AuditEventAgent
A record of an event made for purposes of maintaining a security log. Typical uses include detection of intrusion attempts and monitoring for inappropriate usage.
type AuditEventAgent implements Element {
type: CodeableConcept
role: [CodeableConcept]
who: Reference
altId: String
name: String
requestor: Boolean
location: Reference
policy: [Uri]
media: Coding
network: AuditEventNetwork
purposeOfUse: [CodeableConcept]
modifierExtension: [Extension]
extension: [Extension]
id: String
}
Fields
AuditEventAgent.type ● CodeableConcept object
Specification of the participation type the user plays when performing the event.
AuditEventAgent.role ● [CodeableConcept] list object
The security role that the user was acting under, that come from local codes defined by the access control security system (e.g. RBAC, ABAC) used in the local context.
AuditEventAgent.who ● Reference object
Reference to who this agent is that was involved in the event.
AuditEventAgent.altId ● String scalar
Alternative agent Identifier. For a human, this should be a user identifier text string from authentication system. This identifier would be one known to a common authentication system (e.g. single sign-on), if available.
AuditEventAgent.name ● String scalar
Human-meaningful name for the agent.
AuditEventAgent.requestor ● Boolean scalar
Indicator that the user is or is not the requestor, or initiator, for the event being audited.
AuditEventAgent.location ● Reference object
Where the event occurred.
AuditEventAgent.policy ● [Uri] list scalar
The policy or plan that authorized the activity being recorded. Typically, a single activity may have multiple applicable policies, such as patient consent, guarantor funding, etc. The policy would also indicate the security token used.
AuditEventAgent.media ● Coding object
Type of media involved. Used when the event is about exporting/importing onto media.
AuditEventAgent.network ● AuditEventNetwork object
Logical network location for application activity, if the activity has a network location.
AuditEventAgent.purposeOfUse ● [CodeableConcept] list object
The reason (purpose of use), specific to this agent, that was used during the event being recorded.
AuditEventAgent.modifierExtension ● [Extension] list object
May be used to represent additional information that is not part of the basic definition of the element and that modifies the understanding of the element in which it is contained and/or the understanding of the containing element s descendants. Usually modifier elements provide negation or qualification. To make the use of extensions safe and manageable, there is a strict set of governance applied to the definition and use of extensions. Though any implementer can define an extension, there is a set of requirements that SHALL be met as part of the definition of the extension. Applications processing a resource are required to check for modifier extensions. Modifier extensions SHALL NOT change the meaning of any elements on Resource or DomainResource (including cannot change the meaning of modifierExtension itself).
AuditEventAgent.extension ● [Extension] list object
May be used to represent additional information that is not part of the basic definition of the element. To make the use of extensions safe and manageable, there is a strict set of governance applied to the definition and use of extensions. Though any implementer can define an extension, there is a set of requirements that SHALL be met as part of the definition of the extension.
AuditEventAgent.id ● String scalar
Interfaces
Element interface
Base definition for all elements in a resource. If the element is present, it must have a value for at least one of the defined elements, an @id referenced from the Narrative, or extensions
Member Of
AuditEvent object