TrustServiceProvider

(Requirements Definition Capability Statement)

Canonical URL: http://hl7.org/fhir/us/medmorph/CapabilityStatement/medmorph-trust-service-provider

Published by: HL7 International - Public Health Work Group

This CapabilityStatement defines the expected capabilities of the Trust Service Provider actor when conforming to the MedMorph RA IG. This actor is responsible for providing trust services. (e.g., Pseudonymization, Anonymization, De-identification, Re-identification).

General

REST behavior

The primary focus of the Trust Service Provider is to provide trust services which include Pseudonymization, Anonymization, De-identification and Re-identification. For additional reading material on trust services, refer to [Trust Service Requirements](trustservices.html).

Security:

Implementations must meet the general security requirements documented in FHIR Security guidance.

In addition the Trust Service Provider needs to meet the security requirements as outlined in the Formal Specification - Security Section.

FHIR Operations summary

The following FHIR operations SHALL be supported by the Trust Service Provider.

• Bundle pseudonymize
• Bundle anonymize
• Bundle de-identify
• Bundle re-identify
• Bundle hash