Termini

CodeSystemsConceptSystemsStructureDefinitionsValueSetsPackagesConflicts
Conceptshttp://terminology.hl7.org/CodeSystem/v3-ObservationValue | LOAAP4
{
  "package" : "hl7.fhir.r4.examples@4.0.1",
  "definition" : "Indicator of the high digital quality or reliability of a defined sequence of messages between a Claimant and a Verifier that demonstrates that the Claimant has possession and control of a valid token to establish his/her identity, and optionally, demonstrates to the Claimant that he or she is communicating with the intended Verifier. [Based on NIST SP 800-63-2]\\r\\n\\n                        High authentication process level of assurance indicates all sensitive data transfer are cryptographically authenticated using keys bound to the authentication process.  Level 4 requires strong cryptographic authentication of all communicating parties and all sensitive data transfers between the parties. Either public key or symmetric key technology may be used. Authentication requires that the Claimant prove through a secure authentication protocol that he or she controls the token. All protocol threats at Level 3 are required to be prevented at Level 4. Protocols shall also be strongly resistant to man-in-the-middle attacks. Long-term shared authentication secrets, if used, are never revealed to any party except the Claimant and Verifiers operated directly by the CSP; however, session (temporary) shared secrets may be provided to independent Verifiers by the CSP. Approved cryptographic techniques are used for all operations. All sensitive data transfers are cryptographically authenticated using keys bound to the authentication process.   [Summary of the technical requirements specified in NIST SP 800-63 for the four levels of assurance defined by the December 2003, the Office of Management and Budget (OMB) issued Memorandum M-04-04, E-Authentication Guidance for Federal Agencies.]",
  "system" : "http://terminology.hl7.org/CodeSystem/v3-ObservationValue",
  "property" : [ {
    "_uri" : "http://hl7.org/fhir/concept-properties#parent",
    "code" : "parent",
    "_implicit" : true,
    "valueCode" : "LOAAP"
  } ],
  "codesystem" : "e67d8c9c-b493-5a7e-a48f-2e583e5bc47a",
  "concept_id" : "ce4e4bc0-849a-5d86-b6c7-d24a9bb3adc0",
  "ancestors" : {
    "LOAAP" : 1,
    "LOAAP4" : 0,
    "SECTRSTOBV" : 3,
    "TRSTLOAOBV" : 2,
    "_SecurityObservationValue" : 4
  },
  "id" : "d35b60a5-c087-4b77-a2bb-9a0837275dd0",
  "code" : "LOAAP4",
  "display" : "high authentication process level of assurance",
  "version" : "2018-08-12"
}