SecurityObservationType

active

URL

http://terminology.hl7.org/ValueSet/v3-SecurityObservationType

Version

2.0.0

Date2014-03-26Description

Type of security metadata observation made about an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Security metadata are used in security labels. According to ISO/TS 22600-3:2009(E) A.9.1.7 SECURITY LABEL MATCHING, Security label matching compares the initiatorâ€™s clearance to the targetâ€™s security label. All of the following must be true for authorization to be granted: * The security policy identifiers shall be identical, * The classification level of the initiator shall be greater than or equal to that of the target (that is, there shall be at least one value in the classification list of the clearance greater than or equal to the classification of the target), and * For each security category in the target label, there shall be a security category of the same type in the initiatorâ€™s clearance and the initiatorâ€™s classification level shall dominate that of the target.

Expansion

Code	Display	System
SECOBS	SecurityObservationType	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECCATOBS	security category observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECCLASSOBS	security classification observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECCONOBS	security control observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTOBS	security integrity observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECALTINTOBS	security alteration integrity observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECDATINTOBS	security data integrity observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTCONOBS	security integrity confidence observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTPRVOBS	security integrity provenance observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTPRVABOBS	security integrity provenance asserted by observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTPRVRBOBS	security integrity provenance reported by observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECINTSTOBS	security integrity status observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
SECTRSTOBS	SECTRSTOBS	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTACCRDOBS	trust accreditation observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTAGREOBS	trust agreement observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTCERTOBS	trust certificate observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTFWKOBS	trust framework observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTLOAOBS	trust assurance observation	http://terminology.hl7.org/CodeSystem/v3-ActCode
TRSTMECOBS	trust mechanism observation	http://terminology.hl7.org/CodeSystem/v3-ActCode

{
  "description" : "Type of security metadata observation made about an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Security metadata are used in security labels. According to ISO/TS 22600-3:2009(E) A.9.1.7 SECURITY LABEL MATCHING, Security label matching compares the initiatorâ€™s clearance to the targetâ€™s security label. All of the following must be true for authorization to be granted:\r\n\r\n *  The security policy identifiers shall be identical,\r\n *  The classification level of the initiator shall be greater than or equal to that of the target (that is, there shall be at least one value in the classification list of the clearance greater than or equal to the classification of the target), and\r\n *  For each security category in the target label, there shall be a security category of the same type in the initiatorâ€™s clearance and the initiatorâ€™s classification level shall dominate that of the target.",
  "compose" : {
    "exclude" : [ ],
    "include" : [ {
      "system" : "http://terminology.hl7.org/CodeSystem/v3-ActCode",
      "filter" : [ {
        "property" : "concept",
        "value" : "SECOBS",
        "op" : "is-a"
      } ]
    } ]
  },
  "date" : "2014-03-26",
  "name" : "SecurityObservationType",
  "resourceType" : "ValueSet",
  "title" : "SecurityObservationType",
  "extension" : [ {
    "url" : "http://health-samurai.io/extensions/source",
    "valueCode" : "db"
  } ],
  "status" : "active",
  "language" : "en",
  "id" : "f2c86750-945f-4559-a2d0-ea68c804a2bf",
  "url" : "http://terminology.hl7.org/ValueSet/v3-SecurityObservationType",
  "identifier" : [ {
    "system" : "urn:ietf:rfc:3986",
    "value" : "urn:oid:2.16.840.1.113883.1.11.20457"
  } ],
  "immutable" : true,
  "version" : "2.0.0",
  "text" : {
    "div" : "<div xml:lang=\"en\" xmlns=\"http://www.w3.org/1999/xhtml\" lang=\"en\"><ul><li>Include codes from <a href=\"CodeSystem-v3-ActCode.html\"><code>http://terminology.hl7.org/CodeSystem/v3-ActCode</code></a> where concept  is-a  <a href=\"CodeSystem-v3-ActCode.html#v3-ActCode-SECOBS\">SECOBS</a></li></ul></div>",
    "status" : "generated"
  }
}