AISTPICA\AIST PICA Care Pathway AuditEvent Profile

A set of rules under which this content was created

language

0..1

Language of the resource content
Binding: CommonLanguages (preferred): IETF language tag

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation
This profile does not constrain the narrative in regard to content, language, or traceability to data elements

contained

0..*

Resource

Contained, inline Resources
Constraints: dom-r4b

Slices for extension

1..*

Extension
Slice: Unordered, Open by value:url

extension:basedOn

1..1

Reference(CarePlan)

Process that was followed in the treatment of this patient.
URL: http://hl7.at/fhir/AISTPICA/R4/StructureDefinition/aist-pica-auditevent-ext-basedon

?!

0..*

Extensions that cannot be ignored

Σ

1..1

Type/identifier of event
Binding: AuditEventID (extensible): Type of event.

subtype

Σ

0..*

More specific type/id for the event
Binding: AuditEventSub-Type (extensible): Sub-type of event.

action

Σ

0..1

Type of action performed during the event
Binding: AuditEventAction (required): DICOM Audit Event Action

period

1..1

Period

Documents when the event was conducted, not when it was audited.

recorded

Σ

1..1

instant

Time when the event was recorded

outcome

Σ

0..1

Whether the event succeeded or failed
Binding: AuditEventOutcome (required): DICOM Audit Event Outcome

outcomeDesc

Σ

0..1

Description of the event outcome

purposeOfEvent

Σ

0..*

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent

1..*

Actor involved in the event

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

0..1

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

0..*

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

Σ

0..1

Identifier of who

altId

0..1

Alternative User identity

0..1

Human friendly name for the agent

requestor

Σ

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

Policy that authorized event

media

0..1

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

0..1

Logical network location for application activity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

address

0..1

Identifier for the network access point of the user device

0..1

The type of network access point
Binding: AuditEventAgentNetworkType (required): DICOM Audit Event Network Type

purposeOfUse

0..*

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

1..1

Audit Event Reporter

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

site

0..1

Logical source location within the enterprise

observer

Σ

1..1

The identity of source detecting the event

0..*

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

Slices for entity

C

1..*

At least one entity must refer to the patient.
Slice: Unordered, Open by
Constraints: sev-1

entity:All Slices

Content/Rules for all slices

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

Σ

0..1

Reference(Resource)

Specific instance of resource

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): DICOM Audit Event Entity Type

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): DICOM Audit Event Entity Role

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

0..1

Descriptive text

ΣC

0..1

Query parameters

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

1..1

Property value

valueString

valueBase64Binary

1..1

Data or objects used
Constraints: sev-1

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

Σ

1..1

Reference(Patient)

The patient this Audit event is for.

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): DICOM Audit Event Entity Type

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): DICOM Audit Event Entity Role

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

0..1

Descriptive text

ΣC

0..1

Query parameters

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

1..1

Property value

valueString

valueBase64Binary

Documentation for this format

Terminology Bindings

Path Conformance ValueSet URI

AuditEvent.language

preferred

CommonLanguages

http://hl7.org/fhir/ValueSet/languages

From the FHIR Standard

Additional Bindings

Purpose

AllLanguages

Max Binding

AuditEvent.type

AuditEventID

http://hl7.org/fhir/ValueSet/audit-event-type

From the FHIR Standard

AuditEvent.subtype

AuditEventSub-Type

http://hl7.org/fhir/ValueSet/audit-event-sub-type

From the FHIR Standard

AuditEvent.action

AuditEventAction

http://hl7.org/fhir/ValueSet/audit-event-action|4.3.0

From the FHIR Standard

AuditEvent.outcome

AuditEventOutcome

http://hl7.org/fhir/ValueSet/audit-event-outcome|4.3.0

From the FHIR Standard

AuditEvent.purposeOfEvent

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent.type

ParticipationRoleType

http://hl7.org/fhir/ValueSet/participation-role-type

From the FHIR Standard

AuditEvent.agent.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

From the FHIR Standard

AuditEvent.agent.media

MediaTypeCode

http://hl7.org/fhir/ValueSet/dicm-405-mediatype

From the FHIR Standard

AuditEvent.agent.network.type

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.3.0

From the FHIR Standard

AuditEvent.agent.purposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.source.type

AuditEventSourceType

http://hl7.org/fhir/ValueSet/audit-source-type

From the FHIR Standard

AuditEvent.entity.type

http://hl7.org/fhir/ValueSet/audit-entity-type

From the FHIR Standard

AuditEvent.entity.role

http://hl7.org/fhir/ValueSet/object-role

From the FHIR Standard

AuditEvent.entity.lifecycle

http://hl7.org/fhir/ValueSet/object-lifecycle-events

AuditEvent.entity.securityLabel

http://hl7.org/fhir/ValueSet/security-labels

From the FHIR Standard

AuditEvent.entity:patient.type

http://hl7.org/fhir/ValueSet/audit-entity-type

From the FHIR Standard

AuditEvent.entity:patient.role

http://hl7.org/fhir/ValueSet/object-role

From the FHIR Standard

AuditEvent.entity:patient.lifecycle

http://hl7.org/fhir/ValueSet/object-lifecycle-events

AuditEvent.entity:patient.securityLabel

http://hl7.org/fhir/ValueSet/security-labels

From the FHIR Standard

Constraints

Id	Grade	Path(s)	Details	Requirements
dom-2	error	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain nested Resources : contained.contained.empty()
dom-3	error	AuditEvent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource : contained.where(((id.exists() and ('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url)))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(uri) = '#').exists()).not()).trace('unmatched', id).empty()
dom-4	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated : contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()
dom-5	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a security label : contained.meta.security.empty()
dom-6	best practice	AuditEvent	A resource should have narrative for robust management : text.`div`.exists()
dom-r4b	warning	AuditEvent.contained	Containing new R4B resources within R4 resources may cause interoperability issues if instances are shared with R4 systems : ($this is Citation or $this is Evidence or $this is EvidenceReport or $this is EvidenceVariable or $this is MedicinalProductDefinition or $this is PackagedProductDefinition or $this is AdministrableProductDefinition or $this is Ingredient or $this is ClinicalUseDefinition or $this is RegulatedAuthorization or $this is SubstanceDefinition or $this is SubscriptionStatus or $this is SubscriptionTopic) implies (%resource is Citation or %resource is Evidence or %resource is EvidenceReport or %resource is EvidenceVariable or %resource is MedicinalProductDefinition or %resource is PackagedProductDefinition or %resource is AdministrableProductDefinition or %resource is Ingredient or %resource is ClinicalUseDefinition or %resource is RegulatedAuthorization or %resource is SubstanceDefinition or %resource is SubscriptionStatus or %resource is SubscriptionTopic)
ele-1	error	ALL elements	All FHIR elements must have a @value or children : hasValue() or (children().count() > id.count())
ext-1	error	ALL extensions	Must have either extensions or value[x], not both : extension.exists() != value.exists()
sev-1	error	AuditEvent.entity, AuditEvent.entity:patient	Either a name or a query (NOT both) : name.empty() or query.empty()

This structure is derived from AISTPICAAuditEventCore

Summary

Mandatory: 2 elements

Extensions

This structure refers to these extensions:

http://hl7.at/fhir/AISTPICA/R4/StructureDefinition/aist-pica-auditevent-ext-basedon

Key Elements View

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
AuditEvent		0..*	AISTPICAAuditEventCore	Event record kept for security purposes
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
Slices for extension		1..*	Extension	Extension Slice: Unordered, Open by value:url
extension:basedOn		1..1	Reference(CarePlan)	Process that was followed in the treatment of this patient. URL: http://hl7.at/fhir/AISTPICA/R4/StructureDefinition/aist-pica-auditevent-ext-basedon
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	Σ	1..1	Coding	Type/identifier of event Binding: AuditEventID (extensible): Type of event.
period		1..1	Period	Documents when the event was conducted, not when it was audited.
recorded	Σ	1..1	instant	Time when the event was recorded
agent		1..*	BackboneElement	Actor involved in the event
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
requestor	Σ	1..1	boolean	Whether user is initiator
source		1..1	BackboneElement	Audit Event Reporter
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
observer	Σ	1..1	Reference(PractitionerRole \| Practitioner \| Organization \| Device \| Patient \| RelatedPerson)	The identity of source detecting the event
Slices for entity	C	1..*	BackboneElement	At least one entity must refer to the patient. Slice: Unordered, Open by Constraints: sev-1
entity:All Slices				Content/Rules for all slices
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
entity:patient	C	1..1	BackboneElement	Data or objects used Constraints: sev-1
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
what	Σ	1..1	Reference(Patient)	The patient this Audit event is for.
Documentation for this format

Terminology Bindings

Path	Conformance	ValueSet	URI
AuditEvent.type	extensible	AuditEventID `http://hl7.org/fhir/ValueSet/audit-event-type` From the FHIR Standard

Constraints

Id	Grade	Path(s)	Details	Requirements
dom-2	error	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain nested Resources : contained.contained.empty()
dom-3	error	AuditEvent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource : contained.where(((id.exists() and ('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url)))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(uri) = '#').exists()).not()).trace('unmatched', id).empty()
dom-4	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated : contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()
dom-5	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a security label : contained.meta.security.empty()
dom-6	best practice	AuditEvent	A resource should have narrative for robust management : text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children : hasValue() or (children().count() > id.count())
ext-1	error	ALL extensions	Must have either extensions or value[x], not both : extension.exists() != value.exists()
sev-1	error	AuditEvent.entity, AuditEvent.entity:patient	Either a name or a query (NOT both) : name.empty() or query.empty()

Differential View

This structure is derived from AISTPICAAuditEventCore

Name	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
AuditEvent	0..*	AISTPICAAuditEventCore	Event record kept for security purposes
Slices for extension	1..*	Extension	Extension Slice: Unordered, Open by value:url
extension:basedOn	1..1	Reference(CarePlan)	Process that was followed in the treatment of this patient. URL: http://hl7.at/fhir/AISTPICA/R4/StructureDefinition/aist-pica-auditevent-ext-basedon
Documentation for this format

Snapshot View

Description & Constraints Filter: Filters

AuditEvent

0..*

AISTPICAAuditEventCore

Event record kept for security purposes

id

Σ

0..1

id

Logical id of this artifact

Meta

Metadata about the resource

implicitRules

?!Σ

0..1

A set of rules under which this content was created

language

0..1

Language of the resource content
Binding: CommonLanguages (preferred): IETF language tag

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation
This profile does not constrain the narrative in regard to content, language, or traceability to data elements

contained

0..*

Resource

Contained, inline Resources
Constraints: dom-r4b

Slices for extension

1..*

Extension
Slice: Unordered, Open by value:url

extension:basedOn

1..1

Reference(CarePlan)

Process that was followed in the treatment of this patient.
URL: http://hl7.at/fhir/AISTPICA/R4/StructureDefinition/aist-pica-auditevent-ext-basedon

?!

0..*

Extensions that cannot be ignored

Σ

1..1

Type/identifier of event
Binding: AuditEventID (extensible): Type of event.

subtype

Σ

0..*

More specific type/id for the event
Binding: AuditEventSub-Type (extensible): Sub-type of event.

action

Σ

0..1

Type of action performed during the event
Binding: AuditEventAction (required): DICOM Audit Event Action

period

1..1

Period

Documents when the event was conducted, not when it was audited.

recorded

Σ

1..1

instant

Time when the event was recorded

outcome

Σ

0..1

Whether the event succeeded or failed
Binding: AuditEventOutcome (required): DICOM Audit Event Outcome

outcomeDesc

Σ

0..1

Description of the event outcome

purposeOfEvent

Σ

0..*

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent

1..*

Actor involved in the event

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

0..1

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

0..*

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

Σ

0..1

Identifier of who

altId

0..1

Alternative User identity

0..1

Human friendly name for the agent

requestor

Σ

1..1

boolean

Whether user is initiator

location

0..1

Reference(Location)

Where

policy

0..*

Policy that authorized event

media

0..1

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

0..1

Logical network location for application activity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

address

0..1

Identifier for the network access point of the user device

0..1

The type of network access point
Binding: AuditEventAgentNetworkType (required): DICOM Audit Event Network Type

purposeOfUse

0..*

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

1..1

Audit Event Reporter

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

site

0..1

Logical source location within the enterprise

observer

Σ

1..1

The identity of source detecting the event

0..*

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

Slices for entity

C

1..*

At least one entity must refer to the patient.
Slice: Unordered, Open by
Constraints: sev-1

entity:All Slices

Content/Rules for all slices

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

Σ

0..1

Reference(Resource)

Specific instance of resource

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): DICOM Audit Event Entity Type

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): DICOM Audit Event Entity Role

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

0..1

Descriptive text

ΣC

0..1

Query parameters

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

1..1

Property value

valueString

valueBase64Binary

1..1

Data or objects used
Constraints: sev-1

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

Σ

1..1

Reference(Patient)

The patient this Audit event is for.

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): DICOM Audit Event Entity Type

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): DICOM Audit Event Entity Role

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

0..1

Descriptive text

ΣC

0..1

Query parameters

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

1..1

Property value

valueString

valueBase64Binary

Documentation for this format

Terminology Bindings

Path Conformance ValueSet URI

AuditEvent.language

preferred

CommonLanguages

http://hl7.org/fhir/ValueSet/languages

From the FHIR Standard

Additional Bindings

Purpose

AllLanguages

Max Binding

AuditEvent.type

AuditEventID

http://hl7.org/fhir/ValueSet/audit-event-type

From the FHIR Standard

AuditEvent.subtype

AuditEventSub-Type

http://hl7.org/fhir/ValueSet/audit-event-sub-type

From the FHIR Standard

AuditEvent.action

AuditEventAction

http://hl7.org/fhir/ValueSet/audit-event-action|4.3.0

From the FHIR Standard

AuditEvent.outcome

AuditEventOutcome

http://hl7.org/fhir/ValueSet/audit-event-outcome|4.3.0

From the FHIR Standard

AuditEvent.purposeOfEvent

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.agent.type

ParticipationRoleType

http://hl7.org/fhir/ValueSet/participation-role-type

From the FHIR Standard

AuditEvent.agent.role

example

SecurityRoleType

http://hl7.org/fhir/ValueSet/security-role-type

From the FHIR Standard

AuditEvent.agent.media

MediaTypeCode

http://hl7.org/fhir/ValueSet/dicm-405-mediatype

From the FHIR Standard

AuditEvent.agent.network.type

AuditEventAgentNetworkType

http://hl7.org/fhir/ValueSet/network-type|4.3.0

From the FHIR Standard

AuditEvent.agent.purposeOfUse

http://terminology.hl7.org/ValueSet/v3-PurposeOfUse

AuditEvent.source.type

AuditEventSourceType

http://hl7.org/fhir/ValueSet/audit-source-type

From the FHIR Standard

AuditEvent.entity.type

http://hl7.org/fhir/ValueSet/audit-entity-type

From the FHIR Standard

AuditEvent.entity.role

http://hl7.org/fhir/ValueSet/object-role

From the FHIR Standard

AuditEvent.entity.lifecycle

http://hl7.org/fhir/ValueSet/object-lifecycle-events

AuditEvent.entity.securityLabel

http://hl7.org/fhir/ValueSet/security-labels

From the FHIR Standard

AuditEvent.entity:patient.type

http://hl7.org/fhir/ValueSet/audit-entity-type

From the FHIR Standard

AuditEvent.entity:patient.role

http://hl7.org/fhir/ValueSet/object-role

From the FHIR Standard

AuditEvent.entity:patient.lifecycle

http://hl7.org/fhir/ValueSet/object-lifecycle-events

AuditEvent.entity:patient.securityLabel