HL7 Terminology (THO)
5.0.0 - Publication International flag

This page is part of the HL7 Terminology (v5.0.0: Release) based on FHIR R4. The current version which supercedes this version is 5.2.0. For a full list of available versions, see the Directory of published versions

ValueSet: SecurityIntegrityObservationType

Official URL: http://terminology.hl7.org/ValueSet/v3-SecurityIntegrityObservationType Version: 2.0.0
Active as of 2014-03-26 Computable Name: SecurityIntegrityObservationType
Other Identifiers: : urn:oid:2.16.840.1.113883.1.11.20461

Type of security metadata observation made about the integrity of an IT resource (data, information object, service, or system capability), which may be used to make access control decisions.

References

This value set is not used here; it may be used elsewhere (e.g. specifications and/or implementations that use this content)

Logical Definition (CLD)

 

Expansion

This value set contains 7 concepts

Expansion based on ActCode v7.0.0 (CodeSystem)

LevelCodeSystemDisplayDefinition
1  SECINTOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity observation

Type of security metadata observation made about the integrity of an IT resource (data, information object, service, or system capability), which may be used to make access control decisions.

Rationale: A security integrity observation supports the requirement to guard against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity. (44 U.S.C., SEC. 3542)

Examples: Types of security integrity metadata include:

  • Integrity status, which indicates the completeness or workflow status of an IT resource (data, information object, service, or system capability)
  • Integrity confidence, which indicates the reliability and trustworthiness of an IT resource
  • Integrity control, which indicates pertinent handling caveats, obligations, refrain policies, and purpose of use for the resource
  • Data integrity, which indicate the security mechanisms used to ensure that the accuracy and consistency are preserved regardless of changes made (ISO/IEC DIS 2382-8)
  • Alteration integrity, which indicate the security mechanisms used for authorized transformations of the resource
  • Integrity provenance, which indicates the entity responsible for a report or assertion relayed "second-hand" about an IT resource
2    SECALTINTOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity alteration integrity observation

Type of security metadata observation made about the alteration integrity of an IT resource (data, information object, service, or system capability), which indicates the mechanism used for authorized transformations of the resource.

Examples: Types of security alteration integrity observation metadata, which may value the observation with a code used to indicate the mechanism used for authorized transformation of an IT resource, including:

  • translation
  • syntactic transformation
  • semantic mapping
  • redaction
  • masking
  • pseudonymization
  • anonymization
2    SECDATINTOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity data integrity observation

Type of security metadata observation made about the data integrity of an IT resource (data, information object, service, or system capability), which indicates the security mechanism used to preserve resource accuracy and consistency. Data integrity is defined by ISO 22600-23.3.21 as: "The property that data has not been altered or destroyed in an unauthorized manner", and by ISO/IEC 2382-8: The property of data whose accuracy and consistency are preserved regardless of changes made."

Examples: Types of security data integrity observation metadata, which may value the observation, include cryptographic hash function and digital signature.

2    SECINTCONOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity confidence observation

Type of security metadata observation made about the integrity confidence of an IT resource (data, information object, service, or system capability), which may be used to make access control decisions.

Examples: Types of security integrity confidence observation metadata, which may value the observation, include highly reliable, uncertain reliability, and not reliable.

Usage Note: A security integrity confidence observation on an Act may indicate that a valued Act.uncertaintycode attribute has been overridden by the entity responsible for ascribing the SecurityIntegrityConfidenceObservationValue. This supports the business requirements for increasing or decreasing the assessment of the reliability or trustworthiness of an IT resource based on parameters beyond the original assignment of an Act statement level of uncertainty.

2    SECINTPRVOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity provenance observation

Type of security metadata observation made about the provenance integrity of an IT resource (data, information object, service, or system capability), which indicates the lifecycle completeness of an IT resource in terms of workflow status such as its creation, modification, suspension, and deletion; locations in which the resource has been collected or archived, from which it may be retrieved, and the history of its distribution and disclosure. Integrity provenance metadata about an IT resource may be used to assess its veracity, reliability, and trustworthiness.

Examples: Types of security integrity provenance observation metadata, which may value the observation about an IT resource, include:

  • completeness or workflow status, such as authentication
  • the entity responsible for original authoring or informing about an IT resource
  • the entity responsible for a report or assertion about an IT resource relayed “second-handâ€?
  • the entity responsible for excerpting, transforming, or compiling an IT resource
3      SECINTPRVABOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity provenance asserted by observation

Type of security metadata observation made about the integrity provenance of an IT resource (data, information object, service, or system capability), which indicates the entity that made assertions about the resource. The asserting entity may not be the original informant about the resource.

Examples: Types of security integrity provenance asserted by observation metadata, which may value the observation, including:

  • assertions about an IT resource by a patient
  • assertions about an IT resource by a clinician
  • assertions about an IT resource by a device
3      SECINTPRVRBOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity provenance reported by observation

Type of security metadata observation made about the integrity provenance of an IT resource (data, information object, service, or system capability), which indicates the entity that reported the existence of the resource. The reporting entity may not be the original author of the resource.

Examples: Types of security integrity provenance reported by observation metadata, which may value the observation, include:

  • reports about an IT resource by a patient
  • reports about an IT resource by a clinician
  • reports about an IT resource by a device
2    SECINTSTOBShttp://terminology.hl7.org/CodeSystem/v3-ActCodesecurity integrity status observation

Type of security metadata observation made about the integrity status of an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Indicates the completeness of an IT resource in terms of workflow status, which may impact users that are authorized to access and use the resource.

Examples: Types of security integrity status observation metadata, which may value the observation, include codes from the HL7 DocumentCompletion code system such as legally authenticated, in progress, and incomplete.


Explanation of the columns that may appear on this page:

Level A few code lists that FHIR defines are hierarchical - each code is assigned a level. In this scheme, some codes are under other codes, and imply that the code they are under also applies
System The source of the definition of the code (when the value set draws in codes defined elsewhere)
Code The code (used as the code in the resource instance)
Display The display (used in the display element of a Coding). If there is no display, implementers should not simply display the code, but map the concept into their application
Definition An explanation of the meaning of the concept
Comments Additional notes about how to use the code

History

DateActionAuthorCustodianComment
2022-10-18reviseMarc DuteauTSMGFixing missing metadata; up-349
2020-05-06reviseTed KleinVocabulary WGMigrated to the UTG maintenance environment and publishing tooling.
2014-03-26reviseVocabulary (Woody Beeler) (no record of original request)2014T1_2014-03-26_001283 (RIM release ID)Lock all vaue sets untouched since 2014-03-26 to trackingId 2014T1_2014_03_26