FHIR © HL7.org  |  Server Home  |  XIG Home  |  Server Source  |  FHIR  

FHIR IG Statistics: Requirements/PHRSFMR2-TI.2.1.2.2

Packagehl7.ehrs.uv.phrsfmr2
TypeRequirements
IdPHRSFMR2-TI.2.1.2.2
FHIR VersionR5
Sourcehttp://hl7.org/ehrs/uv/phrsfmr2/https://build.fhir.org/ig/HL7/phrsfm-ig/Requirements-PHRSFMR2-TI.2.1.2.2.html
URLhttp://hl7.org/ehrs/uv/phrsfmr2/Requirements/PHRSFMR2-TI.2.1.2.2
Version2.0.1-ballot
Statusactive
Date2025-04-03T15:15:30+00:00
NameTI_2_1_2_2_User_Authentication_to_the_System__Start_user_session__Security_Audit_Trigger
TitleTI.2.1.2.2 User Authentication to the System (Start user session) Security Audit Trigger (Function)
Authorityhl7
DescriptionManage Audit Trigger initiated to track user authentication to the system (start user session).
PurposeCapture user authentication to the system (start user session), both routine and exceptional, including key metadata (who, what, when, where, why).

Resources that use this resource

No resources found


Resources that this resource uses

No resources found


Narrative

Note: links and images are rebased to the (stated) source

Statement N:

Manage Audit Trigger initiated to track user authentication to the system (start user session).

Description I:

Capture user authentication to the system (start user session), both routine and exceptional, including key metadata (who, what, when, where, why).

Actors:
ehr
Criteria N:
TI.2.1.2.2#01 SHALL

The system SHALL audit each occurrence of user authentication at logon (start session).

TI.2.1.2.2#02 SHALL

The system SHALL capture identity of the organization.

TI.2.1.2.2#03 conditional SHALL

IF known, THEN the system SHALL capture identity of the user.

TI.2.1.2.2#04 SHALL

The system SHALL capture identity of the system.

TI.2.1.2.2#05 SHALL

The system SHALL capture the event initiating audit trigger.

TI.2.1.2.2#06 SHALL

The system SHALL capture the date and time of the event initiating audit trigger.

TI.2.1.2.2#07 SHALL

The system SHALL capture identity of the location (i.e., network address).

TI.2.1.2.2#08 SHALL

The system SHALL capture the method of user authentication (e.g., user ID, password, biometrics, token, security question(s)).


Source

{
  "resourceType": "Requirements",
  "id": "PHRSFMR2-TI.2.1.2.2",
  "meta": {
    "profile": [
      "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/FMFunction"
    ]
  },
  "text": {
    "status": "extensions",
    "div": "<!-- snip (see above) -->"
  },
  "extension": [
    {
      "url": "http://hl7.org/fhir/StructureDefinition/structuredefinition-wg",
      "valueCode": "ehr"
    }
  ],
  "url": "http://hl7.org/ehrs/uv/phrsfmr2/Requirements/PHRSFMR2-TI.2.1.2.2",
  "version": "2.0.1-ballot",
  "name": "TI_2_1_2_2_User_Authentication_to_the_System__Start_user_session__Security_Audit_Trigger",
  "title": "TI.2.1.2.2 User Authentication to the System (Start user session) Security Audit Trigger (Function)",
  "status": "active",
  "date": "2025-04-03T15:15:30+00:00",
  "publisher": "EHR WG",
  "contact": [
    {
      "telecom": [
        {
          "system": "url",
          "value": "http://www.hl7.org/Special/committees/ehr"
        }
      ]
    }
  ],
  "description": "Manage Audit Trigger initiated to track user authentication to the system (start user session).",
  "purpose": "Capture user authentication to the system (start user session), both routine and exceptional, including key metadata (who, what, when, where, why).",
  "statement": [
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-01",
      "label": "TI.2.1.2.2#01",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL audit each occurrence of user authentication at logon (start session)."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-02",
      "label": "TI.2.1.2.2#02",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the organization."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-03",
      "label": "TI.2.1.2.2#03",
      "conformance": [
        "SHALL"
      ],
      "conditionality": true,
      "requirement": "IF known, THEN the system SHALL capture identity of the user."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-04",
      "label": "TI.2.1.2.2#04",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the system."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-05",
      "label": "TI.2.1.2.2#05",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the event initiating audit trigger."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-06",
      "label": "TI.2.1.2.2#06",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the date and time of the event initiating audit trigger."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-07",
      "label": "TI.2.1.2.2#07",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture identity of the location (i.e., network address)."
    },
    {
      "extension": [
        {
          "url": "http://hl7.org/ehrs/uv/phrsfmr2/StructureDefinition/requirements-dependent",
          "valueBoolean": false
        }
      ],
      "key": "PHRSFMR2-TI.2.1.2.2-08",
      "label": "TI.2.1.2.2#08",
      "conformance": [
        "SHALL"
      ],
      "conditionality": false,
      "requirement": "The system SHALL capture the method of user authentication (e.g., user ID, password, biometrics, token, security question(s))."
    }
  ]
}