Termini

CodeSystemsConceptSystemsStructureDefinitionsValueSetsPackagesConflicts
Conceptshttp://terminology.hl7.org/CodeSystem/conceptdomains | SecurityCategoryObservationType
{
  "package" : "hl7.terminology.r5@6.3.0",
  "definition" : "Type of security metadata observation made about the category of an IT resource (data, information object, service, or system capability), which may be used to make access control decisions. Security category metadata is defined by ISO/IEC 2382-8:1998(E/F)/ T-REC-X.812-1995 as: \\\"A nonhierarchical grouping of sensitive information used to control access to data more finely than with hierarchical security classification alone.\\\"\\r\\n\\r\\n*Rationale:* A security category observation supports the requirement to specify the type of IT resource in order to facilitate application of appropriate levels of security according to a range of levels of impact or consequences that might result form the unauthorized disclosure, modification, or use of the information or information system. A resource is assigned to a specific category of information (e.g., privacy, medical, proprietary, financial, investigative, contractor sensitive, security management) defined by an organization or in some instances, by a specific law, Executive Order, directive, policy, or regulation. \\\\[FIPS 188\\\\]\\r\\n\\r\\n**Examples:** Types of security categories include:\\r\\n\\r\\n *  Compartment: A division of data into isolated blocks with separate security controls for the purpose of reducing risk. (ISO 2382-8). Security label metadata that \\\"segments\\\" an IT resource by indicating that access and use is restricted to members of a defined community or project. (HL7 Healthcare Classification System)\\r\\n *  Sensitivity: The characteristic of a resource which implies its value or importance and may include its vulnerability. (ISO 7492-2) Privacy metadata for information perceived as undesirable to share. (HL7 Healthcare Classification System)\\r\\n\\r\\n*Usage Note:* SecurityCategoryObservationType concept domain designates a code system used to name a security label field type that may be valued with a \\\"security label tag\\\" such as a code from the security label tage set \\\"SecurityCategoryObservatonValue\\\" value set.\\r\\n\\r\\nCodes may be drawn from the union of the following value sets: V:PrivacyPolicyType, V:ActPrivacyLaw, V:ActConsentDirective, V:InformationSensitivityPolicy, V:ActInformationSensitivityPolicy, V:RoleInformationSensitivityPolicy, EntitySensitivityPolicy, and V:ActConsentType. Could be bound R1 to a V:ActUSPrivacyPolicy in a future US Realm.",
  "system" : "http://terminology.hl7.org/CodeSystem/conceptdomains",
  "property" : [ {
    "code" : "source",
    "valueCode" : "v3"
  }, {
    "code" : "contextBindingR1-valueSet",
    "valueString" : "2.16.840.1.113883.1.11.20459"
  }, {
    "code" : "contextBindingR1-strength",
    "valueCode" : "CWE"
  }, {
    "code" : "contextBindingR1-effectiveDate",
    "valueDateTime" : "2020-01-01"
  }, {
    "_uri" : "http://hl7.org/fhir/concept-properties#parent",
    "code" : "parent",
    "_implicit" : true,
    "valueCode" : "SecurityObservationType"
  } ],
  "codesystem" : "a4b9689b-4fea-537a-ab56-085748a134dc",
  "concept_id" : "de41b29f-5063-517f-aab0-cf5d7074d976",
  "ancestors" : {
    "ActCode" : 3,
    "ObservationType" : 2,
    "SecurityObservationType" : 1,
    "SecurityCategoryObservationType" : 0
  },
  "id" : "3fe8808f-2bed-4139-916f-0a7566b9d38e",
  "code" : "SecurityCategoryObservationType",
  "display" : "SecurityCategoryObservationType",
  "version" : "3.0.0"
}