FHIR © HL7.org  |  Server Home  |  XIG Home  |  Server Source  |  FHIR  

FHIR IG Statistics: Requirements/EHRSFMR2-TI.2.1.2.9

Packagehl7.ehrs.uv.ehrsfmr2
TypeRequirements
IdEHRSFMR2-TI.2.1.2.9
FHIR VersionR5
Sourcehttp://hl7.org/ehrs/uv/ehrsfmr2/https://build.fhir.org/ig/mvdzel/ehrsfm-fhir-r5/Requirements-EHRSFMR2-TI.2.1.2.9.html
URLhttp://hl7.org/ehrs/uv/ehrsfmr2/Requirements/EHRSFMR2-TI.2.1.2.9
Version2.1.1-ballot
Statusactive
Date2025-05-13T15:11:00+00:00
NameTI_2_1_2_9_User_Permissions__Authorization__Security_Audit_Trigger
TitleTI.2.1.2.9 User Permissions (Authorization) Security Audit Trigger (Function)
Realmuv
Authorityhl7
DescriptionManage Audit Trigger initiated to track user permissions (authorization).
PurposeCapture user permissions (authorization), both routine and exceptional, including key metadata (who, what, when, where, why).

Resources that use this resource

No resources found

Resources that this resource uses

No resources found

Narrative

Note: links and images are rebased to the (stated) source

Statement N:

Manage Audit Trigger initiated to track user permissions (authorization).

 Description I:

Capture user permissions (authorization), both routine and exceptional, including key metadata (who, what, when, where, why).

 Actors:
ehr Criteria N:
TI.2.1.2.9#01 SHALL

The system SHALL audit each occurrence when user permissions (authorizations) are granted, removed or updated.
TI.2.1.2.9#02 SHALL

The system SHALL capture identity of the organization.
TI.2.1.2.9#03 conditional SHALL

IF known, THEN the system SHALL capture identity of the user.
TI.2.1.2.9#04 SHALL

The system SHALL capture identity of the system.
TI.2.1.2.9#05 SHALL

The system SHALL capture the event initiating audit trigger.
TI.2.1.2.9#06 SHALL

The system SHALL capture the date and time of the event initiating audit trigger.
TI.2.1.2.9#07 SHALL

The system SHALL capture identity of the location (i.e., network address).
TI.2.1.2.9#08 SHOULD

The system SHOULD capture the rationale for granting, removing or updating user permissions.
TI.2.1.2.9#09 SHALL

The system SHALL capture identity of user to whom permissions apply.
TI.2.1.2.9#10 SHALL

The system SHALL capture the new set of applicable user permissions (authorizations).

Source

{
  "resourceType": "Requirements",
  "id": "EHRSFMR2-TI.2.1.2.9",
  "meta": {
    "profile": [
      "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/FMFunction"
    ]
  },
  "text": {
    "status": "extensions",
    "div": "<!-- snip (see above) -->"
  },
  "extension": [
    {
      "url": "http://hl7.org/fhir/StructureDefinition/structuredefinition-wg",
      "valueCode": "ehr"
    }
  ],
  "url": "http://hl7.org/ehrs/uv/ehrsfmr2/Requirements/EHRSFMR2-TI.2.1.2.9",
  "version": "2.1.1-ballot",
  "name": "TI_2_1_2_9_User_Permissions__Authorization__Security_Audit_Trigger",
  "title": "TI.2.1.2.9 User Permissions (Authorization) Security Audit Trigger (Function)",
  "status": "active",
  "date": "2025-05-13T15:11:00+00:00",
  "publisher": "HL7 International / Electronic Health Records",
  "contact": [
    {
      "telecom": [
        {
          "system": "url",
          "value": "http://www.hl7.org/Special/committees/ehr"
        }
      ]
    }
  ],
  "description": "Manage Audit Trigger initiated to track user permissions (authorization).",
  "jurisdiction": [
    {
      "coding": [
        {
          "system": "http://unstats.un.org/unsd/methods/m49/m49.htm",
          "code": "001",
          "display": "World"
        }
      ]
    }
  ],
  "purpose": "Capture user permissions (authorization), both routine and exceptional, including key metadata (who, what, when, where, why).",
  "statement": [
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-01",
      "label": "TI.2.1.2.9#01",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL audit each occurrence when user permissions (authorizations) are granted, removed or updated."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-02",
      "label": "TI.2.1.2.9#02",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the organization."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-03",
      "label": "TI.2.1.2.9#03",
      "conformance": [
        "SHALL"
      ],
      "conditionality": true,
      "requirement": "IF known, THEN the system SHALL capture identity of the user."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-04",
      "label": "TI.2.1.2.9#04",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the system."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-05",
      "label": "TI.2.1.2.9#05",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the event initiating audit trigger."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-06",
      "label": "TI.2.1.2.9#06",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the date and time of the event initiating audit trigger."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-07",
      "label": "TI.2.1.2.9#07",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the location (i.e., network address)."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-08",
      "label": "TI.2.1.2.9#08",
      "conformance": [
        "SHOULD"
      ],
      "conditionality": false,
      "requirement": "The system SHOULD capture the rationale for granting, removing or updating user permissions."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-09",
      "label": "TI.2.1.2.9#09",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of user to whom permissions apply."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/ehrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "EHRSFMR2-TI.2.1.2.9-10",
      "label": "TI.2.1.2.9#10",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the new set of applicable user permissions (authorizations)."
    }
  ]
}