Basic Audit Log Patterns (BALP)
1.1.3 - Trial-Implementation International flag

This page is part of the IHE Basic Audit Log Patterns (BALP) (v1.1.3: Publication) based on FHIR (HL7® FHIR® Standard) R4. This is the current published version. For a full list of available versions, see the Directory of published versions

Example AuditEvent: oAuth Server - Audit Example of a basic patient identifiable read

Generated Narrative: AuditEvent

Resource AuditEvent "ex-auditBasicReadOServer"

Profile: Basic AuditEvent pattern for when an activity was authorized by an IUA access token

Security Labels: http://terminology.hl7.org/CodeSystem/v3-ActReason

type: Restful Operation (Details: http://terminology.hl7.org/CodeSystem/audit-event-type code rest = 'RESTful Operation', stated as 'Restful Operation')

subtype: read (Details: http://hl7.org/fhir/restful-interaction code read = 'read', stated as 'read')

action: R

recorded: Apr 29, 2020, 4:49:00 AM

outcome: 0

agent

type: Application (DICOM#110150)

who: SampleApp

requestor: false

Networks

-AddressType
*2001:0db8:85a3:0000:0000:8a2e:0370:73342

agent

type: information recipient (ParticipationType#IRCP)

who: : JohnSmith

requestor: true

policy: C187CC480FAC40A0936902D8BC324F5F

agent

type: Destination Role ID (DICOM#110152)

who: : myMachine.example.org

requestor: false

Networks

-AddressType
*2001:0db8:85a3:0000:0000:8a2e:0370:73342

agent

type: Source Role ID (DICOM#110153)

who: Device/ex-device

requestor: false

Networks

-AddressType
*http://server.example.com/fhir5

Sources

-SiteObserverType
*server.example.comDevice/ex-deviceApplication Server (Details: http://terminology.hl7.org/CodeSystem/security-source-type code 4 = 'Application Server', stated as 'Application Server')

entity

what: Patient/ex-patient " SCHMIDT"

type: Person (Details: http://terminology.hl7.org/CodeSystem/audit-entity-type code 1 = 'Person', stated as 'Person')

role: Patient (Details: http://terminology.hl7.org/CodeSystem/object-role code 1 = 'Patient', stated as 'Patient')

entity

what: List/ex-list

type: System Object (Details: http://terminology.hl7.org/CodeSystem/audit-entity-type code 2 = 'System Object', stated as 'System Object')

role: Domain Resource (Details: http://terminology.hl7.org/CodeSystem/object-role code 4 = 'Domain Resource', stated as 'Domain Resource')

entity

what: 76d148b6-586d-11ec-bf63-0242ac130002

type: transport specific unique identifier where http X-Request-Id is used (Details: https://profiles.ihe.net/ITI/BALP/CodeSystem/BasicAuditEntityType code XrequestId = 'transport specific unique identifier where http X-Request-Id is used', stated as 'null')