Release 4

Valueset-security-role-type.xml

Vocabulary Work GroupMaturity Level: N/AStandards Status: Informative

Raw XML (canonical form + also see XML Format Specification)

Definition for Value SetSecurityRoleType

<?xml version="1.0" encoding="UTF-8"?>

<ValueSet xmlns="http://hl7.org/fhir">
  <id value="security-role-type"/> 
  <meta> 
    <lastUpdated value="2021-01-21T15:34:20.265+00:00"/> 
    <profile value="http://hl7.org/fhir/StructureDefinition/shareablevalueset"/> 
  </meta> 
  <text> 
    <status value="generated"/> 
    <div xmlns="http://www.w3.org/1999/xhtml"> This valueset contains various security role codes. </div> 
  </text> 
  <extension url="http://hl7.org/fhir/StructureDefinition/valueset-extensible">
    <valueBoolean value="true"/> 
  </extension> 
  <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-wg">
    <valueCode value="vocab"/> 
  </extension> 
  <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-standards-status">
    <valueCode value="trial-use"/> 
  </extension> 
  <extension url="http://hl7.org/fhir/StructureDefinition/structuredefinition-fmm">
    <valueInteger value="2"/> 
  </extension> 
  <url value="http://hl7.org/fhir/ValueSet/security-role-type"/> 
  <identifier> 
    <system value="urn:ietf:rfc:3986"/> 
    <value value="urn:oid:2.16.840.1.113883.4.642.3.978"/> 
  </identifier> 
  <version value="4.0.1"/> 
  <name value="SecurityRoleType"/> 
  <title value="SecurityRoleType"/> 
  <status value="draft"/> 
  <experimental value="false"/> 
  <date value="2017-07-28T18:00:00+01:00"/> 
  <publisher value="HL7 (FHIR Project)"/> 
  <contact> 
    <telecom> 
      <system value="url"/> 
      <value value="http://hl7.org/fhir"/> 
    </telecom> 
    <telecom> 
      <system value="email"/> 
      <value value="fhir@lists.hl7.org"/> 
    </telecom> 
  </contact> 
  <description value="This example FHIR value set is comprised of example Actor Type codes, which can be used
   to value FHIR agents, actors, and other role         elements such as those specified
   in financial transactions. The FHIR Actor value set is based on    DICOM Audit Message,
   C402;   ASTM Standard, E1762-95 [2013]; selected codes and          derived actor roles
   from HL7 RoleClass OID 2.16.840.1.113883.5.110;    HL7 Role Code 2.16.840.1.113883.5.111,
   including AgentRoleType;          HL7 ParticipationType OID: 2.16.840.1.113883.5.90; and
      HL7 ParticipationFunction codes OID: 2.16.840.1.113883.5.88.           This value set
   includes, by reference, role codes from external code systems: NUCC Health Care Provider
   Taxonomy OID: 2.16.840.1.113883.6.101;          North American Industry Classification
   System [NAICS]OID: 2.16.840.1.113883.6.85; IndustryClassificationSystem 2.16.840.1.113883.1.11.16039
  ;          and US Census Occupation Code OID: 2.16.840.1.113883.6.243 for relevant recipient
   or custodian codes not included in this value set.            If no source is indicated
   in the definition comments, then these are example FHIR codes.          It can be extended
   with appropriate roles described by SNOMED as well as those described in the HL7 Role
   Based Access Control Catalog and the          HL7 Healthcare (Security and Privacy) Access
   Control Catalog.            In Role-Based Access Control (RBAC), permissions are operations
   on an object that a user wishes to access. Permissions are grouped into roles.       
     A role characterizes the functions a user is allowed to perform. Roles are assigned
   to users. If the user's role has the appropriate permissions          to access an object,
   then that user is granted access to the object. FHIR readily enables RBAC, as FHIR Resources
   are object types and the CRUDE          events (the FHIR equivalent to permissions in
   the RBAC scheme) are operations on those objects.          In Attribute-Based Access Control
   (ABAC), a user requests to perform operations on objects. That user's access request is
   granted or denied          based on a set of access control policies that are specified
   in terms of attributes and conditions. FHIR readily enables ABAC, as instances of    
        a Resource in FHIR (again, Resources are object types) can have attributes associated
   with them. These attributes include security tags,          environment conditions, and
   a host of user and object characteristics, which are the same attributes as those used
   in ABAC. Attributes help          define the access control policies that determine the
   operations a user may perform on a Resource (in FHIR) or object (in ABAC). For example,
            a tag (or attribute) may specify that the identified Resource (object) is not
   to be further disclosed without explicit consent from the patient."/> 
  <copyright value="This is an example FHIR value set based on ASTM Standard, E1762-95 (2013) HL7 RoleClass
   OID 2.16.840.1.113883.5.110,          HL7 Role Code 2.16.840.1.113883.5.111, HL7 ParticipationType
   OID: 2.16.840.1.113883.5.90, HL7 ParticipationFunction codes at OID: 2.16.840.1.113883.5.88,
            and HL7 Security and Privacy Domain Analysis Model roles classes.   These codes
   are excerpted from Digital Imaging and Communications in Medicine (DICOM) Standard, Part
   16: Content Mapping Resource, Copyright © 2011 by the National Electrical Manufacturers
   Association."/> 
  <compose> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/contractsignertypecodes"/> 
      <concept> 
        <code value="AMENDER"/> 
      </concept> 
      <concept> 
        <code value="COAUTH"/> 
      </concept> 
      <concept> 
        <code value="CONT"/> 
      </concept> 
      <concept> 
        <code value="EVTWIT"/> 
      </concept> 
      <concept> 
        <code value="PRIMAUTH"/> 
      </concept> 
      <concept> 
        <code value="REVIEWER"/> 
      </concept> 
      <concept> 
        <code value="SOURCE"/> 
      </concept> 
      <concept> 
        <code value="TRANS"/> 
      </concept> 
      <concept> 
        <code value="VALID"/> 
      </concept> 
      <concept> 
        <code value="VERF"/> 
      </concept> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/v3-RoleClass"/> 
      <concept> 
        <code value="AFFL"/> 
      </concept> 
      <concept> 
        <code value="AGNT"/> 
      </concept> 
      <concept> 
        <code value="ASSIGNED"/> 
      </concept> 
      <concept> 
        <code value="CLAIM"/> 
      </concept> 
      <concept> 
        <code value="COVPTY"/> 
      </concept> 
      <concept> 
        <code value="DEPEN"/> 
      </concept> 
      <concept> 
        <code value="ECON"/> 
      </concept> 
      <concept> 
        <code value="EMP"/> 
      </concept> 
      <concept> 
        <code value="GUARD"/> 
      </concept> 
      <concept> 
        <code value="INVSBJ"/> 
      </concept> 
      <concept> 
        <code value="NAMED"/> 
      </concept> 
      <concept> 
        <code value="NOK"/> 
      </concept> 
      <concept> 
        <code value="PAT"/> 
      </concept> 
      <concept> 
        <code value="PROV"/> 
      </concept> 
      <concept> 
        <code value="NOT"/> 
      </concept> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/v3-RoleCode"/> 
      <concept> 
        <code value="CLASSIFIER"/> 
      </concept> 
      <concept> 
        <code value="CONSENTER"/> 
      </concept> 
      <concept> 
        <code value="CONSWIT"/> 
      </concept> 
      <concept> 
        <code value="COPART"/> 
      </concept> 
      <concept> 
        <code value="DECLASSIFIER"/> 
      </concept> 
      <concept> 
        <code value="DELEGATEE"/> 
      </concept> 
      <concept> 
        <code value="DELEGATOR"/> 
      </concept> 
      <concept> 
        <code value="DOWNGRDER"/> 
      </concept> 
      <concept> 
        <code value="DPOWATT"/> 
      </concept> 
      <concept> 
        <code value="EXCEST"/> 
      </concept> 
      <concept> 
        <code value="GRANTEE"/> 
      </concept> 
      <concept> 
        <code value="GRANTOR"/> 
      </concept> 
      <concept> 
        <code value="GT"/> 
      </concept> 
      <concept> 
        <code value="GUADLTM"/> 
      </concept> 
      <concept> 
        <code value="HPOWATT"/> 
      </concept> 
      <concept> 
        <code value="INTPRTER"/> 
      </concept> 
      <concept> 
        <code value="POWATT"/> 
      </concept> 
      <concept> 
        <code value="RESPRSN"/> 
      </concept> 
      <concept> 
        <code value="SPOWATT"/> 
      </concept> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/v3-RoleCode"/> 
      <filter> 
        <property value="concept"/> 
        <op value="is-a"/> 
        <value value="_CitizenRoleType"/> 
      </filter> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/v3-ParticipationFunction"/> 
      <concept> 
        <code value="AUCG"/> 
      </concept> 
      <concept> 
        <code value="AULR"/> 
      </concept> 
      <concept> 
        <code value="AUTM"/> 
      </concept> 
      <concept> 
        <code value="AUWA"/> 
      </concept> 
      <concept> 
        <code value="PROMSK"/> 
      </concept> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/v3-ParticipationType"/> 
      <concept> 
        <code value="AUT"/> 
      </concept> 
      <concept> 
        <code value="CST"/> 
      </concept> 
      <concept> 
        <code value="INF"/> 
      </concept> 
      <concept> 
        <code value="IRCP"/> 
      </concept> 
      <concept> 
        <code value="LA"/> 
      </concept> 
      <concept> 
        <code value="IRCP"/> 
      </concept> 
      <concept> 
        <code value="TRC"/> 
      </concept> 
      <concept> 
        <code value="WIT"/> 
      </concept> 
    </include> 
    <include> 
      <system value="http://terminology.hl7.org/CodeSystem/extra-security-role-type"/> 
    </include> 
    <include> 
      <system value="http://dicom.nema.org/resources/ontology/DCM"/> 
      <concept> 
        <code value="110150"/> 
      </concept> 
      <concept> 
        <code value="110151"/> 
      </concept> 
      <concept> 
        <code value="110152"/> 
      </concept> 
      <concept> 
        <code value="110153"/> 
      </concept> 
      <concept> 
        <code value="110154"/> 
      </concept> 
      <concept> 
        <code value="110155"/> 
      </concept> 
    </include> 
  </compose> 
</ValueSet> 

Usage note: every effort has been made to ensure that the examples are correct and useful, but they are not a normative part of the specification.