| Package | ihe.iti.vhl |
| Resource Type | Basic |
| Id | DistributePKIMaterial |
| FHIR Version | R4 |
| Source | https://profiles.ihe.net/ITI/VHL/https://build.fhir.org/ig/IHE/ITI.VHL/Requirements-DistributePKIMaterial.html |
| URL | https://profiles.ihe.net/ITI/VHL/Requirements/DistributePKIMaterial |
| Version | 0.0.2-current |
| Status | active |
| Date | 2025-06-16T13:14:26+00:00 |
| Name | DistributePKIMaterial |
| Title | Distribute PKI Material |
| Realm | uv |
| Authority | ihe |
No resources found
No resources found
Note: links and images are rebased to the (stated) source
Generated Narrative: Requirements DistributePKIMaterial
These requirements apply to the actor Trust Anchor
These requirements derive from Establish Trust
FHIR{
"resourceType": "Basic",
"id": "DistributePKIMaterial",
"text": {
"status": "generated",
"div": "<!-- snip (see above) -->"
},
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.url",
"valueUri": "https://profiles.ihe.net/ITI/VHL/Requirements/DistributePKIMaterial"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.version",
"valueString": "0.0.2-current"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.name",
"valueString": "DistributePKIMaterial"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.title",
"valueString": "Distribute PKI Material"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.status",
"valueCode": "active"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.date",
"valueDateTime": "2025-06-16T13:14:26+00:00"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.publisher",
"valueString": "IHE IT Infrastructure Technical Committee"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.contact",
"valueContactDetail": {
"telecom": [
{
"system": "url",
"value": "https://www.ihe.net/ihe_domains/it_infrastructure/"
}
]
}
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.contact",
"valueContactDetail": {
"telecom": [
{
"system": "email",
"value": "iti@ihe.net"
}
]
}
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.contact",
"valueContactDetail": {
"name": "IHE IT Infrastructure Technical Committee",
"telecom": [
{
"system": "email",
"value": "iti@ihe.net"
}
]
}
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.description",
"valueMarkdown": "Upon receipt of public key material from a [VHL Sharer](ActorDefinition-VHLSharer.html) or [VHL Receiver](ActorDefinition-VHLReceiver.html), the [Trust Anchor](ActorDefinition-TrustAnchor.html) SHALL validate, organize, sign, and expose the PKI material as part of a trusted, canonical trust list.\n\nThis signed trust list enables all participants in the VHL trust network to verify digital signatures and establish secure connections in accordance with the governance policies of the Trust Anchor."
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.jurisdiction",
"valueCodeableConcept": {
"coding": [
{
"system": "http://unstats.un.org/unsd/methods/m49/m49.htm",
"code": "001"
}
]
}
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.derivedFrom",
"valueCanonical": "https://profiles.ihe.net/ITI/VHL/Requirements/EstablishTrust"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.actor",
"valueCanonical": "https://profiles.ihe.net/ITI/VHL/ActorDefinition/TrustAnchor"
},
{
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key",
"valueId": "receive-pki-distribution-request"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label",
"valueString": "Receive PKI Distribution Request"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement",
"valueMarkdown": "Receive a PKI material submission from a VHL Sharer or VHL Receiver."
}
],
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"
},
{
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key",
"valueId": "validate-pki-material"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label",
"valueString": "Validate PKI Material"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement",
"valueMarkdown": "Validate submitted PKI material in accordance with the certificate governance policies of the Trust Anchor. Validation SHALL include checks on cryptographic algorithm conformity, expiration dates, and valid certificate chains to a trusted authority."
}
],
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"
},
{
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key",
"valueId": "assemble-trust-list"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label",
"valueString": "Assemble Trust List"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement",
"valueMarkdown": "Organize validated PKI material into a structured trust list. The Trust Anchor SHOULD support categorization by submitting participant, key usage type (e.g., signing, encryption, mTLS), and operational context."
}
],
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"
},
{
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key",
"valueId": "sign-trust-list"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label",
"valueString": "Sign Trust List"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement",
"valueMarkdown": "Digitally sign the assembled trust list using the Trust Anchor's private key, ensuring the integrity and authenticity of the distributed material."
}
],
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"
},
{
"extension": [
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.key",
"valueId": "make-keys-available-at-distribution-endpoint"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.label",
"valueString": "Expose Trust List Distribution Endpoint"
},
{
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement.requirement",
"valueMarkdown": "Make the signed trust list available via one or more distribution endpoints accessible to authorized trust network participants."
}
],
"url": "http://hl7.org/fhir/5.0/StructureDefinition/extension-Requirements.statement"
}
],
"code": {
"coding": [
{
"system": "http://hl7.org/fhir/fhir-types",
"code": "Requirements"
}
]
}
}