This page is part of the HL7 Terminology (v1.0.0: Release) based on FHIR R4. The current version which supercedes this version is 5.2.0. For a full list of available versions, see the Directory of published versions
Source view
<ValueSet xmlns="http://hl7.org/fhir"> <id value="v3-SecurityObservationType"/> <language value="en"/> <text> <status value="generated"/> <div xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"><h2>SecurityObservationType</h2><div><p>Type of security metadata observation made about an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Security metadata are used in security labels. According to ISO/TS 22600-3:2009(E) A.9.1.7 SECURITY LABEL MATCHING, Security label matching compares the initiator’s clearance to the target’s security label. All of the following must be true for authorization to be granted:</p> <ul> <li>The security policy identifiers shall be identical,</li> <li>The classification level of the initiator shall be greater than or equal to that of the target (that is, there shall be at least one value in the classification list of the clearance greater than or equal to the classification of the target), and</li> <li>For each security category in the target label, there shall be a security category of the same type in the initiator’s clearance and the initiator’s classification level shall dominate that of the target.</li> </ul> </div><ul><li>Include codes from <a href="CodeSystem-v3-ActCode.html"><code>http://terminology.hl7.org/CodeSystem/v3-ActCode</code></a> where concept is-a <a href="CodeSystem-v3-ActCode.html#v3-ActCode-SECOBS">SECOBS</a></li></ul></div> </text> <url value="http://terminology.hl7.org/ValueSet/v3-SecurityObservationType"/> <identifier> <system value="urn:ietf:rfc:3986"/> <value value="urn:oid:2.16.840.1.113883.1.11.20457"/> </identifier> <version value="2.0.0"/> <name value="SecurityObservationType"/> <title value="SecurityObservationType"/> <status value="active"/> <date value="2014-03-26T00:00:00-04:00"/> <description value="Type of security metadata observation made about an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Security metadata are used in security labels. According to ISO/TS 22600-3:2009(E) A.9.1.7 SECURITY LABEL MATCHING, Security label matching compares the initiator’s clearance to the target’s security label. All of the following must be true for authorization to be granted: * The security policy identifiers shall be identical, * The classification level of the initiator shall be greater than or equal to that of the target (that is, there shall be at least one value in the classification list of the clearance greater than or equal to the classification of the target), and * For each security category in the target label, there shall be a security category of the same type in the initiator’s clearance and the initiator’s classification level shall dominate that of the target."/> <immutable value="true"/> <compose> <include> <system value="http://terminology.hl7.org/CodeSystem/v3-ActCode"/> <filter> <property value="concept"/> <op value="is-a"/> <value value="SECOBS"/> </filter> </include> </compose> </ValueSet>