Binding: AuditEventAction (required) |
dateTime | S | 1..1 | instant | Time when the event occurred on source |
outcome | 0..1 | code | Whether the event succeeded or failed Binding: AuditEventOutcome (required) | |
outcomeDesc | 0..1 | string | Description of the event outcome | |
participant | S I | 1..* | A person, a hardware device or software process sev-3: Either a userId or a reference, but not both | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
role | S | 0..* | CodeableConcept | User roles (e.g. local RBAC codes) Binding: DICOMRoleId (required) |
reference | S I | 0..1 | Practitioner, Organization, Device, Patient, RelatedPerson | Direct reference to resource |
userId | S I | 0..1 | string | Unique identifier for the user |
altId | 0..1 | string | Alternative User id e.g. authentication | |
name | 0..1 | string | Human-meaningful name for the user | |
requestor | S | 1..1 | boolean | Whether user is initiator |
location | 0..1 | Location | Where | |
policy | 0..* | uri | Policy that authorized event | |
media | 0..1 | Coding | Type of media | |
network | S | 0..1 | Logical network location for application activity | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
identifier | S | 0..1 | string | Identifier for the network access point of the user device |
type | S | 0..1 | code | The type of network access point Binding: AuditEventParticipantNetworkType (required) |
source | S | 1..1 | Application systems and processes | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
site | S | 0..1 | string | Logical source location within the enterprise |
identifier | S | 1..1 | string | The id of source where event originated |
type | S | 1..1 | Coding | The type of source where event originated Binding: AuditEventSourceType (required) |
object | S I | 0..* | Specific instances of data or objects that have been accessed sev-2: Either an identifier or a reference, but not both sev-1: Either a name or a query (or both) | |
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
identifier | S I | 0..1 | Identifier | Specific instance of object (e.g. versioned) |
reference | S I | 0..1 | Resource | Specific instance of resource (e.g. versioned) |
type | S | 0..1 | code | Object type being audited Binding: AuditEventObjectType (required) |
role | S | 0..1 | code | Functional application role of Object Binding: AuditEventObjectRole (required) |
lifecycle | S | 0..1 | code | Life-cycle stage for the object Binding: AuditEventObjectLifecycle (required) |
sensitivity | S | 0..1 | CodeableConcept | Policy-defined sensitivity for the object Binding: AuditEventObjectSensitivity (example) |
name | I | 0..1 | string | Instance-specific descriptor for Object |
description | 0..1 | string | Descriptive text | |
query | I | 0..1 | base64Binary | Actual query for object |
detail | 0..* | Additional Information about the Object | ||
extension | 0..* | Extension | Additional Content defined by implementations | |
modifierExtension | 0..* | Extension | Extensions that cannot be ignored | |
type | 1..1 | string | Name of the property | |
value | 1..1 | base64Binary | Property value |
XML Template
JSON Template
todo
Other representations of profile: (todo)
Path | Name | Conformance | ValueSet |
AuditEvent.language | Language | required | http://tools.ietf.org/html/bcp47 |
AuditEvent.event.type | AuditEventType | required | Audit Event ID |
AuditEvent.event.subtype | AuditEventSubType | required | Audit Event Sub-Type |
AuditEvent.event.action | AuditEventAction | required | AuditEventAction |
AuditEvent.event.outcome | AuditEventOutcome | required | AuditEventOutcome |
AuditEvent.participant.role | DICOMRoleId | required | Audit Active Participant Role ID Code |
AuditEvent.participant.network.type | AuditEventParticipantNetworkType | required | AuditEventParticipantNetworkType |
AuditEvent.source.type | AuditEventSourceType | required | Audit Event Source Type |
AuditEvent.object.type | AuditEventObjectType | required | AuditEventObjectType |
AuditEvent.object.role | AuditEventObjectRole | required | AuditEventObjectRole |
AuditEvent.object.lifecycle | AuditEventObjectLifecycle | required | AuditEventObjectLifecycle |
AuditEvent.object.sensitivity | AuditEventObjectSensitivity | example | Audit Event Object Sensitivity |
Id | Path | Name | Details |
sev-3 | AuditEvent.participant | Participant Identification | Either a userId or a reference, but not both XPath: exists(f:userId) != exists(f:reference) |
sev-2 | AuditEvent.object | Object Identification | Either an identifier or a reference, but not both XPath: exists(f:identifier) != exists(f:reference) |
sev-1 | AuditEvent.object | Object Name | Either a name or a query (or both) XPath: not(exists(f:name)) or not(exists(f:query)) |