EMA AuditEvent - EMA Core Implementation Guide v0.1.0

A set of rules under which this content was created

language

0..1

Language of the resource content
Binding: CommonLanguages (preferred): A human language.

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation
This profile does not constrain the narrative in regard to content, language, or traceability to data elements

contained

0..*

Resource

Contained, inline Resources

0..*

Additional content defined by implementations

?!

0..*

Extensions that cannot be ignored

SΣ

1..1

Tipo/identificación del Evento
Binding: AuditEventID (extensible): Eventos de auditoría descritos en FHIR para DICOM

subtype

SΣ

0..*

Especificación más detallada del evento
Binding: AuditEventSub-Type (extensible): Códigos de desarrollados para DICOM

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations
Slice: Unordered, Open by value:url

system

Σ

0..1

Sistema de Códigos

version

Σ

0..1

Version of the system - if relevant

Σ

0..1

Symbol in syntax defined by the system

display

Σ

0..1

Representation defined by the system

userSelected

Σ

0..1

If this coding was chosen directly by the user

action

SΣ

0..1

Create| Read/View/Print | Update | Delete | Execute
Binding: AuditEventAction (required): Códigos fijos extraídos de un set de DICOM por FHIR

period

S

0..1

Period

When the activity occurred

recorded

SΣ

1..1

instant

Momento cuando el evento fue guardado

outcome

SΣ

0..1

Resultado de la operación
Binding: AuditEventOutcome (required): Códigos extraídos de DICOM

outcomeDesc

Σ

0..1

Description of the event outcome

purposeOfEvent

Σ

0..*

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent

S

1..*

Quienes actuaron en el evento

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

0..1

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

0..*

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

SΣ

1..1

Reference(EMA Practitioner | EMA PractitionerRole | EMA Organization)

Quien realizó la acción

altId

0..1

Alternative User identity

0..1

Human friendly name for the agent

requestor

Σ

1..1

indicador de si Who es quien requirió la acción

location

0..1

Reference(Location)

Where

policy

0..*

Policy that authorized event

media

0..1

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

S

0..1

Ubicación de la Red de la Aplicación

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

address

S

0..1

Dirección del Punto de Acceso

S

0..1

Código del tipo de identificación
Binding: AuditEventAgentNetworkType (required): Códigos extraídos de un set DICOM por FHIR

purposeOfUse

0..*

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

S

1..1

Quien reporta el evento

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

site

0..1

Logical source location within the enterprise

observer

SΣ

1..1

Entidad que reporta el evento

0..*

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

entity

SC

0..*

Entidad que registra la ocurrencia del Evento
Constraints: sev-1

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

what

SΣ

0..1

Reference(Resource)

Recurso o identificación de la entidad que registra la ocurrencia del evento

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

lifecycle

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

description

0..1

Descriptive text

query

ΣC

0..1

Query parameters

detail

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

value[x]

1..1

Property value

valueString

valueBase64Binary

Documentation for this format

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
AuditEvent.language	Base	preferred	Common Languages	📦4.0.1	FHIR Std.
AuditEvent.type	Base	extensible	Audit Event ID	📦4.0.1	FHIR Std.
AuditEvent.subtype	Base	extensible	Audit Event Sub-Type	📦4.0.1	FHIR Std.
AuditEvent.action	Base	required	AuditEventAction	📦4.0.1	FHIR Std.
AuditEvent.outcome	Base	required	AuditEventOutcome	📦4.0.1	FHIR Std.
AuditEvent.purposeOfEvent	Base	extensible	PurposeOfUse	📦3.1.0	THO v7.1
AuditEvent.agent.type	Base	extensible	ParticipationRoleType	📦4.0.1	FHIR Std.
AuditEvent.agent.role	Base	example	SecurityRoleType	📦4.0.1	FHIR Std.
AuditEvent.agent.media	Base	extensible	Media Type Code	📦4.0.1	FHIR Std.
AuditEvent.agent.network.type	Base	required	AuditEventAgentNetworkType	📦4.0.1	FHIR Std.
AuditEvent.agent.purposeOfUse	Base	extensible	PurposeOfUse	📦3.1.0	THO v7.1
AuditEvent.source.type	Base	extensible	Audit Event Source Type	📦4.0.1	FHIR Std.
AuditEvent.entity.type	Base	extensible	Audit event entity type	📦4.0.1	FHIR Std.
AuditEvent.entity.role	Base	extensible	AuditEventEntityRole	📦4.0.1	FHIR Std.
AuditEvent.entity.lifecycle	Base	extensible	ObjectLifecycleEvents	📦5.2.0	FHIR Extensions Pack v5.2
AuditEvent.entity.securityLabel	Base	extensible	SecurityLabels	📦4.0.1	FHIR Std.

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	AuditEvent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	AuditEvent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
sev-1	error	AuditEvent.entity	Either a name or a query (NOT both)	`name.empty() or query.empty()`

This structure is derived from AuditEventCl

Summary

Mandatory: 1 element

Structures

This structure refers to these other structures:

Key Elements View

Name	Flags	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
AuditEvent		0..*	AuditEventCl	Event record kept for security purposes
implicitRules	?!Σ	0..1	uri	A set of rules under which this content was created
modifierExtension	?!	0..*	Extension	Extensions that cannot be ignored
type	SΣ	1..1	Coding	Tipo/identificación del Evento Binding: AuditEventID (extensible): Eventos de auditoría descritos en FHIR para DICOM
subtype	SΣ	0..*	Coding	Especificación más detallada del evento Binding: AuditEventSub-Type (extensible): Códigos de desarrollados para DICOM
action	SΣ	0..1	code	Create\| Read/View/Print \| Update \| Delete \| Execute Binding: AuditEventAction (required): Códigos fijos extraídos de un set de DICOM por FHIR
period	S	0..1	Period	When the activity occurred
recorded	SΣ	1..1	instant	Momento cuando el evento fue guardado
outcome	SΣ	0..1	code	Resultado de la operación Binding: AuditEventOutcome (required): Códigos extraídos de DICOM
agent	S	1..*	BackboneElement	Quienes actuaron en el evento
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
who	SΣ	1..1	Reference(EMA Practitioner \| EMA PractitionerRole \| EMA Organization)	Quien realizó la acción
requestor	Σ	1..1	boolean	indicador de si Who es quien requirió la acción
network	S	0..1	BackboneElement	Ubicación de la Red de la Aplicación
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
address	S	0..1	string	Dirección del Punto de Acceso
type	S	0..1	code	Código del tipo de identificación Binding: AuditEventAgentNetworkType (required): Códigos extraídos de un set DICOM por FHIR
source	S	1..1	BackboneElement	Quien reporta el evento
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
observer	SΣ	1..1	Reference(CL RolClinico \| CL Prestador \| CL Organización \| CL Paciente \| Device \| RelatedPerson)	Entidad que reporta el evento
entity	SC	0..*	BackboneElement	Entidad que registra la ocurrencia del Evento Constraints: sev-1
modifierExtension	?!Σ	0..*	Extension	Extensions that cannot be ignored even if unrecognized
what	SΣ	0..1	Reference(Resource)	Recurso o identificación de la entidad que registra la ocurrencia del evento
Documentation for this format

Terminology Bindings

Path	Status	Usage	ValueSet	Version	Source
AuditEvent.type	Base	extensible	Audit Event ID	📦4.0.1	FHIR Std.
AuditEvent.subtype	Base	extensible	Audit Event Sub-Type	📦4.0.1	FHIR Std.
AuditEvent.action	Base	required	AuditEventAction	📦4.0.1	FHIR Std.
AuditEvent.outcome	Base	required	AuditEventOutcome	📦4.0.1	FHIR Std.
AuditEvent.agent.network.type	Base	required	AuditEventAgentNetworkType	📦4.0.1	FHIR Std.

Constraints

Id	Grade	Path(s)	Description	Expression
dom-2	error	AuditEvent	If the resource is contained in another resource, it SHALL NOT contain nested Resources	`contained.contained.empty()`
dom-3	error	AuditEvent	If the resource is contained in another resource, it SHALL be referred to from elsewhere in the resource or SHALL refer to the containing resource	`contained.where((('#'+id in (%resource.descendants().reference \| %resource.descendants().as(canonical) \| %resource.descendants().as(uri) \| %resource.descendants().as(url))) or descendants().where(reference = '#').exists() or descendants().where(as(canonical) = '#').exists() or descendants().where(as(canonical) = '#').exists()).not()).trace('unmatched', id).empty()`
dom-4	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a meta.versionId or a meta.lastUpdated	`contained.meta.versionId.empty() and contained.meta.lastUpdated.empty()`
dom-5	error	AuditEvent	If a resource is contained in another resource, it SHALL NOT have a security label	`contained.meta.security.empty()`
dom-6	best practice	AuditEvent	A resource should have narrative for robust management	text.`div`.exists()
ele-1	error	ALL elements	All FHIR elements must have a @value or children	`hasValue() or (children().count() > id.count())`
ext-1	error	ALL extensions	Must have either extensions or value[x], not both	`extension.exists() != value.exists()`
sev-1	error	AuditEvent.entity	Either a name or a query (NOT both)	`name.empty() or query.empty()`

Differential View

This structure is derived from AuditEventCl

Name	Card.	Type	Description & Constraints Filter: Bindings Constraints Obligations
AuditEvent	0..*	AuditEventCl	Event record kept for security purposes
agent
who	1..1	Reference(EMA Practitioner \| EMA PractitionerRole \| EMA Organization)	Quien realizó la acción
Documentation for this format

Snapshot View

Description & Constraints Filter: Filters

AuditEvent

0..*

AuditEventCl

Event record kept for security purposes

id

Σ

0..1

id

Logical id of this artifact

Meta

Metadata about the resource

implicitRules

?!Σ

0..1

A set of rules under which this content was created

language

0..1

Language of the resource content
Binding: CommonLanguages (preferred): A human language.

Additional Bindings

Purpose

AllLanguages

Max Binding

text

0..1

Narrative

Text summary of the resource, for human interpretation
This profile does not constrain the narrative in regard to content, language, or traceability to data elements

contained

0..*

Resource

Contained, inline Resources

0..*

Additional content defined by implementations

?!

0..*

Extensions that cannot be ignored

SΣ

1..1

Tipo/identificación del Evento
Binding: AuditEventID (extensible): Eventos de auditoría descritos en FHIR para DICOM

subtype

SΣ

0..*

Especificación más detallada del evento
Binding: AuditEventSub-Type (extensible): Códigos de desarrollados para DICOM

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations
Slice: Unordered, Open by value:url

system

Σ

0..1

Sistema de Códigos

version

Σ

0..1

Version of the system - if relevant

Σ

0..1

Symbol in syntax defined by the system

display

Σ

0..1

Representation defined by the system

userSelected

Σ

0..1

If this coding was chosen directly by the user

action

SΣ

0..1

Create| Read/View/Print | Update | Delete | Execute
Binding: AuditEventAction (required): Códigos fijos extraídos de un set de DICOM por FHIR

period

S

0..1

Period

When the activity occurred

recorded

SΣ

1..1

instant

Momento cuando el evento fue guardado

outcome

SΣ

0..1

Resultado de la operación
Binding: AuditEventOutcome (required): Códigos extraídos de DICOM

outcomeDesc

Σ

0..1

Description of the event outcome

purposeOfEvent

Σ

0..*

The purposeOfUse of the event
Binding: PurposeOfUse (extensible): The reason the activity took place.

agent

S

1..*

Quienes actuaron en el evento

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

0..1

How agent participated
Binding: ParticipationRoleType (extensible): The Participation type of the agent to the event.

0..*

Agent role in the event
Binding: SecurityRoleType (example): What security role enabled the agent to participate in the event.

who

SΣ

1..1

Reference(EMA Practitioner | EMA PractitionerRole | EMA Organization)

Quien realizó la acción

altId

0..1

Alternative User identity

0..1

Human friendly name for the agent

requestor

Σ

1..1

indicador de si Who es quien requirió la acción

location

0..1

Reference(Location)

Where

policy

0..*

Policy that authorized event

media

0..1

Type of media
Binding: MediaTypeCode (extensible): Used when the event is about exporting/importing onto media.

network

S

0..1

Ubicación de la Red de la Aplicación

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

address

S

0..1

Dirección del Punto de Acceso

S

0..1

Código del tipo de identificación
Binding: AuditEventAgentNetworkType (required): Códigos extraídos de un set DICOM por FHIR

purposeOfUse

0..*

Reason given for this user
Binding: PurposeOfUse (extensible): The reason the activity took place.

source

S

1..1

Quien reporta el evento

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

site

0..1

Logical source location within the enterprise

observer

SΣ

1..1

Entidad que reporta el evento

0..*

The type of source where event originated
Binding: AuditEventSourceType (extensible): Code specifying the type of system that detected and recorded the event.

entity

SC

0..*

Entidad que registra la ocurrencia del Evento
Constraints: sev-1

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

what

SΣ

0..1

Reference(Resource)

Recurso o identificación de la entidad que registra la ocurrencia del evento

0..1

Type of entity involved
Binding: AuditEventEntityType (extensible): Code for the entity type involved in the audit event.

0..1

What role the entity played
Binding: AuditEventEntityRole (extensible): Code representing the role the entity played in the audit event.

lifecycle

0..1

Life-cycle stage for the entity
Binding: ObjectLifecycleEvents (extensible): Identifier for the data life-cycle stage for the entity.

securityLabel

0..*

Security labels on the entity
Binding: All Security Labels (extensible): Security Labels from the Healthcare Privacy and Security Classification System.

ΣC

0..1

Descriptor for entity

description

0..1

Descriptive text

query

ΣC

0..1

Query parameters

detail

0..*

Additional Information about the entity

id

0..1

Unique id for inter-element referencing

0..*

Additional content defined by implementations

?!Σ

0..*

Extensions that cannot be ignored even if unrecognized

1..1

Name of the property

value[x]

1..1

Property value

valueString

valueBase64Binary