AIST PICA Implementation Guide
0.1.0 - STU1

Resource Profile: AIST PICA Core AuditEvent Profile

Defining URL:http://hl7.at/fhir/AISTPICA/R5/StructureDefinition/aist-pica-auditevent-core
Version:0.1.0
Name:AISTPICAAuditEventCore
Title:AIST PICA Core AuditEvent Profile
Status:Active as of 2023-09-12 08:57:38+0000
Definition:

AIST PICA Core AuditEvent Profile enforcing the patient and event time

Source Resource:XML / JSON / Turtle

The official URL for this profile is:

http://hl7.at/fhir/AISTPICA/R5/StructureDefinition/aist-pica-auditevent-core

Formal Views of Profile Content

Description of Profiles, Differentials, Snapshots and how the different presentations work.

This structure is derived from AuditEvent

Summary

Mandatory: 3 elements

Slices

This structure defines the following Slices:

  • The element AuditEvent.occurred[x] is sliced based on the value of type:$this

This structure is derived from AuditEvent

NameFlagsCard.TypeDescription & Constraintsdoco
.. AuditEvent 0..*AuditEventRecord of an event
... Slices for occurred[x] 1..1dateTimeWhen the activity occurred
Slice: Unordered, Open by type:$this
.... occurred[x]:occurredDateTime 1..1dateTimeDocuments when the event was conducted, not when it was audited.
... patient 1..1Reference(Patient)The patient this Audit event is for.

doco Documentation for this format
NameFlagsCard.TypeDescription & Constraintsdoco
.. AuditEvent 0..*AuditEventRecord of an event
... id Σ0..1idLogical id of this artifact
... meta Σ0..1MetaMetadata about the resource
... implicitRules ?!Σ0..1uriA set of rules under which this content was created
... text 0..1NarrativeText summary of the resource, for human interpretation
... contained 0..*ResourceContained, inline Resources
... extension 0..*ExtensionAdditional content defined by implementations
... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored
... category Σ0..*CodeableConceptType/identifier of event
Binding: AuditEventID (example): Type of event.


... code Σ1..1CodeableConceptSpecific type of event
Binding: AuditEventSubType (example): Specific type of event.

... action Σ0..1codeType of action performed during the event
Binding: AuditEventAction (required): DICOM Audit Event Action

... severity Σ0..1codeemergency | alert | critical | error | warning | notice | informational | debug
Binding: AuditEventSeverity (required): This is in the SysLog header, PRI. http://tools.ietf.org/html/rfc5424#appendix-A.3

... Slices for occurred[x] 1..1dateTimeWhen the activity occurred
Slice: Unordered, Closed by type:$this
.... occurred[x]:occurredDateTime 1..1dateTimeDocuments when the event was conducted, not when it was audited.
... recorded Σ1..1instantTime when the event was recorded
... outcome Σ0..1BackboneElementWhether the event succeeded or failed
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... code Σ1..1CodingWhether the event succeeded or failed
Binding: AuditEventOutcome (preferred): DICOM Audit Event Outcome

.... detail Σ0..*CodeableConceptAdditional outcome detail
Binding: AuditEventOutcomeDetail (example): A code that provides details as the exact issue.


... authorization Σ0..*CodeableConceptAuthorization related to the event
Binding: PurposeOfUse (example): The authorized purposeOfUse for the activity.


... basedOn 0..*Reference(CarePlan | DeviceRequest | ImmunizationRecommendation | MedicationRequest | NutritionOrder | ServiceRequest | Task)Workflow authorization within which this event occurred
... patient 1..1Reference(Patient)The patient this Audit event is for.
... encounter 0..1Reference(Encounter)Encounter within which this event occurred or which the event is tightly associated
... agent Σ1..*BackboneElementActor involved in the event
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... type 0..1CodeableConceptHow agent participated
Binding: ParticipationRoleType (preferred): The Participation type of the agent to the event.

.... role 0..*CodeableConceptAgent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.


.... who Σ1..1Reference(Practitioner | PractitionerRole | Organization | CareTeam | Patient | Device | RelatedPerson)Identifier of who
.... requestor Σ0..1booleanWhether user is initiator
.... location 0..1Reference(Location)The agent location when the event occurred
.... policy 0..*uriPolicy that authorized the agent participation in the event
.... network[x] 0..1This agent network location for the activity
..... networkReferenceReference(Endpoint)
..... networkUriuri
..... networkStringstring
.... authorization 0..*CodeableConceptAllowable authorization for this agent
Binding: PurposeOfUse (example): The reason the activity took place.


... source Σ1..1BackboneElementAudit Event Reporter
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... site 0..1Reference(Location)Logical source location within the enterprise
.... observer Σ1..1Reference(Practitioner | PractitionerRole | Organization | CareTeam | Patient | Device | RelatedPerson)The identity of source detecting the event
.... type 0..*CodeableConceptThe type of source where event originated
Binding: AuditEventSourceType (preferred): Code specifying the type of system that detected and recorded the event. Use of these codes is not required but is encouraged to maintain translation with DICOM AuditMessage schema.


... entity Σ0..*BackboneElementData or objects used
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... what Σ0..1Reference(Resource)Specific instance of resource
.... role 0..1CodeableConceptWhat role the entity played
Binding: AuditEventEntityRole (example): DICOM Audit Event Entity Role

.... securityLabel 0..*CodeableConceptSecurity labels on the entity
Binding: SecurityLabelExamples (example): Example Security Labels from the Healthcare Privacy and Security Classification System.


.... query Σ0..1base64BinaryQuery parameters
.... detail 0..*BackboneElementAdditional Information about the entity
..... id 0..1stringUnique id for inter-element referencing
..... extension 0..*ExtensionAdditional content defined by implementations
..... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
..... type 1..1CodeableConceptName of the property
Binding: AuditEventID (example): Additional detail about an entity used in an event.

..... value[x] 1..1Property value
...... valueQuantityQuantity
...... valueCodeableConceptCodeableConcept
...... valueStringstring
...... valueBooleanboolean
...... valueIntegerinteger
...... valueRangeRange
...... valueRatioRatio
...... valueTimetime
...... valueDateTimedateTime
...... valuePeriodPeriod
...... valueBase64Binarybase64Binary
.... agent 0..*See agent (AuditEvent)Entity is attributed to this agent

doco Documentation for this format

This structure is derived from AuditEvent

Summary

Mandatory: 3 elements

Slices

This structure defines the following Slices:

  • The element AuditEvent.occurred[x] is sliced based on the value of type:$this

Differential View

This structure is derived from AuditEvent

NameFlagsCard.TypeDescription & Constraintsdoco
.. AuditEvent 0..*AuditEventRecord of an event
... Slices for occurred[x] 1..1dateTimeWhen the activity occurred
Slice: Unordered, Open by type:$this
.... occurred[x]:occurredDateTime 1..1dateTimeDocuments when the event was conducted, not when it was audited.
... patient 1..1Reference(Patient)The patient this Audit event is for.

doco Documentation for this format

Snapshot View

NameFlagsCard.TypeDescription & Constraintsdoco
.. AuditEvent 0..*AuditEventRecord of an event
... id Σ0..1idLogical id of this artifact
... meta Σ0..1MetaMetadata about the resource
... implicitRules ?!Σ0..1uriA set of rules under which this content was created
... text 0..1NarrativeText summary of the resource, for human interpretation
... contained 0..*ResourceContained, inline Resources
... extension 0..*ExtensionAdditional content defined by implementations
... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored
... category Σ0..*CodeableConceptType/identifier of event
Binding: AuditEventID (example): Type of event.


... code Σ1..1CodeableConceptSpecific type of event
Binding: AuditEventSubType (example): Specific type of event.

... action Σ0..1codeType of action performed during the event
Binding: AuditEventAction (required): DICOM Audit Event Action

... severity Σ0..1codeemergency | alert | critical | error | warning | notice | informational | debug
Binding: AuditEventSeverity (required): This is in the SysLog header, PRI. http://tools.ietf.org/html/rfc5424#appendix-A.3

... Slices for occurred[x] 1..1dateTimeWhen the activity occurred
Slice: Unordered, Closed by type:$this
.... occurred[x]:occurredDateTime 1..1dateTimeDocuments when the event was conducted, not when it was audited.
... recorded Σ1..1instantTime when the event was recorded
... outcome Σ0..1BackboneElementWhether the event succeeded or failed
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... code Σ1..1CodingWhether the event succeeded or failed
Binding: AuditEventOutcome (preferred): DICOM Audit Event Outcome

.... detail Σ0..*CodeableConceptAdditional outcome detail
Binding: AuditEventOutcomeDetail (example): A code that provides details as the exact issue.


... authorization Σ0..*CodeableConceptAuthorization related to the event
Binding: PurposeOfUse (example): The authorized purposeOfUse for the activity.


... basedOn 0..*Reference(CarePlan | DeviceRequest | ImmunizationRecommendation | MedicationRequest | NutritionOrder | ServiceRequest | Task)Workflow authorization within which this event occurred
... patient 1..1Reference(Patient)The patient this Audit event is for.
... encounter 0..1Reference(Encounter)Encounter within which this event occurred or which the event is tightly associated
... agent Σ1..*BackboneElementActor involved in the event
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... type 0..1CodeableConceptHow agent participated
Binding: ParticipationRoleType (preferred): The Participation type of the agent to the event.

.... role 0..*CodeableConceptAgent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.


.... who Σ1..1Reference(Practitioner | PractitionerRole | Organization | CareTeam | Patient | Device | RelatedPerson)Identifier of who
.... requestor Σ0..1booleanWhether user is initiator
.... location 0..1Reference(Location)The agent location when the event occurred
.... policy 0..*uriPolicy that authorized the agent participation in the event
.... network[x] 0..1This agent network location for the activity
..... networkReferenceReference(Endpoint)
..... networkUriuri
..... networkStringstring
.... authorization 0..*CodeableConceptAllowable authorization for this agent
Binding: PurposeOfUse (example): The reason the activity took place.


... source Σ1..1BackboneElementAudit Event Reporter
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... site 0..1Reference(Location)Logical source location within the enterprise
.... observer Σ1..1Reference(Practitioner | PractitionerRole | Organization | CareTeam | Patient | Device | RelatedPerson)The identity of source detecting the event
.... type 0..*CodeableConceptThe type of source where event originated
Binding: AuditEventSourceType (preferred): Code specifying the type of system that detected and recorded the event. Use of these codes is not required but is encouraged to maintain translation with DICOM AuditMessage schema.


... entity Σ0..*BackboneElementData or objects used
.... id 0..1stringUnique id for inter-element referencing
.... extension 0..*ExtensionAdditional content defined by implementations
.... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
.... what Σ0..1Reference(Resource)Specific instance of resource
.... role 0..1CodeableConceptWhat role the entity played
Binding: AuditEventEntityRole (example): DICOM Audit Event Entity Role

.... securityLabel 0..*CodeableConceptSecurity labels on the entity
Binding: SecurityLabelExamples (example): Example Security Labels from the Healthcare Privacy and Security Classification System.


.... query Σ0..1base64BinaryQuery parameters
.... detail 0..*BackboneElementAdditional Information about the entity
..... id 0..1stringUnique id for inter-element referencing
..... extension 0..*ExtensionAdditional content defined by implementations
..... modifierExtension ?!Σ0..*ExtensionExtensions that cannot be ignored even if unrecognized
..... type 1..1CodeableConceptName of the property
Binding: AuditEventID (example): Additional detail about an entity used in an event.

..... value[x] 1..1Property value
...... valueQuantityQuantity
...... valueCodeableConceptCodeableConcept
...... valueStringstring
...... valueBooleanboolean
...... valueIntegerinteger
...... valueRangeRange
...... valueRatioRatio
...... valueTimetime
...... valueDateTimedateTime
...... valuePeriodPeriod
...... valueBase64Binarybase64Binary
.... agent 0..*See agent (AuditEvent)Entity is attributed to this agent

doco Documentation for this format

 

Other representations of profile: CSV, Excel, Schematron

Terminology Bindings

PathConformanceValueSet
AuditEvent.languagerequiredAllLanguages
AuditEvent.categoryexampleAuditEventID
AuditEvent.codeexampleAuditEventSubType
AuditEvent.actionrequiredAuditEventAction
AuditEvent.severityrequiredAuditEventSeverity
AuditEvent.outcome.codepreferredAuditEventOutcome
AuditEvent.outcome.detailexampleAuditEventOutcomeDetail
AuditEvent.authorizationexamplePurposeOfUse
AuditEvent.agent.typepreferredParticipationRoleType
AuditEvent.agent.roleexampleSecurityRoleType
AuditEvent.agent.authorizationexamplePurposeOfUse
AuditEvent.source.typepreferredAuditEventSourceType
AuditEvent.entity.roleexampleAuditEventEntityRole
AuditEvent.entity.securityLabelexampleSecurityLabelExamples
AuditEvent.entity.detail.typeexampleAuditEventID