Profile: AccessAuditTrailEvent

StructureDefinition: AccessAuditTrailEvent

Formal Views of Profile Content

The official URL for this profile is:

http://fhir.ch/ig/ch-atc/StructureDefinition/AccessAuditTrailEvent

This profile defines the content of the access audit trail event which a community has to provide for a patients audit trail.

This profile builds on AuditEvent.

This profile was published on Mon May 28 00:00:00 CEST 2018 as a active by Federal Office of Public Health (FOPH).

Description of Profiles, Differentials, Snapshots, and how the XML and JSON presentations work.

Text Summary
Differential Table
Snapshot Table
All

This structure is derived from AuditEvent

Summary

Mandatory: 16 elements
Fixed Value: 3 elements

Slices

This structure defines the following Slices:

The element AuditEvent.entity is sliced based on the values of value:type.code, value:role.code

This structure is derived from AuditEvent

Name	Flags	Card.	Type	Description & Constraints
AuditEvent	I	0..*		Access Audit Trail Event Content Profile ch-atc-aae-1: subtype needs to be fixed to ATC_LOG_READ
id	Σ	1..1	id	Logical id of this artifact
text		1..1	Narrative	A human-readable narrative that contains the summary of the Audit Event.
type	Σ	1..1	Coding	Type/identifier of event Binding: Audit Event ID (extensible)
subtype	Σ	1..1	Coding	Binding: AccessAuditTrailEventType (required)
recorded	Σ	1..1	instant	Time when the event was recorded
agent		1..*	BackboneElement	Patient, repeated if representative
role	Σ	1..1	CodeableConcept	Agent role in the event Binding: EprParticipant (required)
userId	Σ	0..1	Identifier	Unique identifier for the user
name	Σ	1..1	string	Human-meaningful name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator
entity	I		BackboneElement	Data or objects used Slice: Unordered, Open by value:type.code, value:role.code sev-1: Either a name or a query (NOT both)
entity	Σ	1..1	BackboneElement	Patient
identifier	Σ	1..1	Identifier	Patient Id (EPR-SPID)
system		1..1	uri	Fixed Value: urn:oid:2.16.756.5.30.1.127.3.10.3
type	Σ	1..1	Coding	Type of entity involved
code	Σ	1..1	code	Fixed Value: 1
role	Σ	1..1	Coding	What role the entity played
code	Σ	1..1	code	Fixed Value: 1
Documentation for this format

This structure is derived from AuditEvent

Name	Flags	Card.	Type	Description & Constraints
AuditEvent	I	0..*		Access Audit Trail Event Content Profile ch-atc-aae-1: subtype needs to be fixed to ATC_LOG_READ
id	Σ	1..1	id	Logical id of this artifact
meta	Σ	0..1	Meta	Metadata about the resource
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
language		0..1	code	Language of the resource content Binding: Common Languages (extensible)
text	I	1..1	Narrative	A human-readable narrative that contains the summary of the Audit Event.
contained		0..*	Resource	Contained, inline Resources
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	Σ	1..1	Coding	Type/identifier of event Binding: Audit Event ID (extensible)
subtype	Σ	1..1	Coding	More specific type/id for the event Binding: AccessAuditTrailEventType (required)
action	Σ	0..1	code	Type of action performed during the event Binding: AuditEventAction (required)
recorded	Σ	1..1	instant	Time when the event was recorded
outcome	Σ	0..1	code	Whether the event succeeded or failed Binding: AuditEventOutcome (required)
outcomeDesc	Σ	0..1	string	Description of the event outcome
purposeOfEvent	Σ	0..*	CodeableConcept	The purposeOfUse of the event Binding: PurposeOfUse (extensible)
agent	I	1..*	BackboneElement	Patient, repeated if representative
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
role	Σ	1..1	CodeableConcept	Agent role in the event Binding: EprParticipant (required)
reference	Σ	0..1	Reference(Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Direct reference to resource
userId	Σ	0..1	Identifier	Unique identifier for the user
altId		0..1	string	Alternative User id e.g. authentication
name	Σ	1..1	string	Human-meaningful name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator
location		0..1	Reference(Location)	Where
policy		0..*	uri	Policy that authorized event
media		0..1	Coding	Type of media Binding: Media Type Code (extensible)
network	I	0..1	BackboneElement	Logical network location for application activity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
address		0..1	string	Identifier for the network access point of the user device
type		0..1	code	The type of network access point Binding: AuditEventAgentNetworkType (required)
purposeOfUse		0..*	CodeableConcept	Reason given for this user Binding: PurposeOfUse (extensible)
source	I	1..1	BackboneElement	Audit Event Reporter
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
site		0..1	string	Logical source location within the enterprise
identifier	Σ	1..1	Identifier	The identity of source detecting the event
type		0..*	Coding	The type of source where event originated Binding: Audit Event Source Type (extensible)
entity	I		BackboneElement	Data or objects used Slice: Unordered, Open by value:type.code, value:role.code sev-1: Either a name or a query (NOT both)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
identifier	Σ	0..1	Identifier	Specific instance of object
reference	Σ	0..1	Reference(Resource)	Specific instance of resource
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible)
role		0..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible)
lifecycle		0..1	Coding	Life-cycle stage for the entity Binding: ObjectLifecycleEvents (extensible)
securityLabel		0..*	Coding	Security labels on the entity Binding: All Security Labels (extensible)
name	ΣI	0..1	string	Descriptor for entity
description		0..1	string	Descriptive text
query	ΣI	0..1	base64Binary	Query parameters
detail	I	0..*	BackboneElement	Additional Information about the entity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
type		1..1	string	Name of the property
value		1..1	base64Binary	Property value
entity	ΣI	1..1	BackboneElement	Patient
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
identifier	Σ	1..1	Identifier	Patient Id (EPR-SPID)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
use	?!Σ	0..1	code	usual \| official \| temp \| secondary (If known) Binding: IdentifierUse (required)
type	Σ	0..1	CodeableConcept	Description of identifier Binding: Identifier Type Codes (extensible)
system	Σ	1..1	uri	The namespace for the identifier value Fixed Value: urn:oid:2.16.756.5.30.1.127.3.10.3
value	Σ	0..1	string	The value that is unique Example General': 123456
period	Σ	0..1	Period	Time period when id is/was valid for use
assigner	Σ	0..1	Reference(Organization)	Organization that issued id (may be just text)
reference	Σ	0..1	Reference(Resource)	Specific instance of resource
type	Σ	1..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
system	Σ	0..1	uri	Identity of the terminology system
version	Σ	0..1	string	Version of the system - if relevant
code	Σ	1..1	code	Symbol in syntax defined by the system Fixed Value: 1
display	Σ	0..1	string	Representation defined by the system
userSelected	Σ	0..1	boolean	If this coding was chosen directly by the user
role	Σ	1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
system	Σ	0..1	uri	Identity of the terminology system
version	Σ	0..1	string	Version of the system - if relevant
code	Σ	1..1	code	Symbol in syntax defined by the system Fixed Value: 1
display	Σ	0..1	string	Representation defined by the system
userSelected	Σ	0..1	boolean	If this coding was chosen directly by the user
lifecycle		0..1	Coding	Life-cycle stage for the entity Binding: ObjectLifecycleEvents (extensible)
securityLabel		0..*	Coding	Security labels on the entity Binding: All Security Labels (extensible)
name	ΣI	0..1	string	Descriptor for entity
description		0..1	string	Descriptive text
query	ΣI	0..1	base64Binary	Query parameters
detail	I	0..*	BackboneElement	Additional Information about the entity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
type		1..1	string	Name of the property
value		1..1	base64Binary	Property value
Documentation for this format

This structure is derived from AuditEvent

Summary

Mandatory: 16 elements
Fixed Value: 3 elements

Slices

This structure defines the following Slices:

The element AuditEvent.entity is sliced based on the values of value:type.code, value:role.code

Differential View

This structure is derived from AuditEvent

Name	Flags	Card.	Type	Description & Constraints
AuditEvent	I	0..*		Access Audit Trail Event Content Profile ch-atc-aae-1: subtype needs to be fixed to ATC_LOG_READ
id	Σ	1..1	id	Logical id of this artifact
text		1..1	Narrative	A human-readable narrative that contains the summary of the Audit Event.
type	Σ	1..1	Coding	Type/identifier of event Binding: Audit Event ID (extensible)
subtype	Σ	1..1	Coding	Binding: AccessAuditTrailEventType (required)
recorded	Σ	1..1	instant	Time when the event was recorded
agent		1..*	BackboneElement	Patient, repeated if representative
role	Σ	1..1	CodeableConcept	Agent role in the event Binding: EprParticipant (required)
userId	Σ	0..1	Identifier	Unique identifier for the user
name	Σ	1..1	string	Human-meaningful name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator
entity	I		BackboneElement	Data or objects used Slice: Unordered, Open by value:type.code, value:role.code sev-1: Either a name or a query (NOT both)
entity	Σ	1..1	BackboneElement	Patient
identifier	Σ	1..1	Identifier	Patient Id (EPR-SPID)
system		1..1	uri	Fixed Value: urn:oid:2.16.756.5.30.1.127.3.10.3
type	Σ	1..1	Coding	Type of entity involved
code	Σ	1..1	code	Fixed Value: 1
role	Σ	1..1	Coding	What role the entity played
code	Σ	1..1	code	Fixed Value: 1
Documentation for this format

Snapshot View

Name	Flags	Card.	Type	Description & Constraints
AuditEvent	I	0..*		Access Audit Trail Event Content Profile ch-atc-aae-1: subtype needs to be fixed to ATC_LOG_READ
id	Σ	1..1	id	Logical id of this artifact
meta	Σ	0..1	Meta	Metadata about the resource
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
language		0..1	code	Language of the resource content Binding: Common Languages (extensible)
text	I	1..1	Narrative	A human-readable narrative that contains the summary of the Audit Event.
contained		0..*	Resource	Contained, inline Resources
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	Σ	1..1	Coding	Type/identifier of event Binding: Audit Event ID (extensible)
subtype	Σ	1..1	Coding	More specific type/id for the event Binding: AccessAuditTrailEventType (required)
action	Σ	0..1	code	Type of action performed during the event Binding: AuditEventAction (required)
recorded	Σ	1..1	instant	Time when the event was recorded
outcome	Σ	0..1	code	Whether the event succeeded or failed Binding: AuditEventOutcome (required)
outcomeDesc	Σ	0..1	string	Description of the event outcome
purposeOfEvent	Σ	0..*	CodeableConcept	The purposeOfUse of the event Binding: PurposeOfUse (extensible)
agent	I	1..*	BackboneElement	Patient, repeated if representative
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
role	Σ	1..1	CodeableConcept	Agent role in the event Binding: EprParticipant (required)
reference	Σ	0..1	Reference(Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	Direct reference to resource
userId	Σ	0..1	Identifier	Unique identifier for the user
altId		0..1	string	Alternative User id e.g. authentication
name	Σ	1..1	string	Human-meaningful name for the agent
requestor	Σ	1..1	boolean	Whether user is initiator
location		0..1	Reference(Location)	Where
policy		0..*	uri	Policy that authorized event
media		0..1	Coding	Type of media Binding: Media Type Code (extensible)
network	I	0..1	BackboneElement	Logical network location for application activity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
address		0..1	string	Identifier for the network access point of the user device
type		0..1	code	The type of network access point Binding: AuditEventAgentNetworkType (required)
purposeOfUse		0..*	CodeableConcept	Reason given for this user Binding: PurposeOfUse (extensible)
source	I	1..1	BackboneElement	Audit Event Reporter
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
site		0..1	string	Logical source location within the enterprise
identifier	Σ	1..1	Identifier	The identity of source detecting the event
type		0..*	Coding	The type of source where event originated Binding: Audit Event Source Type (extensible)
entity	I		BackboneElement	Data or objects used Slice: Unordered, Open by value:type.code, value:role.code sev-1: Either a name or a query (NOT both)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
identifier	Σ	0..1	Identifier	Specific instance of object
reference	Σ	0..1	Reference(Resource)	Specific instance of resource
type		0..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible)
role		0..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible)
lifecycle		0..1	Coding	Life-cycle stage for the entity Binding: ObjectLifecycleEvents (extensible)
securityLabel		0..*	Coding	Security labels on the entity Binding: All Security Labels (extensible)
name	ΣI	0..1	string	Descriptor for entity
description		0..1	string	Descriptive text
query	ΣI	0..1	base64Binary	Query parameters
detail	I	0..*	BackboneElement	Additional Information about the entity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
type		1..1	string	Name of the property
value		1..1	base64Binary	Property value
entity	ΣI	1..1	BackboneElement	Patient
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
identifier	Σ	1..1	Identifier	Patient Id (EPR-SPID)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
use	?!Σ	0..1	code	usual \| official \| temp \| secondary (If known) Binding: IdentifierUse (required)
type	Σ	0..1	CodeableConcept	Description of identifier Binding: Identifier Type Codes (extensible)
system	Σ	1..1	uri	The namespace for the identifier value Fixed Value: urn:oid:2.16.756.5.30.1.127.3.10.3
value	Σ	0..1	string	The value that is unique Example General': 123456
period	Σ	0..1	Period	Time period when id is/was valid for use
assigner	Σ	0..1	Reference(Organization)	Organization that issued id (may be just text)
reference	Σ	0..1	Reference(Resource)	Specific instance of resource
type	Σ	1..1	Coding	Type of entity involved Binding: AuditEventEntityType (extensible)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
system	Σ	0..1	uri	Identity of the terminology system
version	Σ	0..1	string	Version of the system - if relevant
code	Σ	1..1	code	Symbol in syntax defined by the system Fixed Value: 1
display	Σ	0..1	string	Representation defined by the system
userSelected	Σ	0..1	boolean	If this coding was chosen directly by the user
role	Σ	1..1	Coding	What role the entity played Binding: AuditEventEntityRole (extensible)
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations Slice: Unordered, Open by value:url
system	Σ	0..1	uri	Identity of the terminology system
version	Σ	0..1	string	Version of the system - if relevant
code	Σ	1..1	code	Symbol in syntax defined by the system Fixed Value: 1
display	Σ	0..1	string	Representation defined by the system
userSelected	Σ	0..1	boolean	If this coding was chosen directly by the user
lifecycle		0..1	Coding	Life-cycle stage for the entity Binding: ObjectLifecycleEvents (extensible)
securityLabel		0..*	Coding	Security labels on the entity Binding: All Security Labels (extensible)
name	ΣI	0..1	string	Descriptor for entity
description		0..1	string	Descriptive text
query	ΣI	0..1	base64Binary	Query parameters
detail	I	0..*	BackboneElement	Additional Information about the entity
id		0..1	string	xml:id (or equivalent in JSON)
extension		0..*	Extension	Additional Content defined by implementations
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored
type		1..1	string	Name of the property
value		1..1	base64Binary	Property value
Documentation for this format

Terminology Bindings

Path	Name	Conformance	ValueSet
AuditEvent.language	Common Languages	extensible	Common Languages
AuditEvent.type	Audit Event ID	extensible	Audit Event ID
AuditEvent.subtype	AccessAuditTrailEventType	required	AccessAuditTrailEventType
AuditEvent.action	AuditEventAction	required	AuditEventAction
AuditEvent.outcome	AuditEventOutcome	required	AuditEventOutcome
AuditEvent.purposeOfEvent	PurposeOfUse	extensible	PurposeOfUse
AuditEvent.agent.role	EprParticipant	required	EprParticipant
AuditEvent.agent.media	Media Type Code	extensible	Media Type Code
AuditEvent.agent.network.type	AuditEventAgentNetworkType	required	AuditEventAgentNetworkType
AuditEvent.agent.purposeOfUse	PurposeOfUse	extensible	PurposeOfUse
AuditEvent.source.type	Audit Event Source Type	extensible	Audit Event Source Type
AuditEvent.entity.type	AuditEventEntityType	extensible	AuditEventEntityType
AuditEvent.entity.role	AuditEventEntityRole	extensible	AuditEventEntityRole
AuditEvent.entity.lifecycle	ObjectLifecycleEvents	extensible	ObjectLifecycleEvents (missing link)
AuditEvent.entity.securityLabel	All Security Labels	extensible	All Security Labels
AuditEvent.entity.identifier.use	IdentifierUse	required	IdentifierUse
AuditEvent.entity.identifier.type	Identifier Type Codes	extensible	Identifier Type Codes
AuditEvent.entity.type	AuditEventEntityType	extensible	AuditEventEntityType
AuditEvent.entity.role	AuditEventEntityRole	extensible	AuditEventEntityRole
AuditEvent.entity.lifecycle	ObjectLifecycleEvents	extensible	ObjectLifecycleEvents (missing link)
AuditEvent.entity.securityLabel	All Security Labels	extensible	All Security Labels

Constraints

Id	Path	Details	Requirements
dom-2	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain nested Resources : contained.contained.empty()
dom-1	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain any narrative : contained.text.empty()
dom-4	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated : contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()
dom-3	AuditEvent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource : contained.where(('#'+id in %resource.descendants().reference).not()).empty()
ch-atc-aae-1	AuditEvent	subtype needs to be fixed to ATC_LOG_READ : subtype.exists() and subtype.count()=1 and subtype[0].code='ATC_LOG_READ'
ele-1	AuditEvent.agent	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
ele-1	AuditEvent.agent.network	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
ele-1	AuditEvent.source	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
ele-1	AuditEvent.entity	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
sev-1	AuditEvent.entity	Either a name or a query (NOT both) : name.empty() or query.empty()
ele-1	AuditEvent.entity.detail	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
ele-1	AuditEvent.entity	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())
sev-1	AuditEvent.entity	Either a name or a query (NOT both) : name.empty() or query.empty()
ele-1	AuditEvent.entity.detail	All FHIR elements must have a @value or children : hasValue() \| (children().count() > id.count())